$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: jH7gZ/uV5gLIqRqGj12axwgaZJomrsyRv7BGeXYlFNY= Subject key identifier: 50:ED:13:5D:9F:E6:B6:2E:39:33:A1:7C:BA:BA:98:C9:35:D3:2D:80 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0B02 Signing time: Mon 06 May 2024 20:01:50 +0000 Manifest this update: Mon 06 May 2024 20:01:49 +0000 Manifest next update: Mon 13 May 2024 20:01:49 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: u7Cn4M16/RUjKHCEuT1zLvcYvVGYxtZNhgIVzjiAN+A=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: HEd9WjO6joguuQzd730BkbYieCZ720XWQ32J+l1UVYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: May 6 20:01:49 2024 GMT Not After : May 13 20:01:49 2024 GMT Subject: CN=6639372d-1dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c2:68:55:be:e8:e1:c2:82:8c:70:8a:40:9f: 83:52:cc:b1:a1:e5:71:c8:8d:17:0c:ec:66:c9:c1: 14:b2:c6:07:d8:87:21:2c:82:98:2a:e4:0a:69:fa: 2b:b2:bb:7c:bd:e6:78:1b:f8:4c:3e:9e:19:f6:e4: ce:fd:63:f7:6d:cf:eb:32:63:ad:02:c5:87:2e:cd: fe:2f:06:77:26:ea:1c:42:88:e9:85:9f:60:40:a9: 43:be:3a:e8:41:64:82:47:dc:af:2a:3d:75:38:58: ec:db:a4:5d:f8:eb:e9:d2:04:1d:02:15:09:bd:7a: b7:d4:43:fa:b5:34:3c:c1:87:38:7f:70:84:35:3e: da:dc:9a:ef:d3:5a:97:5f:a5:e1:9e:37:ac:fe:2a: e8:aa:ba:23:3e:47:a6:20:b5:a3:c1:ef:1a:9a:96: 9b:cb:ce:e0:f7:56:7b:3f:ec:52:df:c2:9c:6d:96: 7d:28:5c:66:4c:70:4b:01:7a:d1:3a:d6:85:f6:4a: 8a:ad:c7:eb:37:87:4c:07:5d:d1:a5:9a:b3:75:78: 84:fb:f7:1c:84:ae:78:a3:53:92:ce:6f:53:3b:8f: d7:fb:db:fc:15:1c:77:4f:1c:30:73:a8:9c:ba:9f: c0:bc:f2:39:6d:5b:fa:6b:e0:a2:24:c4:a3:19:3b: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:ED:13:5D:9F:E6:B6:2E:39:33:A1:7C:BA:BA:98:C9:35:D3:2D:80 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:79:0b:55:9e:57:f1:c1:1d:70:7a:b9:48:ac:a1:f0:8f:c1: b9:77:3b:26:a1:3a:90:b5:52:9d:38:e0:49:7b:91:cb:36:30: ee:fd:2e:7a:ca:40:86:f0:c0:3a:74:b6:ab:a8:e5:e9:18:7d: 5d:91:c1:9a:5f:5b:e2:4e:57:79:57:fa:de:c1:91:96:42:0f: 97:b6:35:9d:46:a4:2d:32:94:86:6d:29:c8:6c:58:89:5d:d3: d0:2a:bc:a0:01:e4:be:9d:8b:72:4a:23:32:0e:61:2c:05:2e: 02:55:ef:f1:8d:0d:32:68:fd:a0:5f:ff:7d:a0:5f:65:53:20: 63:9c:da:36:4e:66:24:c5:b0:30:bf:8e:c9:46:a1:1d:f2:55: 0f:17:97:96:f6:db:ad:58:62:eb:88:86:1b:e8:b2:bf:f4:b7: b4:7d:3f:c5:bb:4f:fc:00:73:a8:b7:96:d1:9e:f2:ba:13:f1: 01:8f:23:96:f8:cb:af:c6:37:21:23:1f:d2:ea:ce:4a:6c:d7: fd:1f:8a:c5:bf:1d:87:50:dc:af:85:4f:7e:25:79:29:fc:c1: af:1f:13:07:6e:21:39:5a:2b:b1:ad:41:da:ac:35:1a:96:7d: fe:65:5c:91:7f:7c:fd:44:cb:3f:07:ec:ef:50:64:22:cc:90: 94:f8:c8:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjQwNTA2MjAwMTQ5WhcNMjQwNTEzMjAwMTQ5WjAYMRYwFAYD VQQDEw02NjM5MzcyZC0xZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MJoVb7o4cKCjHCKQJ+DUsyxoeVxyI0XDOxmycEUssYH2IchLIKYKuQKafor srt8veZ4G/hMPp4Z9uTO/WP3bc/rMmOtAsWHLs3+LwZ3JuocQojphZ9gQKlDvjro QWSCR9yvKj11OFjs26Rd+Ovp0gQdAhUJvXq31EP6tTQ8wYc4f3CENT7a3Jrv01qX X6Xhnjes/iroqrojPkemILWjwe8ampaby87g91Z7P+xS38KcbZZ9KFxmTHBLAXrR OtaF9kqKrcfrN4dMB13RpZqzdXiE+/cchK54o1OSzm9TO4/X+9v8FRx3Txwwc6ic up/AvPI5bVv6a+CiJMSjGTvQxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDtE12f 5rYuOTOhfLq6mMk10y2AMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOeQtVnlfxwR1werlIrKHwj8G5dzsmoTqQtVKdOOBJe5HLNjDu/S56 ykCG8MA6dLarqOXpGH1dkcGaX1viTld5V/rewZGWQg+XtjWdRqQtMpSGbSnIbFiJ XdPQKrygAeS+nYtySiMyDmEsBS4CVe/xjQ0yaP2gX/99oF9lUyBjnNo2TmYkxbAw v47JRqEd8lUPF5eW9tutWGLriIYb6LK/9Le0fT/Fu0/8AHOot5bRnvK6E/EBjyOW +MuvxjchIx/S6s5KbNf9H4rFvx2HUNyvhU9+JXkp/MGvHxMHbiE5WiuxrUHarDUa ln3+ZVyRf3z9RMs/B+zvUGQizJCU+MgA -----END CERTIFICATE-----Generated at Mon May 6 23:05:37 2024 by rpki-client on console-fra.rpki-client.org