$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft File: QSE7L18kKfwyjsP06V1YhkAv62k.mft (raw, json) Hash identifier: oKVaE/cD6I0fouuszlRGi+hAlFzBrMKYOOeSv1alnTk= Subject key identifier: 29:34:CE:3A:F2:7A:1A:B0:FA:8B:EB:C8:D7:A1:99:BF:28:94:9B:CF Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft Manifest number: 32 Signing time: Thu 27 Jun 2024 07:26:21 +0000 Manifest this update: Thu 27 Jun 2024 07:26:20 +0000 Manifest next update: Thu 04 Jul 2024 07:26:20 +0000 Files and hashes: 1: QSE7L18kKfwyjsP06V1YhkAv62k.crl (hash: rDM7HxGEAXpdqtAaYV7oZk72Wg9EU0VLNi3Gd1CTJ28=) 2: 47142068221311EFB680F113C4F9AE02.roa (hash: 3uDrsrRbb1cyAq+JeBFLjvtsFG9kZ30NQk+7Kaop5/s=) 3: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (hash: 9JNtqwyGWn4dJi+PVqZF8kLxkmLj0VVNjKHeTz7b1m8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jul 2024 07:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Validity Not Before: Jun 27 07:26:20 2024 GMT Not After : Jul 4 07:26:20 2024 GMT Subject: CN=667d141c-771d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b3:dd:16:06:cf:a3:9f:c6:c6:95:6a:0c:22: f3:35:b3:fb:2b:db:07:47:ec:44:06:b4:14:95:fe: 1d:21:d5:25:45:e1:84:cb:14:bc:fe:6b:e5:78:7f: 88:bf:f5:88:b1:c8:8f:12:98:c7:a5:9d:a8:45:94: 54:cf:ac:75:63:67:12:44:8b:5f:c7:26:8a:5a:94: 41:7c:1a:e5:7e:f3:b4:e4:76:72:a0:9d:b8:3a:88: b3:31:b6:58:89:1e:bd:b7:db:6a:90:d6:2b:b1:14: 82:9b:28:34:bf:79:c3:fa:91:52:3b:62:5b:10:4f: c3:c7:b7:bf:35:ab:fd:af:d9:28:95:92:3b:fb:c8: 27:84:d2:e8:fe:fd:77:70:f5:74:32:07:ab:ad:87: 0f:d4:53:4e:1a:e6:91:e3:d3:98:03:ac:c5:38:8b: 80:bf:86:68:94:2c:d5:49:8b:10:ab:f1:95:ce:f4: 2b:ab:d6:bd:36:53:51:b8:8c:85:0f:2f:ca:82:b5: 79:a6:22:15:25:71:bc:f2:3b:0d:4c:08:fd:46:b4: 44:1e:a8:d2:23:5d:d9:e0:1e:4f:a5:a5:88:4b:4a: c1:24:2a:85:59:33:e3:33:31:5e:7f:95:86:70:d1: a7:ad:cc:20:28:1c:95:15:2e:8f:ea:57:48:95:9f: 7c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:34:CE:3A:F2:7A:1A:B0:FA:8B:EB:C8:D7:A1:99:BF:28:94:9B:CF X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:c7:d5:64:4a:f1:4f:bc:32:84:67:a8:1e:a1:fd:36:84:57: 96:95:27:bc:65:60:7d:f8:dc:de:32:87:c8:10:9b:d7:d2:37: b4:3a:27:c0:8f:3e:2e:51:1f:ac:86:2d:88:df:9f:b5:eb:70: 22:7c:ea:f8:25:30:fd:98:e5:4b:22:ae:b4:6b:f2:d1:4d:22: dc:43:27:0f:e4:2e:ff:dd:00:6e:8c:95:4f:90:51:04:68:f4: d0:11:b6:ea:0b:d7:26:01:92:ed:af:e6:1c:7b:b9:a1:06:34: bd:06:b3:c0:b2:84:2d:bc:20:40:79:04:9d:e2:6b:d7:f3:ae: 30:97:cd:27:a4:47:01:ae:36:2b:9d:1a:28:16:2d:a9:19:b6: eb:37:05:7b:de:a6:2c:8a:40:ba:fe:f5:40:e1:38:2b:d8:15: 39:80:05:40:a1:a7:a6:5b:94:78:f8:4d:93:ad:5f:90:cc:9d: 3a:39:bd:53:20:08:1e:b2:8f:b4:0e:bc:f3:78:3e:13:64:2e: bd:25:87:f4:c9:d2:a0:10:26:c8:4e:63:1e:db:c3:ad:47:41: c4:44:c9:e5:99:38:21:9e:4b:40:14:64:fc:2f:5f:0f:74:a6: c4:06:6d:36:2e:83:b7:31:f6:39:ed:9d:f3:2b:6c:60:25:ef: 21:bc:33:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTdDQjExMC8GA1UEBRMoNDEyMTNCMkY1RjI0MjlGQzMyOEVDM0Y0RTk1RDU4ODY0 MDJGRUI2OTAeFw0yNDA2MjcwNzI2MjBaFw0yNDA3MDQwNzI2MjBaMBgxFjAUBgNV BAMTDTY2N2QxNDFjLTc3MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcs90WBs+jn8bGlWoMIvM1s/sr2wdH7EQGtBSV/h0h1SVF4YTLFLz+a+V4f4i/ 9YixyI8SmMelnahFlFTPrHVjZxJEi1/HJopalEF8GuV+87TkdnKgnbg6iLMxtliJ Hr2322qQ1iuxFIKbKDS/ecP6kVI7YlsQT8PHt781q/2v2SiVkjv7yCeE0uj+/Xdw 9XQyB6uthw/UU04a5pHj05gDrMU4i4C/hmiULNVJixCr8ZXO9Cur1r02U1G4jIUP L8qCtXmmIhUlcbzyOw1MCP1GtEQeqNIjXdngHk+lpYhLSsEkKoVZM+MzMV5/lYZw 0aetzCAoHJUVLo/qV0iVn3wRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKTTOOvJ6 GrD6i+vI16GZvyiUm88wHwYDVR0jBBgwFoAUQSE7L18kKfwyjsP06V1YhkAv62kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1N0NCLzQ1OUIwQzY0RjJG ODExRUVBMzUwNjczOEM0RjlBRTAyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYy ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUVNFN0wxOGtLZnd5anNQMDZWMVloa0F2NjJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 N0NCLzQ1OUIwQzY0RjJGODExRUVBMzUwNjczOEM0RjlBRTAyL1FTRTdMMThrS2Z3 eWpzUDA2VjFZaGtBdjYyay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjH1WRK8U+8MoRnqB6h/TaEV5aVJ7xlYH343N4yh8gQm9fSN7Q6J8CP Pi5RH6yGLYjfn7XrcCJ86vglMP2Y5UsirrRr8tFNItxDJw/kLv/dAG6MlU+QUQRo 9NARtuoL1yYBku2v5hx7uaEGNL0Gs8CyhC28IEB5BJ3ia9fzrjCXzSekRwGuNiud GigWLakZtus3BXvepiyKQLr+9UDhOCvYFTmABUChp6ZblHj4TZOtX5DMnTo5vVMg CB6yj7QOvPN4PhNkLr0lh/TJ0qAQJshOYx7bw61HQcREyeWZOCGeS0AUZPwvXw90 psQGbTYug7cx9jntnfMrbGAl7yG8Mw8= -----END CERTIFICATE-----Generated at Thu Jun 27 11:24:10 2024 by rpki-client on console-fra.rpki-client.org