$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: eBQma1kosygX1vJY0WT3KAcJx72oiluY8vZt4d2Gmo0= Subject key identifier: 67:F8:1A:18:55:77:33:52:6F:A5:AC:08:EC:D7:D0:B6:42:0E:98:2E Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 012C Signing time: Sun 19 May 2024 05:01:14 +0000 Manifest this update: Sun 19 May 2024 05:01:13 +0000 Manifest next update: Sun 26 May 2024 05:01:13 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: 9HjdMQyXS+SBj0GIfNtfi0pIx7asTpWe1SAdO3Zd5u8=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: llqORwa/dP2LnzXgY4HGM95EoGcj3DijEYOC5/9U1WM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: May 19 05:01:13 2024 GMT Not After : May 26 05:01:13 2024 GMT Subject: CN=6649879a-79cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7e:4d:b4:98:0d:68:e3:8e:66:f8:af:ba:4e: c6:14:71:a2:06:b5:30:91:38:26:f9:59:b7:f8:b2: ad:34:bf:59:0e:c7:47:45:a3:e1:43:c2:bb:68:ab: 94:d5:04:13:18:a8:a9:20:e0:76:73:ec:f8:74:df: e0:16:f0:8c:1b:3a:fa:02:5a:5b:15:68:a8:3b:f1: ca:f1:92:b6:b9:ac:6f:af:51:24:a3:d3:d3:99:05: bc:63:0f:f0:a2:0c:64:b2:93:81:bf:3d:d0:38:d1: bd:57:14:18:16:36:b8:38:27:3f:6c:cd:52:a2:6d: c9:35:86:6c:fe:e8:27:d1:c8:6d:eb:27:5c:98:5b: 60:9a:3f:d4:43:b7:ee:5b:41:6a:25:7d:15:5f:32: cc:45:a3:91:81:e0:92:97:f3:6a:22:96:42:eb:36: c5:58:67:0a:d0:c4:88:09:dc:68:f2:96:e8:b8:af: ed:d6:43:ac:65:55:e8:6d:a6:e7:f7:a4:74:73:e2: 0e:0c:d6:9f:a5:fe:38:56:42:9c:70:cf:b7:f3:e6: 0d:5e:31:8c:09:53:fc:6c:fc:14:61:44:10:df:37: bd:b5:ff:ad:29:b5:ae:c5:7c:72:83:dd:cb:82:34: 5f:72:57:97:9f:13:ac:49:49:59:9a:03:46:00:7e: 0e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F8:1A:18:55:77:33:52:6F:A5:AC:08:EC:D7:D0:B6:42:0E:98:2E X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:d4:4e:e4:72:1c:b0:c5:f0:9b:8a:e4:e4:3f:ef:8d:5e:3f: 41:7a:f4:9f:57:ac:14:81:7c:1c:e5:7b:7e:b7:5f:3b:27:d5: 51:45:89:5b:da:bd:99:2f:f8:b8:6d:81:c1:5b:34:71:fd:a8: e9:ca:ed:38:10:25:00:70:85:6e:31:3a:47:ee:27:50:01:af: 2c:45:4b:56:d8:47:0e:b8:46:4a:48:2e:63:97:4e:2c:8d:cd: 75:6b:5d:92:81:8d:9c:9f:32:14:85:95:ed:53:41:44:f2:cf: c8:3a:57:e1:b2:b3:b9:8a:d6:2a:50:ce:98:d5:b4:92:29:08: 89:a2:0b:d7:33:b9:37:ff:d9:72:3e:4c:81:bf:eb:5d:09:47: 9f:49:c7:4a:0e:5d:e4:ea:c2:84:0e:15:fe:25:85:6b:28:2f: 40:d2:08:d9:53:47:6c:c7:49:59:3c:2e:36:ad:31:9c:26:bf: 99:2f:c3:40:b1:51:ee:ae:ec:df:ff:c4:42:05:07:c2:db:62: ef:94:9e:77:24:c2:da:03:f0:45:09:98:59:39:6e:b5:bb:c9: 78:5b:d5:5b:8f:25:56:a9:df:24:82:ec:1f:4f:1f:a4:d0:0f: bc:33:48:01:2c:2c:15:fc:b5:e7:cf:1f:6f:ff:3c:fe:bb:03: 7f:87:a6:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjQwNTE5MDUwMTEzWhcNMjQwNTI2MDUwMTEzWjAYMRYwFAYD VQQDEw02NjQ5ODc5YS03OWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtn5NtJgNaOOOZvivuk7GFHGiBrUwkTgm+Vm3+LKtNL9ZDsdHRaPhQ8K7aKuU 1QQTGKipIOB2c+z4dN/gFvCMGzr6AlpbFWioO/HK8ZK2uaxvr1Eko9PTmQW8Yw/w ogxkspOBvz3QONG9VxQYFja4OCc/bM1Som3JNYZs/ugn0cht6ydcmFtgmj/UQ7fu W0FqJX0VXzLMRaORgeCSl/NqIpZC6zbFWGcK0MSICdxo8pbouK/t1kOsZVXobabn 96R0c+IODNafpf44VkKccM+38+YNXjGMCVP8bPwUYUQQ3ze9tf+tKbWuxXxyg93L gjRfcleXnxOsSUlZmgNGAH4OgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGf4GhhV dzNSb6WsCOzX0LZCDpguMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE1E7kchywxfCbiuTkP++NXj9BevSfV6wUgXwc5Xt+t187J9VRRYlb 2r2ZL/i4bYHBWzRx/ajpyu04ECUAcIVuMTpH7idQAa8sRUtW2EcOuEZKSC5jl04s jc11a12SgY2cnzIUhZXtU0FE8s/IOlfhsrO5itYqUM6Y1bSSKQiJogvXM7k3/9ly PkyBv+tdCUefScdKDl3k6sKEDhX+JYVrKC9A0gjZU0dsx0lZPC42rTGcJr+ZL8NA sVHuruzf/8RCBQfC22LvlJ53JMLaA/BFCZhZOW61u8l4W9VbjyVWqd8kguwfTx+k 0A+8M0gBLCwV/LXnzx9v/zz+uwN/h6Z/ -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org