$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: B5Isr4R67ph7qdecKkrrAWMXCLmr6lmh8Ac86o8gR5E= Subject key identifier: 95:8E:9F:E8:04:3C:7E:E3:8A:1B:BB:11:E2:73:F7:FA:F1:9E:1F:A2 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 96 Signing time: Sun 19 May 2024 06:55:51 +0000 Manifest this update: Sun 19 May 2024 06:55:51 +0000 Manifest next update: Sun 26 May 2024 06:55:51 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: 3ahcfuuuViNwz9uaqxJqrHTOuhH09MN2HETNzIOEpdA=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: KN097sj8tp2qdOXl0WodsTPOwpV2GR7rS/3ve5t47xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: May 19 06:55:51 2024 GMT Not After : May 26 06:55:51 2024 GMT Subject: CN=6649a277-21c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b4:e9:29:50:30:7f:31:02:26:a5:f5:2f:87: b1:e7:89:dd:59:f8:0e:e5:13:ee:a9:02:2c:84:89: 53:56:3d:6d:0d:0f:e8:17:ab:af:99:f2:18:5f:61: 44:7e:ef:fe:85:1a:11:04:eb:e0:0c:20:ce:a3:77: d7:df:81:5f:4b:1e:09:67:8d:ce:1e:c3:ba:9c:da: 26:7f:11:3f:d8:05:a9:b1:0d:e5:16:73:ab:fa:66: 9d:d3:af:0b:dd:39:dd:19:20:a1:8b:a7:61:95:4b: 43:1a:78:1a:24:10:41:80:7c:50:bc:29:9d:fd:c6: 79:c3:89:65:21:5e:4c:d1:77:bc:61:bd:58:68:21: c3:c1:40:04:47:80:c2:d7:12:f9:01:f5:bd:5c:e9: bf:0b:25:9f:68:67:ea:06:cf:5d:51:da:be:68:ef: d9:59:0e:82:9f:10:73:96:f4:79:2e:da:40:3e:e4: 05:89:52:db:18:d1:64:1b:ae:56:a6:df:9c:f7:e2: 60:a3:a0:68:a2:64:50:e1:c7:03:1c:51:b9:19:b5: 5c:4c:67:d8:46:b1:90:63:d3:ad:5e:22:90:51:64: 49:eb:2d:26:8d:4c:31:4e:de:e7:35:69:72:35:e1: 87:3e:d6:0a:ba:63:f6:e5:f8:6f:d0:5f:a5:3c:23: 1c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8E:9F:E8:04:3C:7E:E3:8A:1B:BB:11:E2:73:F7:FA:F1:9E:1F:A2 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:f3:66:4c:ee:54:c3:e7:f6:f6:9d:ba:7b:d1:c1:b7:a2:fa: 55:d1:74:0c:de:45:ec:6b:14:24:30:84:15:28:60:f2:bf:d4: a3:aa:9f:d5:c4:c6:b0:3d:90:d1:7b:81:62:21:6a:6b:3d:07: 7f:3c:98:f4:07:96:23:bc:13:b5:e1:ee:c2:f3:8e:a3:45:3a: c1:52:e1:ab:90:a3:b9:e0:04:03:34:bd:6b:4c:67:d3:43:94: 7e:8e:a0:17:46:8f:1f:24:c7:33:b2:b2:75:76:e4:92:81:07: 06:16:8c:10:c4:47:2c:cb:0e:53:51:38:79:20:a5:a8:41:d3: b7:03:da:1b:32:a7:76:f0:8a:ee:a4:50:17:9e:a4:dc:79:b4: 21:4a:e2:4b:f0:92:6e:2f:00:0b:89:1e:23:9a:c8:f8:3a:56: 47:62:d1:19:86:b0:be:ef:a5:60:db:8a:67:43:6d:fc:d1:66: 8b:5b:37:b1:1b:95:3b:99:f4:0b:51:d0:d3:f8:cd:f1:0c:15: ba:09:96:ca:23:47:4f:25:a5:ba:12:be:15:66:c0:42:0a:a2: 9e:cc:0f:f4:42:81:7b:a8:cb:43:e3:ed:06:8c:4f:d4:0b:d1: 5e:13:7f:7b:91:ef:47:5b:e3:bf:e4:81:60:34:a5:b1:d2:07: 37:d3:a0:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjQwNTE5MDY1NTUxWhcNMjQwNTI2MDY1NTUxWjAYMRYwFAYD VQQDEw02NjQ5YTI3Ny0yMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87TpKVAwfzECJqX1L4ex54ndWfgO5RPuqQIshIlTVj1tDQ/oF6uvmfIYX2FE fu/+hRoRBOvgDCDOo3fX34FfSx4JZ43OHsO6nNomfxE/2AWpsQ3lFnOr+mad068L 3TndGSChi6dhlUtDGngaJBBBgHxQvCmd/cZ5w4llIV5M0Xe8Yb1YaCHDwUAER4DC 1xL5AfW9XOm/CyWfaGfqBs9dUdq+aO/ZWQ6CnxBzlvR5LtpAPuQFiVLbGNFkG65W pt+c9+Jgo6BoomRQ4ccDHFG5GbVcTGfYRrGQY9OtXiKQUWRJ6y0mjUwxTt7nNWly NeGHPtYKumP25fhv0F+lPCMcLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWOn+gE PH7jihu7EeJz9/rxnh+iMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE82ZM7lTD5/b2nbp70cG3ovpV0XQM3kXsaxQkMIQVKGDyv9Sjqp/V xMawPZDRe4FiIWprPQd/PJj0B5YjvBO14e7C846jRTrBUuGrkKO54AQDNL1rTGfT Q5R+jqAXRo8fJMczsrJ1duSSgQcGFowQxEcsyw5TUTh5IKWoQdO3A9obMqd28Iru pFAXnqTcebQhSuJL8JJuLwALiR4jmsj4OlZHYtEZhrC+76Vg24pnQ2380WaLWzex G5U7mfQLUdDT+M3xDBW6CZbKI0dPJaW6Er4VZsBCCqKezA/0QoF7qMtD4+0GjE/U C9FeE397ke9HW+O/5IFgNKWx0gc306DV -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org