$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: XJU1iW52Wp37Vljxrvp1wbaaODhUyNv48Q9r1jvenAw= Subject key identifier: 8F:C1:E5:DA:80:D6:42:AE:2F:74:5E:0C:23:2C:11:1E:43:E5:4F:AD Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 0233 Signing time: Sun 19 May 2024 04:01:31 +0000 Manifest this update: Sun 19 May 2024 04:01:30 +0000 Manifest next update: Sun 26 May 2024 04:01:30 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: OVRvQQW4F1TYW8489xez04jRCEYvB6jBhKhiQ5ZZSrw=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: RSA/ql0lNyv9WyAk0d5FOAFZ5R84Y3YnmGvbKn1e7f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: May 19 04:01:30 2024 GMT Not After : May 26 04:01:30 2024 GMT Subject: CN=6649799a-301d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:84:54:b2:f1:9f:fe:6b:ea:5e:30:de:48:4b: e4:42:c3:d2:0f:06:3f:a4:ad:05:40:09:87:c0:b3: 7d:0e:a5:a2:f1:45:bf:a5:6e:4f:5d:f9:02:00:c5: 67:39:ec:60:b9:22:86:d4:d6:79:ed:e9:8a:0a:17: 9b:50:8e:0e:af:f6:0a:fd:23:87:33:1c:ff:76:62: 4b:c9:ff:91:f1:96:80:ef:25:5f:ca:76:e5:5b:9d: c1:15:be:ff:63:9f:47:1f:9a:71:67:fb:5a:22:86: f5:3c:5d:dd:a3:07:dd:87:1d:fa:30:04:e8:c3:ef: 8d:52:65:6b:5b:4f:69:8c:19:10:5e:99:0b:c1:2c: 11:4d:a1:fe:99:7a:97:15:6a:5d:ce:90:7b:da:8a: 07:18:43:32:97:2b:f0:e9:e5:f6:54:3f:26:7f:32: 8b:a9:bd:a5:6b:78:e1:31:2c:e1:9c:be:c4:f3:7d: 23:e4:70:08:a0:29:6a:7a:0c:66:68:88:8a:38:33: 0f:a5:57:fa:8c:20:f3:ff:19:88:03:ba:94:e0:d5: 1f:f0:32:a8:89:c1:06:a1:6b:76:4b:d4:52:24:81: 62:aa:e4:09:5a:4b:60:30:b1:69:40:b6:a7:ea:ee: 5c:27:ed:2e:64:16:bc:f9:21:c5:a7:69:9d:d4:e3: 3f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C1:E5:DA:80:D6:42:AE:2F:74:5E:0C:23:2C:11:1E:43:E5:4F:AD X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f0:4e:ba:26:ed:fb:db:a1:bf:d9:02:26:68:5a:36:5d:52: 74:43:00:7f:36:70:6a:11:4b:75:b7:65:90:73:86:db:f8:47: f8:f6:80:ea:64:5c:47:02:d6:e1:f1:5a:5f:f8:40:92:70:3c: 04:8c:d2:76:d4:56:cd:3b:b7:ef:0f:19:e3:d8:e4:43:eb:d9: 1e:7c:e7:a2:5a:ff:24:cd:87:45:4b:23:54:dd:3f:5c:bd:e1: 03:79:5b:b6:b4:49:87:02:7b:77:24:10:bd:9a:75:50:06:f4: ec:ce:62:a3:3d:83:21:7b:02:11:92:a0:3b:af:d1:3f:d8:1a: 84:4f:72:5c:21:74:ec:cd:f5:13:d3:74:d5:39:fe:99:a8:6d: 5a:6c:bc:b0:a9:d8:96:d6:ac:db:ae:10:c1:50:01:f4:84:f2: de:ce:32:01:62:24:00:53:26:3b:d6:15:1a:6b:67:b1:dc:c7: f2:53:57:9d:6d:12:9d:92:b0:60:bc:f3:b5:f6:20:d6:0b:4c: 93:ee:f9:c0:52:eb:32:12:9c:a9:71:bd:0d:0b:32:5b:f7:1a: 2b:5c:37:76:23:e8:fc:87:d9:e0:91:af:ed:77:d5:0e:e6:47: 9d:d4:dc:ce:2d:42:d8:0c:04:b8:37:81:bb:e9:f6:30:1d:91: 3c:2c:24:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjQwNTE5MDQwMTMwWhcNMjQwNTI2MDQwMTMwWjAYMRYwFAYD VQQDEw02NjQ5Nzk5YS0zMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oRUsvGf/mvqXjDeSEvkQsPSDwY/pK0FQAmHwLN9DqWi8UW/pW5PXfkCAMVn OexguSKG1NZ57emKChebUI4Or/YK/SOHMxz/dmJLyf+R8ZaA7yVfynblW53BFb7/ Y59HH5pxZ/taIob1PF3dowfdhx36MATow++NUmVrW09pjBkQXpkLwSwRTaH+mXqX FWpdzpB72ooHGEMylyvw6eX2VD8mfzKLqb2la3jhMSzhnL7E830j5HAIoClqegxm aIiKODMPpVf6jCDz/xmIA7qU4NUf8DKoicEGoWt2S9RSJIFiquQJWktgMLFpQLan 6u5cJ+0uZBa8+SHFp2md1OM/oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/B5dqA 1kKuL3ReDCMsER5D5U+tMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN8E66Ju3726G/2QImaFo2XVJ0QwB/NnBqEUt1t2WQc4bb+Ef49oDq ZFxHAtbh8Vpf+ECScDwEjNJ21FbNO7fvDxnj2ORD69kefOeiWv8kzYdFSyNU3T9c veEDeVu2tEmHAnt3JBC9mnVQBvTszmKjPYMhewIRkqA7r9E/2BqET3JcIXTszfUT 03TVOf6ZqG1abLywqdiW1qzbrhDBUAH0hPLezjIBYiQAUyY71hUaa2ex3MfyU1ed bRKdkrBgvPO19iDWC0yT7vnAUusyEpypcb0NCzJb9xorXDd2I+j8h9ngka/td9UO 5ked1NzOLULYDAS4N4G76fYwHZE8LCSb -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org