$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: RabX/6bi1U+njE1EPa1KvFCfhnyvA0/nzPdeakxs/x4= Subject key identifier: 79:18:59:3A:CB:05:DD:C2:06:2D:84:99:48:42:16:D6:74:8F:B3:BA Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: D4 Signing time: Sun 19 May 2024 06:10:57 +0000 Manifest this update: Sun 19 May 2024 06:10:56 +0000 Manifest next update: Sun 26 May 2024 06:10:56 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: jOw1n5HASVfbA2BdwSB+UujgNYtYQ85gQut24a6On8Y=) 2: C4F6C132D68011ED86CA6756C4F9AE02.roa (hash: fAmGIZIeJ5UgE8P4J7XxA+4clbXzxz5i2LgHlxRJCh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: May 19 06:10:56 2024 GMT Not After : May 26 06:10:56 2024 GMT Subject: CN=664997f0-47e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:3c:b6:50:98:eb:0d:8d:24:d5:35:52:c7: ce:2a:46:d8:6b:5a:c6:40:91:15:23:90:72:1c:6e: 4a:11:b9:71:16:38:1e:2d:45:93:d5:9a:49:68:58: a0:d0:f5:7b:97:17:5b:85:10:d4:39:45:16:96:8c: 49:e8:cd:51:b5:47:23:9e:94:17:dd:84:16:e7:c0: f7:ee:14:46:08:e0:6f:82:c3:61:6c:81:c9:2e:e7: d8:39:3a:d5:9c:b9:96:6a:ab:30:a9:ab:cb:ca:ab: 18:bd:ab:2a:51:ec:6e:c4:5c:3d:65:60:95:c4:e2: 6e:34:20:76:72:c5:7c:64:24:74:b6:92:cf:c4:ca: b0:fd:bc:f2:5f:4e:13:c8:e1:08:75:f7:df:08:d3: 08:be:e8:a1:42:72:98:b0:05:a1:4d:6d:59:70:a1: db:f5:d9:07:59:e5:d8:61:17:33:c1:76:54:88:8a: 1c:a1:65:7d:65:8a:aa:6f:1a:1a:0b:85:4a:70:7f: 43:7c:03:97:cf:c2:8e:54:44:6e:a4:16:9b:5c:1b: ca:ba:3b:7f:5e:71:a9:ec:08:ec:86:6a:71:3b:fb: 87:4c:3e:ea:f2:9e:af:96:eb:04:8a:a3:a5:71:be: fc:de:ed:3b:3d:21:79:4f:95:5b:22:a9:c2:c9:7a: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:18:59:3A:CB:05:DD:C2:06:2D:84:99:48:42:16:D6:74:8F:B3:BA X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4a:57:ba:93:35:24:c8:49:0f:d7:8b:8d:aa:03:99:43:cc: 69:15:11:d5:e6:7a:70:38:18:8e:da:b8:8d:3f:29:c1:98:1a: 64:0f:39:35:51:c0:7f:b7:0f:ff:2c:e9:71:d6:54:35:75:0b: df:35:57:74:13:7b:33:52:49:e4:f1:b2:68:57:e3:b2:22:11: eb:7d:06:8d:c1:1e:9c:99:da:61:2c:15:13:5d:49:75:ff:bc: 7c:38:78:81:63:f8:76:a9:95:99:b4:aa:87:1f:64:46:b9:fd: 04:bb:fe:b7:a9:1e:de:ef:45:0a:b8:72:15:91:bb:c0:e1:61: f6:af:2b:2b:66:19:f1:bd:50:15:e7:45:6c:70:47:2f:f8:ad: ea:08:47:18:a1:96:7c:f0:d0:78:2b:00:c1:45:aa:ea:f5:f6: 5e:db:cf:6b:5e:84:3b:9c:4d:50:5c:3b:fa:68:48:2d:12:61: 39:7e:5f:e2:17:e0:ac:a9:1b:e9:12:ed:88:c6:e6:ed:d5:57: 07:b4:54:29:fb:89:0c:1d:12:30:6d:43:63:3f:94:5d:61:ea: b2:13:12:30:fc:46:2f:45:71:09:a1:f0:a3:94:04:72:49:af: 84:3e:06:af:3d:7f:71:47:63:0e:e9:0c:29:17:fe:5c:52:e1: aa:dd:0b:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjQwNTE5MDYxMDU2WhcNMjQwNTI2MDYxMDU2WjAYMRYwFAYD VQQDEw02NjQ5OTdmMC00N2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAri88tlCY6w2NJNU1UsfOKkbYa1rGQJEVI5ByHG5KEblxFjgeLUWT1ZpJaFig 0PV7lxdbhRDUOUUWloxJ6M1RtUcjnpQX3YQW58D37hRGCOBvgsNhbIHJLufYOTrV nLmWaqswqavLyqsYvasqUexuxFw9ZWCVxOJuNCB2csV8ZCR0tpLPxMqw/bzyX04T yOEIdfffCNMIvuihQnKYsAWhTW1ZcKHb9dkHWeXYYRczwXZUiIocoWV9ZYqqbxoa C4VKcH9DfAOXz8KOVERupBabXBvKujt/XnGp7AjshmpxO/uHTD7q8p6vlusEiqOl cb783u07PSF5T5VbIqnCyXoUwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkYWTrL Bd3CBi2EmUhCFtZ0j7O6MB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKSle6kzUkyEkP14uNqgOZQ8xpFRHV5npwOBiO2riNPynBmBpkDzk1 UcB/tw//LOlx1lQ1dQvfNVd0E3szUknk8bJoV+OyIhHrfQaNwR6cmdphLBUTXUl1 /7x8OHiBY/h2qZWZtKqHH2RGuf0Eu/63qR7e70UKuHIVkbvA4WH2rysrZhnxvVAV 50VscEcv+K3qCEcYoZZ88NB4KwDBRarq9fZe289rXoQ7nE1QXDv6aEgtEmE5fl/i F+CsqRvpEu2Ixubt1VcHtFQp+4kMHRIwbUNjP5RdYeqyExIw/EYvRXEJofCjlARy Sa+EPgavPX9xR2MO6QwpF/5cUuGq3Qt2 -----END CERTIFICATE-----Generated at Sun May 19 08:25:12 2024 by rpki-client on console-ams.rpki-client.org