$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: bCLddcHMdLYS0uQ9ys7rC2AZgCXAkzOVZWSe73g4Kl8= Subject key identifier: C7:13:FB:59:90:0A:D8:C5:51:8E:2D:D9:97:C1:25:75:E4:7A:28:C8 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0366 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 035F Signing time: Sun 19 May 2024 02:53:13 +0000 Manifest this update: Sun 19 May 2024 02:53:13 +0000 Manifest next update: Sun 26 May 2024 02:53:13 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: nYGV92iIKNdDZtlBayOGkc2psAE4axwngpDQAb7xnsQ=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: AfY7eyTilChMLxapftj7pKmILvuXrf7N5KmO/wXIvzo=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: UYZPwEPwQrp0BRGw0qDpjhu31ztoWw/KZ4xEsMvOz1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: May 19 02:53:13 2024 GMT Not After : May 26 02:53:13 2024 GMT Subject: CN=66496999-d604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:91:ae:69:4d:0e:1c:c3:af:7c:cc:39:a4:7a: a5:d1:4a:f3:a6:d9:b4:eb:a9:4f:e5:15:bf:f7:b3: f4:a8:67:fa:b3:6c:24:6e:95:dc:19:2f:d0:ae:4e: 78:06:72:ca:fa:01:70:ae:60:39:1a:10:8e:19:c2: 45:7b:3c:ee:88:cb:e8:51:8e:d7:94:47:6c:e8:27: ac:0e:75:c5:46:95:20:02:22:1c:52:12:55:a9:d3: 10:ab:f5:f1:4a:21:7e:e9:fe:db:eb:67:de:f1:02: ba:72:46:36:4e:b6:52:b8:97:15:a9:fd:cf:0e:1a: 06:d4:a7:94:23:5b:67:58:33:fa:56:90:b1:78:ea: 4f:80:f9:f2:43:4f:17:59:9c:26:98:19:b4:8f:e4: fc:f3:48:20:c8:95:2f:06:0e:0b:ef:a3:b6:e8:ca: f7:76:b1:a7:b2:2f:1f:25:8b:a7:36:9d:0c:5b:c6: fc:7c:dd:1a:fc:21:7b:88:da:26:a2:98:c4:22:2d: 62:b6:6c:43:8c:d4:49:76:60:af:be:f8:7a:99:de: 44:a1:7a:a3:92:60:93:a6:4e:7f:3b:f9:fd:3d:4c: ec:a4:65:62:20:0b:f3:25:58:d6:d8:b0:d7:2e:b9: b6:fc:f7:ea:1c:ca:f8:90:44:7b:02:ea:c5:82:03: cc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:13:FB:59:90:0A:D8:C5:51:8E:2D:D9:97:C1:25:75:E4:7A:28:C8 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f1:4c:6d:60:d6:7c:50:ec:36:db:c4:9a:b4:b6:1f:ff:3c: 6f:fe:a9:2f:e1:5f:3d:b7:86:d8:94:c1:ba:60:bd:37:5a:f4: c5:45:ee:ef:bd:cf:84:3f:d1:a3:73:c7:4b:cf:38:18:43:f1: f2:fa:ff:b5:4b:a7:83:f4:4c:41:c9:1b:4a:97:7e:20:cd:4e: bc:07:af:e1:24:c2:af:10:d3:41:c3:93:2b:95:e3:ac:c1:02: 5e:97:01:da:71:1e:20:45:31:13:e6:ce:27:8e:20:a8:23:8f: d9:9a:38:c6:8f:a6:b9:15:bf:bd:f5:4f:c9:88:a6:e0:61:74: 86:03:ff:de:39:d7:4c:74:1b:5b:4a:34:6f:56:02:ce:3f:b2: ad:64:db:24:99:3c:4e:10:4b:91:0f:ef:e9:a9:1d:e1:be:e7: 07:03:c3:7c:08:0b:02:e7:2d:53:2e:1c:b7:46:31:ca:99:97: a6:0e:1e:6f:1d:1a:dd:76:b9:06:42:74:92:90:94:41:d0:58: 79:95:b9:42:ad:17:f7:14:c8:96:20:8b:b9:83:e9:22:64:f5: 25:bf:65:8b:08:46:83:3d:40:81:34:ad:b8:b0:6a:b7:1e:80: 0b:68:03:ba:2c:85:eb:cd:25:77:54:d6:74:14:e4:11:2b:45: ce:03:bf:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjQwNTE5MDI1MzEzWhcNMjQwNTI2MDI1MzEzWjAYMRYwFAYD VQQDEw02NjQ5Njk5OS1kNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZGuaU0OHMOvfMw5pHql0Urzptm066lP5RW/97P0qGf6s2wkbpXcGS/Qrk54 BnLK+gFwrmA5GhCOGcJFezzuiMvoUY7XlEds6CesDnXFRpUgAiIcUhJVqdMQq/Xx SiF+6f7b62fe8QK6ckY2TrZSuJcVqf3PDhoG1KeUI1tnWDP6VpCxeOpPgPnyQ08X WZwmmBm0j+T880ggyJUvBg4L76O26Mr3drGnsi8fJYunNp0MW8b8fN0a/CF7iNom opjEIi1itmxDjNRJdmCvvvh6md5EoXqjkmCTpk5/O/n9PUzspGViIAvzJVjW2LDX Lrm2/PfqHMr4kER7AurFggPM+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcT+1mQ CtjFUY4t2ZfBJXXkeijIMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV8UxtYNZ8UOw228SatLYf/zxv/qkv4V89t4bYlMG6YL03WvTFRe7v vc+EP9Gjc8dLzzgYQ/Hy+v+1S6eD9ExByRtKl34gzU68B6/hJMKvENNBw5MrleOs wQJelwHacR4gRTET5s4njiCoI4/ZmjjGj6a5Fb+99U/JiKbgYXSGA//eOddMdBtb SjRvVgLOP7KtZNskmTxOEEuRD+/pqR3hvucHA8N8CAsC5y1TLhy3RjHKmZemDh5v HRrddrkGQnSSkJRB0Fh5lblCrRf3FMiWIIu5g+kiZPUlv2WLCEaDPUCBNK24sGq3 HoALaAO6LIXrzSV3VNZ0FOQRK0XOA79l -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org