$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: mHVzeFTaDxqD98851VmqoFg1qUPqfzL5/MoINcTjhsU= Subject key identifier: 12:69:25:E7:12:BD:EF:04:30:DB:45:BB:53:6A:9B:A8:FB:A6:39:80 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 032B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0327 Signing time: Sun 19 May 2024 03:02:37 +0000 Manifest this update: Sun 19 May 2024 03:02:36 +0000 Manifest next update: Sun 26 May 2024 03:02:36 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: xfVD7KLzpnpWYjDVIUTQpS3qwDDT38BJc5OuO9PSO0o=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: 4EA20sWKXOK0+EASX2fNTIexi95SBTtQ84LrzMppkU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 811 (0x32b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: May 19 03:02:36 2024 GMT Not After : May 26 03:02:36 2024 GMT Subject: CN=66496bcc-7fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8b:be:d0:5f:c5:3c:cf:78:64:59:b6:64:bc: 93:a0:57:aa:86:ae:09:9c:8e:89:1f:a8:7a:11:94: 21:8b:5a:ae:04:1c:9b:8f:a0:76:f8:97:1b:8f:27: 6e:b0:cf:e7:1b:4b:d9:78:15:f6:98:6b:a7:1d:a3: 8f:ce:08:77:2b:5a:8c:6f:66:86:07:b5:28:db:c3: de:3e:22:90:f2:00:23:fd:02:eb:2e:aa:f5:80:ff: 75:d3:a7:7a:9a:83:26:5e:dd:1d:ce:ad:db:da:7c: 61:8d:b2:ed:db:5c:e3:d4:37:8d:5a:7e:b6:76:90: cf:24:5b:9d:ce:41:a6:cd:df:66:ad:9d:c0:d0:cf: 4d:39:c6:29:1b:89:90:4d:90:ed:8d:fb:cd:79:46: 81:39:ca:50:96:5c:fd:9f:63:d1:bd:2b:7f:d0:f7: e0:15:52:a5:69:fb:c5:95:b4:e6:82:3e:04:9a:6f: 99:98:c0:af:1b:f1:45:10:26:a9:29:51:c5:9a:b1: ff:e4:46:6a:6f:d0:e8:fd:7e:b6:70:b1:37:8c:81: bd:9f:2b:47:b6:cc:0d:43:3b:b4:d1:37:02:56:ba: 79:d4:fd:5e:8c:c4:d0:64:18:d1:5e:5a:af:47:c5: 06:c0:87:b1:82:cf:f8:df:7c:48:11:76:d1:08:71: fe:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:69:25:E7:12:BD:EF:04:30:DB:45:BB:53:6A:9B:A8:FB:A6:39:80 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:60:8b:63:7b:3d:92:a6:8d:d1:e3:4a:b8:ae:52:bb:7e:f0: b9:56:c7:35:7f:10:94:b5:42:c1:2e:0a:4a:d3:4b:bd:50:9a: f4:3f:e6:5f:d9:4c:80:0c:6c:41:ff:34:54:4e:83:8c:67:ba: 65:24:d9:04:ed:48:0f:43:f2:a2:88:13:dc:07:21:6d:51:e7: 91:55:62:4b:0b:c1:4c:0d:d7:ef:36:d3:71:08:f3:f4:bb:0f: d6:fa:d7:ad:87:d5:f0:2d:74:a1:1f:2a:24:e4:64:0f:51:c8: 5c:90:0f:8b:d2:2f:86:5e:e6:68:b6:fb:b9:52:dc:22:83:8f: 28:4e:f7:2f:cf:b5:8b:61:56:da:2b:77:b0:73:a1:e8:81:ba: 1f:90:e8:0c:7d:c4:0a:26:50:78:70:7f:61:6d:5d:39:3a:13: 8a:cc:2e:a6:81:d0:67:da:74:d5:c3:e9:ab:47:b6:d5:c8:0e: 92:c6:7f:1b:b7:20:6b:d1:30:18:42:44:24:bb:80:62:08:88: f7:97:33:2c:2c:f5:1f:a8:ea:56:ea:ca:bb:33:65:ac:93:09: 2c:c0:2a:27:72:4a:99:cd:f4:c5:e6:f9:54:70:03:dc:ef:f5: 1b:ee:f0:b6:96:62:35:c5:d3:cc:c9:d3:08:76:ea:cc:bb:05: 46:0d:11:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjQwNTE5MDMwMjM2WhcNMjQwNTI2MDMwMjM2WjAYMRYwFAYD VQQDEw02NjQ5NmJjYy03ZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIu+0F/FPM94ZFm2ZLyToFeqhq4JnI6JH6h6EZQhi1quBBybj6B2+Jcbjydu sM/nG0vZeBX2mGunHaOPzgh3K1qMb2aGB7Uo28PePiKQ8gAj/QLrLqr1gP9106d6 moMmXt0dzq3b2nxhjbLt21zj1DeNWn62dpDPJFudzkGmzd9mrZ3A0M9NOcYpG4mQ TZDtjfvNeUaBOcpQllz9n2PRvSt/0PfgFVKlafvFlbTmgj4Emm+ZmMCvG/FFECap KVHFmrH/5EZqb9Do/X62cLE3jIG9nytHtswNQzu00TcCVrp51P1ejMTQZBjRXlqv R8UGwIexgs/433xIEXbRCHH+PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJpJecS ve8EMNtFu1Nqm6j7pjmAMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhYItjez2Spo3R40q4rlK7fvC5Vsc1fxCUtULBLgpK00u9UJr0P+Zf 2UyADGxB/zRUToOMZ7plJNkE7UgPQ/KiiBPcByFtUeeRVWJLC8FMDdfvNtNxCPP0 uw/W+teth9XwLXShHyok5GQPUchckA+L0i+GXuZotvu5Utwig48oTvcvz7WLYVba K3ewc6HogbofkOgMfcQKJlB4cH9hbV05OhOKzC6mgdBn2nTVw+mrR7bVyA6Sxn8b tyBr0TAYQkQku4BiCIj3lzMsLPUfqOpW6sq7M2WskwkswConckqZzfTF5vlUcAPc 7/Ub7vC2lmI1xdPMydMIdurMuwVGDRGY -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org