$ rpki-client -vvf rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft File: QJOHCXJ0OMjB3r_9BBWQWEggxug.mft (raw, json) Hash identifier: Tl6sRXNsVK+rjW8bDPKae37aZZAa+HMhqaYd/+3G9fc= Subject key identifier: 76:9F:48:13:C5:29:09:58:E6:4E:FF:0A:EE:3C:2F:D6:EC:28:93:C7 Authority key identifier: 40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 Certificate issuer: /CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Certificate serial: 11F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft Manifest number: 11E9 Signing time: Sat 18 May 2024 17:43:06 +0000 Manifest this update: Sat 18 May 2024 17:43:06 +0000 Manifest next update: Sat 25 May 2024 17:43:06 +0000 Files and hashes: 1: QJOHCXJ0OMjB3r_9BBWQWEggxug.crl (hash: xALRQhpinQek54IyfJSB/3MZh/vv73mv5ONsfppoE6c=) 2: 2FE4DA1EC2E111E8A19CB72FC4F9AE02.roa (hash: WPkRwv2R4A6jQEt339OotsbCZn4MerzQzFD3flR+PJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4593 (0x11f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Validity Not Before: May 18 17:43:06 2024 GMT Not After : May 25 17:43:06 2024 GMT Subject: CN=6648e8aa-8c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:54:72:74:a3:45:ce:ba:5b:ff:bb:be:70: ab:ac:4e:aa:80:15:17:5d:24:8a:2e:01:2c:f2:25: 4e:e3:7d:44:f9:a4:f8:c1:7e:df:c1:eb:98:ea:89: 08:a8:0e:a7:e9:4d:91:72:fb:ef:4b:7f:53:fb:c5: 39:3a:da:c6:5e:e3:9d:5d:2b:70:cf:63:f4:eb:49: 10:8f:45:54:ec:e4:5a:28:57:e3:7b:94:aa:f8:38: c3:6a:09:c9:ec:17:9b:c9:75:1f:ae:ed:99:00:e7: 89:67:33:7d:55:b2:8c:59:36:cd:f5:6a:03:8f:3c: 1a:d8:c0:0b:8f:4f:be:f5:7f:12:3e:79:12:9f:64: ee:97:29:95:7c:8a:98:91:2e:1c:67:39:4c:6d:23: cc:3d:6e:2c:5a:b9:85:25:22:bd:b2:70:3b:c7:88: 8f:42:4a:29:9f:1a:e0:68:0b:e7:4b:1d:f0:4b:58: 1d:0a:e5:fa:23:11:fa:d7:d4:1b:0e:11:05:fe:2b: 25:b4:33:7b:6a:14:24:1d:a3:f4:dd:01:39:18:af: 95:a6:99:a1:d9:7a:9f:0c:69:1d:77:fb:97:a9:af: a9:5e:21:17:5f:fa:82:2c:9b:8b:3b:ba:43:eb:87: fd:70:43:cd:d6:5f:aa:2a:2d:95:43:d6:07:6c:a4: 1e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9F:48:13:C5:29:09:58:E6:4E:FF:0A:EE:3C:2F:D6:EC:28:93:C7 X509v3 Authority Key Identifier: keyid:40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:de:6d:c6:5d:ca:f2:a6:25:ce:77:90:47:8b:9a:56:8f:e5: 03:00:20:f2:1f:47:b4:d6:cc:34:18:b9:33:c8:7e:bf:9a:17: 17:18:61:68:56:68:5f:ad:44:3b:01:b2:72:5b:18:c4:c0:0c: f2:f5:62:16:03:65:a7:e8:0a:83:21:c2:10:11:53:7b:88:18: 88:28:e1:a9:0e:79:08:c6:68:b4:cb:be:76:6a:29:ce:c9:a5: c8:44:2e:db:1e:9a:4c:43:a6:44:15:a5:a6:f2:b8:fc:ab:12: a5:63:3a:a0:78:96:74:a1:e9:ad:9a:db:8c:0b:0e:85:a9:e7: c7:31:23:ad:aa:a5:c6:dc:9a:2c:e3:81:99:3a:67:e1:ec:ed: aa:67:28:f0:18:cf:58:b4:00:20:9f:4c:05:7e:88:36:d4:7b: ff:8f:de:52:f3:6d:fc:b3:08:14:4a:ea:6c:73:d5:2f:f3:f0: d7:78:4d:45:81:17:6d:5e:1e:1d:94:ef:fd:28:a8:fb:ba:e2: 00:f5:e0:f2:cd:2b:4f:1d:1a:e5:65:37:5a:9c:4d:13:12:7d: 64:fe:23:46:33:e8:25:b8:39:cd:dd:90:6f:1d:9b:5b:7f:c3: 4d:de:da:14:bc:67:c7:12:fe:a3:13:61:a4:c9:25:ad:f5:a7: 1b:c5:c4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOEYxMTAvBgNVBAUTKDQwOTM4NzA5NzI3NDM4QzhDMURFQkZGRDA0MTU5MDU4 NDgyMEM2RTgwHhcNMjQwNTE4MTc0MzA2WhcNMjQwNTI1MTc0MzA2WjAYMRYwFAYD VQQDEw02NjQ4ZThhYS04YzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsBUcnSjRc66W/+7vnCrrE6qgBUXXSSKLgEs8iVO431E+aT4wX7fweuY6okI qA6n6U2RcvvvS39T+8U5OtrGXuOdXStwz2P060kQj0VU7ORaKFfje5Sq+DjDagnJ 7BebyXUfru2ZAOeJZzN9VbKMWTbN9WoDjzwa2MALj0++9X8SPnkSn2TulymVfIqY kS4cZzlMbSPMPW4sWrmFJSK9snA7x4iPQkopnxrgaAvnSx3wS1gdCuX6IxH619Qb DhEF/isltDN7ahQkHaP03QE5GK+Vppmh2XqfDGkdd/uXqa+pXiEXX/qCLJuLO7pD 64f9cEPN1l+qKi2VQ9YHbKQeQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHafSBPF KQlY5k7/Cu48L9bsKJPHMB8GA1UdIwQYMBaAFECThwlydDjIwd6//QQVkFhIIMbo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE4Ri9EMjhENzVDMEMy REYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9NakIzcl85QkJXUVdFZ2d4 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKT0hDWEowT01qQjNyXzlCQldRV0VnZ3h1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjE4Ri9EMjhENzVDMEMyREYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9N akIzcl85QkJXUVdFZ2d4dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr3m3GXcrypiXOd5BHi5pWj+UDACDyH0e01sw0GLkzyH6/mhcXGGFo VmhfrUQ7AbJyWxjEwAzy9WIWA2Wn6AqDIcIQEVN7iBiIKOGpDnkIxmi0y752ainO yaXIRC7bHppMQ6ZEFaWm8rj8qxKlYzqgeJZ0oemtmtuMCw6FqefHMSOtqqXG3Jos 44GZOmfh7O2qZyjwGM9YtAAgn0wFfog21Hv/j95S8238swgUSupsc9Uv8/DXeE1F gRdtXh4dlO/9KKj7uuIA9eDyzStPHRrlZTdanE0TEn1k/iNGM+gluDnN3ZBvHZtb f8NN3toUvGfHEv6jE2GkySWt9acbxcQ4 -----END CERTIFICATE-----Generated at Sat May 18 18:12:32 2024 by rpki-client on console-fra.rpki-client.org