$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: UMJlofntIdWLeu3bB1rk8sGGWI+3G7+glKJahrM4WZ0= Subject key identifier: 70:5D:FD:3E:6F:1C:A3:19:08:FF:10:0C:6F:A2:6F:7B:A6:35:F0:DA Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0A0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0A07 Signing time: Sat 18 May 2024 20:37:26 +0000 Manifest this update: Sat 18 May 2024 20:37:26 +0000 Manifest next update: Sat 25 May 2024 20:37:26 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: 9ZRMD3bUd6bpZfjPLXD8ZUpsH79fIwZkkCqvqyhEvjc=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: ame4UZMdYFliqC/mSpG65pYY+jVmeYH/e2VwVJkKgkw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2572 (0xa0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: May 18 20:37:26 2024 GMT Not After : May 25 20:37:26 2024 GMT Subject: CN=66491186-6be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:01:55:a7:81:1b:00:d2:87:52:ae:cf:97: 7a:2b:f2:2e:e8:26:79:da:32:3f:76:28:8f:45:cc: da:63:8b:dd:87:a7:f4:e4:38:27:bd:2a:93:9f:08: 90:6f:6f:80:98:33:81:69:15:e7:45:e6:f2:ca:8b: f6:6d:89:b2:59:2f:2c:ae:12:c1:6e:91:a5:f6:6c: eb:39:ed:2b:21:da:fd:8d:3d:76:11:dc:f5:00:f5: 3c:9e:c5:8a:2c:4e:be:ca:f7:89:0a:cc:2c:bb:ff: 50:5d:b6:83:47:ab:2a:87:97:b9:e6:a9:51:ba:a0: 70:93:b1:d7:05:9b:46:3e:89:b6:f9:57:e0:90:8b: bf:70:b3:10:85:a6:7a:ab:6b:ad:fa:41:ac:a0:d8: ee:74:a4:b2:ab:c0:a8:37:35:de:18:c2:0b:8a:ce: 12:27:1e:c5:db:ee:3e:09:86:21:e2:2d:a5:2d:7b: 50:9a:14:b1:dd:4d:e1:fd:c3:6d:8b:2a:21:a2:0e: 1b:f3:f5:fa:71:0c:94:be:1f:e4:d8:4d:b6:1a:13: 6c:64:74:4b:e1:c6:8b:7d:09:22:dc:7b:e5:4c:78: 34:00:f7:07:00:78:27:69:40:39:69:2d:41:8f:83: a4:d0:fb:da:3d:d7:56:99:c1:7a:23:b1:7f:5c:d7: 9a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5D:FD:3E:6F:1C:A3:19:08:FF:10:0C:6F:A2:6F:7B:A6:35:F0:DA X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:3f:ac:db:37:a0:21:fe:6c:eb:4c:a9:67:36:6a:2c:a6:7b: 37:8a:17:f3:57:61:7a:54:6b:34:f9:2a:4b:df:c1:4f:f6:53: 41:13:b9:f2:2a:4a:f3:de:9f:3c:10:51:30:07:26:cf:d8:f9: 5e:b3:29:2c:36:65:10:35:25:93:15:8e:09:2f:61:1f:09:23: cb:b9:ca:4a:6c:7c:08:54:3c:c6:c0:76:4d:23:38:74:62:e6: f6:cb:39:a6:87:4b:eb:2a:ba:64:06:b7:58:8f:c8:10:29:29: f1:cc:50:9b:26:74:de:41:c5:c0:76:5c:5d:fa:97:e9:cb:df: a6:3f:1c:d7:0f:10:53:7e:4b:23:a9:68:77:b5:ce:ce:bf:b3: 38:85:fb:7d:3f:68:be:b1:41:b8:3a:b8:62:87:a8:7e:fa:ae: db:57:50:62:e0:c9:2e:93:bb:d9:1c:56:51:c4:0b:05:a9:75: 9d:ed:45:b3:80:81:66:87:fe:b2:5a:a1:6c:62:90:cd:a3:01: dd:2c:1b:17:af:e8:45:ef:75:6d:7f:a6:60:98:3a:b9:2e:c8: f4:0b:8d:32:a5:1e:63:2a:46:13:61:61:b7:a1:b0:b5:e6:cd: d0:1f:90:45:56:bf:3b:23:c1:37:3b:4d:01:28:c5:e9:91:9a: 71:8d:ac:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjQwNTE4MjAzNzI2WhcNMjQwNTI1MjAzNzI2WjAYMRYwFAYD VQQDEw02NjQ5MTE4Ni02YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA588BVaeBGwDSh1Kuz5d6K/Iu6CZ52jI/diiPRczaY4vdh6f05DgnvSqTnwiQ b2+AmDOBaRXnRebyyov2bYmyWS8srhLBbpGl9mzrOe0rIdr9jT12Edz1APU8nsWK LE6+yveJCswsu/9QXbaDR6sqh5e55qlRuqBwk7HXBZtGPom2+VfgkIu/cLMQhaZ6 q2ut+kGsoNjudKSyq8CoNzXeGMILis4SJx7F2+4+CYYh4i2lLXtQmhSx3U3h/cNt iyohog4b8/X6cQyUvh/k2E22GhNsZHRL4caLfQki3HvlTHg0APcHAHgnaUA5aS1B j4Ok0PvaPddWmcF6I7F/XNeaRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBd/T5v HKMZCP8QDG+ib3umNfDaMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUP6zbN6Ah/mzrTKlnNmospns3ihfzV2F6VGs0+SpL38FP9lNBE7ny Kkrz3p88EFEwBybP2PlesyksNmUQNSWTFY4JL2EfCSPLucpKbHwIVDzGwHZNIzh0 Yub2yzmmh0vrKrpkBrdYj8gQKSnxzFCbJnTeQcXAdlxd+pfpy9+mPxzXDxBTfksj qWh3tc7Ov7M4hft9P2i+sUG4Orhih6h++q7bV1Bi4Mkuk7vZHFZRxAsFqXWd7UWz gIFmh/6yWqFsYpDNowHdLBsXr+hF73Vtf6ZgmDq5Lsj0C40ypR5jKkYTYWG3obC1 5s3QH5BFVr87I8E3O00BKMXpkZpxjayU -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org