$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: CHXz633K5j8bp3+NC2jnuKNGvpUsEszsst2KuhnpxUM= Subject key identifier: 41:C8:5B:17:97:7C:BD:E6:63:8A:69:74:B1:0F:F2:37:40:A4:CB:66 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 0471 Signing time: Sun 19 May 2024 01:43:53 +0000 Manifest this update: Sun 19 May 2024 01:43:52 +0000 Manifest next update: Sun 26 May 2024 01:43:52 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: GtBfS29yRfuoRnbKS8ZtgAeH5dhXWy+mihG9Gl8v3Lk=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: pYbOaX5gybsQfWAOrx6Zb5iMtnGZHEDhaJY22OM+0h0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: May 19 01:43:52 2024 GMT Not After : May 26 01:43:52 2024 GMT Subject: CN=66495959-0806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ca:99:1c:b3:19:02:34:53:72:ec:e5:d1:3d: 54:03:83:95:db:ba:4f:15:4f:f6:cb:40:fd:9f:c3: 7c:66:f0:72:04:bf:36:f4:06:23:17:36:1a:d6:29: ec:70:64:f9:54:44:5c:44:6f:1c:be:b7:39:7c:84: de:70:74:c9:01:bb:56:52:be:14:a8:d4:be:5c:7e: 6b:0e:41:12:b5:7c:fe:e1:fc:ab:a1:2f:a0:05:6a: 49:89:af:a2:08:a3:10:62:68:f1:4d:21:e0:0a:5e: 1a:49:80:3c:43:76:10:45:c1:d9:63:9b:1b:bb:aa: 9f:f8:8a:18:20:a8:03:c5:86:f3:68:e7:f2:b0:0f: 46:6e:05:c9:06:de:dd:0e:af:0a:0d:08:92:0b:57: 3d:e7:f3:cb:97:34:2c:48:eb:ef:4e:99:23:88:1a: 35:12:00:20:84:33:ae:6b:c2:11:f6:02:10:0f:a6: 46:4c:5d:af:ce:4d:28:0b:d7:e7:bf:7b:47:96:a1: c0:68:4b:58:c5:55:c5:ec:aa:64:63:f0:d1:c2:fb: 1c:75:b7:78:24:c5:d3:42:56:d5:9b:35:16:79:5e: d4:a5:29:00:22:05:01:c6:35:68:09:05:b6:f2:a3: 6b:38:85:8f:c6:2c:8e:68:2a:a7:3d:7c:24:aa:0e: 4b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C8:5B:17:97:7C:BD:E6:63:8A:69:74:B1:0F:F2:37:40:A4:CB:66 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:11:a3:d6:1f:61:af:11:73:46:8f:07:c8:37:2d:2b:8c:e2: e2:67:42:7f:57:96:0d:ba:f0:4b:0c:78:53:b2:26:41:cb:86: 0a:d7:48:65:ae:d5:43:8c:c1:f4:4b:95:78:dd:ff:c9:42:3a: a4:e1:44:a4:31:8f:9c:a0:87:9f:32:11:2b:83:b1:38:ae:79: 06:ef:34:76:44:51:84:c2:66:22:ee:25:05:1e:89:0a:e5:1c: 47:9f:3e:f1:a3:e0:3e:08:bf:25:19:2c:22:ff:f2:38:4f:87: 76:7f:df:19:c0:f4:c3:74:43:da:8a:12:78:17:2c:3d:79:c1: 39:3f:9c:2e:ab:94:0d:38:b2:15:a2:9f:4c:f8:ab:96:bd:68: 1c:53:61:05:4e:2b:5c:e7:91:63:17:d5:ce:15:2a:2e:51:e9: c2:34:0c:98:f4:87:b1:f5:5f:fd:50:86:8a:82:58:c8:48:95: 90:b2:c5:73:cc:46:03:fe:07:72:32:64:31:cc:c8:95:db:d0: 85:a9:f3:15:4d:9a:c8:13:b0:e0:eb:01:3c:19:f0:62:80:f2: 26:14:73:a5:87:30:bb:90:eb:b3:3d:a6:ad:be:af:d4:6a:d9: d7:fa:78:57:8f:97:d4:5b:97:d6:64:f7:13:16:6a:38:13:df: 6b:5d:9b:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjQwNTE5MDE0MzUyWhcNMjQwNTI2MDE0MzUyWjAYMRYwFAYD VQQDEw02NjQ5NTk1OS0wODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cqZHLMZAjRTcuzl0T1UA4OV27pPFU/2y0D9n8N8ZvByBL829AYjFzYa1ins cGT5VERcRG8cvrc5fITecHTJAbtWUr4UqNS+XH5rDkEStXz+4fyroS+gBWpJia+i CKMQYmjxTSHgCl4aSYA8Q3YQRcHZY5sbu6qf+IoYIKgDxYbzaOfysA9GbgXJBt7d Dq8KDQiSC1c95/PLlzQsSOvvTpkjiBo1EgAghDOua8IR9gIQD6ZGTF2vzk0oC9fn v3tHlqHAaEtYxVXF7KpkY/DRwvscdbd4JMXTQlbVmzUWeV7UpSkAIgUBxjVoCQW2 8qNrOIWPxiyOaCqnPXwkqg5LsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHIWxeX fL3mY4ppdLEP8jdApMtmMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0EaPWH2GvEXNGjwfINy0rjOLiZ0J/V5YNuvBLDHhTsiZBy4YK10hl rtVDjMH0S5V43f/JQjqk4USkMY+coIefMhErg7E4rnkG7zR2RFGEwmYi7iUFHokK 5RxHnz7xo+A+CL8lGSwi//I4T4d2f98ZwPTDdEPaihJ4Fyw9ecE5P5wuq5QNOLIV op9M+KuWvWgcU2EFTitc55FjF9XOFSouUenCNAyY9Iex9V/9UIaKgljISJWQssVz zEYD/gdyMmQxzMiV29CFqfMVTZrIE7Dg6wE8GfBigPImFHOlhzC7kOuzPaatvq/U atnX+nhXj5fUW5fWZPcTFmo4E99rXZtS -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org