$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: 0cug7X/92xypThnp0yJ5xakNKpzA56Zi/g5+fs/4uUg= Subject key identifier: 41:3C:87:D5:F9:A9:BD:1B:19:4B:95:FC:EC:9F:B6:10:09:1E:66:D6 Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 05D2 Signing time: Sun 19 May 2024 00:42:52 +0000 Manifest this update: Sun 19 May 2024 00:42:52 +0000 Manifest next update: Sun 26 May 2024 00:42:52 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: tBf+D15y4Hi9BikBy9sJS/UPFwaPNOnILyNGSkC6gSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: May 19 00:42:52 2024 GMT Not After : May 26 00:42:52 2024 GMT Subject: CN=66494b0c-15e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:b7:30:61:b2:c1:60:7c:30:f6:31:48:4c: 02:54:34:24:87:8e:aa:29:10:d5:22:12:e9:41:80: e9:6f:80:03:56:dd:79:13:be:44:83:ad:e1:e7:a7: 00:df:50:d3:c7:e2:ba:b6:60:17:8a:11:b6:ba:53: df:55:ae:f7:ca:bd:12:25:cd:ae:3a:f9:f9:f4:c9: 07:c3:c9:1e:4f:8a:e4:8c:55:e6:7d:13:6c:3b:e5: f1:67:67:c9:e0:e2:de:6e:f5:6f:9e:1d:79:e4:a9: 96:32:2e:5c:78:31:9c:ea:fe:af:a7:38:76:e8:ca: 67:29:45:81:4c:bc:df:93:25:68:69:8c:cf:b0:31: 6e:8b:b0:ad:27:54:c5:9f:bd:b2:8c:9a:59:14:68: 6b:7c:85:0d:e6:18:b1:3b:f0:da:6c:a4:3e:b8:d2: d2:ea:22:23:43:40:08:71:a5:4c:21:5c:0a:fa:a4: 06:4b:f2:22:2a:35:e0:9e:05:ce:44:ae:bd:45:bb: d1:7d:d8:5e:f5:08:a0:33:26:7a:a0:12:b4:76:2b: c5:f9:e0:92:a1:e0:c5:fb:94:75:2f:bd:f6:c5:3c: 84:d7:24:c1:54:8c:3f:bb:5c:57:1e:2d:2a:7b:c7: ff:c9:d5:04:32:9d:73:92:ea:02:dc:68:be:2d:6f: 23:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3C:87:D5:F9:A9:BD:1B:19:4B:95:FC:EC:9F:B6:10:09:1E:66:D6 X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:07:fb:79:d0:de:49:8f:80:aa:b4:dd:4c:a6:5b:51:aa:d8: 21:57:89:f3:a6:c6:70:88:65:c5:2d:4c:8c:18:e7:3c:9f:82: 54:69:90:bf:a8:cb:0f:ac:a2:34:d4:3a:53:ea:50:45:9a:90: c5:4c:b2:6f:51:df:aa:1d:89:98:77:5b:7f:36:1f:88:9e:c1: 8e:8b:d4:0e:d0:06:11:2e:6c:4e:0a:15:d7:6a:7a:7f:6f:b4: 4b:ac:64:1e:ad:9f:80:77:bd:d8:db:42:fc:25:3e:d0:eb:36: bb:b5:bd:5b:45:4f:75:1b:d2:13:7e:60:2b:70:64:a2:97:c9: 50:11:ca:2b:41:4d:24:ca:22:a1:f1:d8:cb:da:c9:36:6a:51: 03:6c:2a:45:5f:81:5d:50:b1:aa:3d:03:a2:b9:da:a1:d0:8f: e9:f5:f7:58:11:b9:3c:db:9e:72:65:cb:0b:91:f8:41:b4:c2: ae:43:95:57:3b:ac:b7:68:cc:41:9a:74:e4:77:1e:3a:4d:a1: 78:02:09:56:69:47:95:bc:be:bb:30:78:98:53:8b:12:35:50: 6b:b4:ba:49:2f:f3:83:9e:33:6e:9a:ec:28:c1:2a:b8:a9:58: 93:b9:69:83:3c:35:49:a3:be:d7:75:0b:92:b2:51:0b:a6:73: 65:49:e7:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjQwNTE5MDA0MjUyWhcNMjQwNTI2MDA0MjUyWjAYMRYwFAYD VQQDEw02NjQ5NGIwYy0xNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEi3MGGywWB8MPYxSEwCVDQkh46qKRDVIhLpQYDpb4ADVt15E75Eg63h56cA 31DTx+K6tmAXihG2ulPfVa73yr0SJc2uOvn59MkHw8keT4rkjFXmfRNsO+XxZ2fJ 4OLebvVvnh155KmWMi5ceDGc6v6vpzh26MpnKUWBTLzfkyVoaYzPsDFui7CtJ1TF n72yjJpZFGhrfIUN5hixO/DabKQ+uNLS6iIjQ0AIcaVMIVwK+qQGS/IiKjXgngXO RK69RbvRfdhe9QigMyZ6oBK0divF+eCSoeDF+5R1L732xTyE1yTBVIw/u1xXHi0q e8f/ydUEMp1zkuoC3Gi+LW8jNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE8h9X5 qb0bGUuV/OyfthAJHmbWMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHB/t50N5Jj4CqtN1MpltRqtghV4nzpsZwiGXFLUyMGOc8n4JUaZC/ qMsPrKI01DpT6lBFmpDFTLJvUd+qHYmYd1t/Nh+InsGOi9QO0AYRLmxOChXXanp/ b7RLrGQerZ+Ad73Y20L8JT7Q6za7tb1bRU91G9ITfmArcGSil8lQEcorQU0kyiKh 8djL2sk2alEDbCpFX4FdULGqPQOiudqh0I/p9fdYEbk8255yZcsLkfhBtMKuQ5VX O6y3aMxBmnTkdx46TaF4AglWaUeVvL67MHiYU4sSNVBrtLpJL/ODnjNumuwowSq4 qViTuWmDPDVJo77XdQuSslELpnNlSedf -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org