$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: HOS576J0KWTCkdRh4iCJprz9AvGeETNnP+sSevZqDwI= Subject key identifier: 71:81:41:63:60:2F:A8:7A:B7:AC:46:E8:97:08:5D:66:2B:C8:77:C2 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0237 Signing time: Sun 19 May 2024 04:00:06 +0000 Manifest this update: Sun 19 May 2024 04:00:05 +0000 Manifest next update: Sun 26 May 2024 04:00:05 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: CfAhpD3FaFUttPK+gEN+kUHd3hBVbV3G7RFImjJtKjo=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: X3VVD9eC8O0W7R9IeKS2nXGLKBHkLWTm4TmiESYd3Dg=) 3: 129A21B0DC1611ECAACFC563C4F9AE02.roa (hash: 5lEvngN+860DIPtDP1jQZ1cLSJ3eijMJ3OZtwv/uxtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: May 19 04:00:05 2024 GMT Not After : May 26 04:00:05 2024 GMT Subject: CN=66497946-160c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ab:d7:54:4f:d6:d6:e5:d4:e9:d5:e1:29:32: ec:f1:68:25:ee:01:ba:32:3e:bc:b7:ec:18:cf:3a: 7d:74:91:32:7c:64:9b:e0:c4:4a:78:c6:28:8e:8a: 04:33:a1:17:0a:c3:1a:bf:f9:25:c1:fc:cd:c9:9d: c4:c3:88:af:a8:90:dd:bd:bc:7b:f2:5a:8f:96:16: aa:ec:6b:2b:d3:c7:a0:80:86:04:4b:14:bb:07:13: 32:c4:6e:79:e6:59:79:69:37:6b:dc:74:3e:20:33: 63:70:26:41:fe:4d:b3:3f:af:45:b5:43:bc:ec:26: 4d:3c:06:92:dd:14:7e:c7:8b:98:b9:74:ff:bd:d6: 29:44:79:6b:e0:6a:53:ac:4b:f9:ca:e5:4b:11:ce: e4:6c:bc:6d:56:5a:fb:f6:b7:58:86:eb:06:61:f9: 28:10:88:e8:4f:7d:b3:11:23:b1:e2:c7:50:ae:70: 07:ca:bc:99:71:c8:08:65:45:31:e4:00:df:67:29: 37:e9:d6:d0:a4:ba:7d:e4:4c:1d:e5:09:4e:97:87: 00:4b:70:96:cb:56:1a:8c:51:36:73:9b:cc:5a:41: b1:58:56:a8:c6:a5:2a:5b:c1:0c:61:9f:8e:b3:5e: 15:17:da:db:36:01:36:02:06:58:56:10:d0:f4:e9: 1f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:81:41:63:60:2F:A8:7A:B7:AC:46:E8:97:08:5D:66:2B:C8:77:C2 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:05:86:b4:2a:8b:a4:19:c6:2c:ea:67:bc:c9:78:69:3e:50: 87:f6:4f:f4:af:8c:d4:b0:35:2c:70:be:08:7f:1f:94:19:ff: b3:68:6f:65:57:cd:35:89:b1:fd:e1:0b:34:01:2e:df:cf:06: 2f:78:74:14:6b:e3:f8:d9:7e:48:d9:69:2c:eb:c1:18:b8:1a: f5:26:38:4a:1c:77:b0:ec:be:c0:fa:a7:df:ae:b2:fa:e4:14: de:60:5d:f4:81:89:11:90:4b:8f:ee:fd:ff:5e:8b:8f:ad:56: 4b:25:3a:23:4f:d7:c3:2f:4f:f5:ba:c1:b5:66:91:2c:ad:a3: 3e:a8:a0:7a:f2:4f:d7:4c:08:58:b9:bf:b4:d8:2f:0d:b5:72: 4f:52:63:af:78:1e:59:51:7d:0b:78:59:04:8a:15:88:5d:96: 64:79:d3:eb:81:28:50:2b:eb:16:ab:6e:3f:1e:26:e4:42:1f: 3e:ca:22:f7:e0:26:4f:0d:6b:ac:8a:fc:a8:e3:21:b1:51:17: bd:32:ee:b5:b8:10:88:cd:6c:02:47:07:ed:3c:d3:b3:6c:2a: 50:d2:28:9d:20:ec:4e:d9:2a:94:cc:c6:2b:32:4e:7a:da:fc: 49:29:ba:24:5e:66:53:a5:b8:91:06:18:60:f4:7c:4d:99:61: 08:07:92:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjQwNTE5MDQwMDA1WhcNMjQwNTI2MDQwMDA1WjAYMRYwFAYD VQQDEw02NjQ5Nzk0Ni0xNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6vXVE/W1uXU6dXhKTLs8Wgl7gG6Mj68t+wYzzp9dJEyfGSb4MRKeMYojooE M6EXCsMav/klwfzNyZ3Ew4ivqJDdvbx78lqPlhaq7Gsr08eggIYESxS7BxMyxG55 5ll5aTdr3HQ+IDNjcCZB/k2zP69FtUO87CZNPAaS3RR+x4uYuXT/vdYpRHlr4GpT rEv5yuVLEc7kbLxtVlr79rdYhusGYfkoEIjoT32zESOx4sdQrnAHyryZccgIZUUx 5ADfZyk36dbQpLp95Ewd5QlOl4cAS3CWy1YajFE2c5vMWkGxWFaoxqUqW8EMYZ+O s14VF9rbNgE2AgZYVhDQ9OkfSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGBQWNg L6h6t6xG6JcIXWYryHfCMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjBYa0KoukGcYs6me8yXhpPlCH9k/0r4zUsDUscL4Ifx+UGf+zaG9l V801ibH94Qs0AS7fzwYveHQUa+P42X5I2Wks68EYuBr1JjhKHHew7L7A+qffrrL6 5BTeYF30gYkRkEuP7v3/XouPrVZLJTojT9fDL0/1usG1ZpEsraM+qKB68k/XTAhY ub+02C8NtXJPUmOveB5ZUX0LeFkEihWIXZZkedPrgShQK+sWq24/HibkQh8+yiL3 4CZPDWusivyo4yGxURe9Mu61uBCIzWwCRwftPNOzbCpQ0iidIOxO2SqUzMYrMk56 2vxJKbokXmZTpbiRBhhg9HxNmWEIB5LC -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org