$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: 5br4dc51Af2Fvl7EYI76POIGTA8aEYjfK6oYw9rhT4M= Subject key identifier: 94:98:01:6B:AB:FF:8F:1E:24:37:3B:23:97:87:6A:42:D1:92:4E:44 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 177B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 1771 Signing time: Sat 18 May 2024 17:01:31 +0000 Manifest this update: Sat 18 May 2024 17:01:31 +0000 Manifest next update: Sat 25 May 2024 17:01:31 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: QPxOg907bZYb1zsUTPf1i9TmsOcy06nFKAct7KkOY3c=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: xoIXW6TCjNLsVuPia3043Qf+XP8C2oeAFUHVrNh01ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6011 (0x177b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: May 18 17:01:31 2024 GMT Not After : May 25 17:01:31 2024 GMT Subject: CN=6648deeb-43ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b1:ca:64:3f:dc:e8:45:9e:e5:c1:11:c5:b2: 75:69:b6:ed:f7:fe:93:db:12:28:cb:0b:fe:d9:4c: ad:fe:d7:52:32:75:34:80:9d:30:b9:97:42:69:ef: 12:20:f4:53:dc:c5:94:a0:f7:10:2b:11:c1:b2:1d: df:99:6f:13:a3:7c:fa:13:d7:30:68:4a:d3:80:54: bc:71:23:ee:1b:6b:4f:9b:f3:8b:70:3e:49:54:af: 2d:3d:b4:84:c2:7c:9b:26:2d:dd:d1:a4:8d:a7:41: c0:51:6f:86:45:2b:23:37:7c:7b:dc:ca:74:fc:bc: 1a:8c:97:59:da:97:92:53:f7:4b:4e:70:c9:c1:68: 71:89:9d:f8:c1:3a:eb:e1:64:b6:0c:90:bf:93:bd: ac:fc:bc:1c:a3:f0:e7:56:c9:f9:49:09:59:0f:de: e8:30:79:7f:0f:63:25:9e:98:7e:48:59:2c:48:be: bc:3b:8d:1c:9c:27:bb:af:c6:48:ce:0a:c0:5a:60: 6b:f7:6f:c7:84:0f:12:69:57:cb:be:11:c4:65:bb: 2e:eb:91:7b:2f:37:b0:be:fa:19:34:dc:1d:77:8b: 37:d5:5c:79:c4:7f:ca:64:c8:1d:70:96:60:cf:f4: 0e:6e:c8:98:63:1e:f3:b8:2d:3c:2a:94:e5:a7:7f: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:98:01:6B:AB:FF:8F:1E:24:37:3B:23:97:87:6A:42:D1:92:4E:44 X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:32:66:47:64:1e:2d:eb:97:b5:4a:69:96:a7:c4:1b:4d:2b: 23:fa:55:d7:ef:49:17:3e:31:40:5e:64:58:5d:bf:85:09:d9: 43:74:a6:77:05:bc:88:e0:cb:aa:9e:75:e7:f3:c8:a6:1e:f3: e2:96:80:ca:6e:79:6a:2f:6a:81:4e:98:83:d2:36:c0:b0:25: 42:4e:3b:41:8c:d7:f2:76:2a:46:e8:59:03:bc:bd:a2:b2:ef: 98:e2:b4:c2:a5:0d:21:38:41:17:24:0f:b0:88:80:fa:27:93: be:5f:a7:9a:b1:23:99:58:52:b9:d3:be:2e:d9:ff:16:0f:be: df:7d:e1:0f:28:f2:82:7b:76:6a:f2:43:9e:a0:ad:60:27:5c: 23:b5:e1:ef:01:02:5f:d9:1b:ff:da:8d:d1:1d:a5:0b:3d:05: 56:f8:1f:db:dc:a8:8f:a8:b7:28:fc:cc:11:54:30:7a:68:fa: 50:c6:54:fa:82:16:99:32:85:3b:95:48:d2:35:03:aa:92:c9: 28:8b:13:51:fe:b5:ad:3e:c7:2c:5f:8a:e7:f0:15:cc:5e:5c: fe:e6:80:13:07:75:6e:a5:d4:21:3e:e1:74:cc:e1:b0:2a:f2: 4f:e2:91:91:bf:97:bb:21:d3:73:2b:28:20:db:79:93:38:c6: 11:71:f1:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjQwNTE4MTcwMTMxWhcNMjQwNTI1MTcwMTMxWjAYMRYwFAYD VQQDEw02NjQ4ZGVlYi00M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rHKZD/c6EWe5cERxbJ1abbt9/6T2xIoywv+2Uyt/tdSMnU0gJ0wuZdCae8S IPRT3MWUoPcQKxHBsh3fmW8To3z6E9cwaErTgFS8cSPuG2tPm/OLcD5JVK8tPbSE wnybJi3d0aSNp0HAUW+GRSsjN3x73Mp0/LwajJdZ2peSU/dLTnDJwWhxiZ34wTrr 4WS2DJC/k72s/Lwco/DnVsn5SQlZD97oMHl/D2Mlnph+SFksSL68O40cnCe7r8ZI zgrAWmBr92/HhA8SaVfLvhHEZbsu65F7LzewvvoZNNwdd4s31Vx5xH/KZMgdcJZg z/QObsiYYx7zuC08KpTlp3+PGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSYAWur /48eJDc7I5eHakLRkk5EMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJMmZHZB4t65e1SmmWp8QbTSsj+lXX70kXPjFAXmRYXb+FCdlDdKZ3 BbyI4MuqnnXn88imHvPiloDKbnlqL2qBTpiD0jbAsCVCTjtBjNfydipG6FkDvL2i su+Y4rTCpQ0hOEEXJA+wiID6J5O+X6easSOZWFK5074u2f8WD77ffeEPKPKCe3Zq 8kOeoK1gJ1wjteHvAQJf2Rv/2o3RHaULPQVW+B/b3KiPqLco/MwRVDB6aPpQxlT6 ghaZMoU7lUjSNQOqkskoixNR/rWtPscsX4rn8BXMXlz+5oATB3VupdQhPuF0zOGw KvJP4pGRv5e7IdNzKygg23mTOMYRcfHh -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org