$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: 0Hn2Lk0tsNWR7BxEZcILtul35sGF/AockqQvWxkwL9k= Subject key identifier: B0:F2:F1:48:3D:05:70:1A:59:01:FA:22:61:8A:D4:E0:36:D9:50:65 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 01CE Signing time: Wed 01 May 2024 04:42:44 +0000 Manifest this update: Wed 01 May 2024 04:42:44 +0000 Manifest next update: Wed 08 May 2024 04:42:44 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: zoMizGrvbATaf4YUm+pGYPOhyPZvObMaxw82sUOTAag=) 2: E2ADBF4E022F11EDA851B357C4F9AE02.roa (hash: DJ9fAitzYrXHF3IunSSLVjEaj/9g7JqpjpFtVblvC94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: May 1 04:42:44 2024 GMT Not After : May 8 04:42:44 2024 GMT Subject: CN=6631c844-2321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:b6:e5:00:9d:73:40:d9:79:86:0f:32:5d: b7:7b:d9:6f:2d:03:54:57:40:3e:10:54:0a:60:d7: 6c:bd:72:de:6c:c1:8a:4e:44:81:23:6f:bf:3d:d6: f6:b7:c9:15:1e:65:d3:7e:64:a0:9e:ef:70:95:60: 54:e7:39:fc:df:6a:5a:9c:f8:3c:1c:bd:04:ea:cf: 3e:b3:62:dc:cc:8c:21:a1:ad:7b:3a:0a:90:60:4e: 13:50:be:84:38:fb:79:c4:f3:51:d1:24:6e:1d:52: a2:fa:ac:05:b0:30:8b:d9:cf:a9:70:97:5c:84:41: a3:c0:70:ac:4c:db:c8:3a:3b:d6:d5:df:69:86:ab: 00:f6:08:19:52:cf:ed:0f:92:36:3d:34:f6:9e:10: 83:d4:66:1b:22:7d:56:df:55:49:5d:b0:41:8e:17: 1d:ee:9b:d7:f6:98:8b:f8:fd:91:22:4f:1d:9b:0c: b2:5e:6a:f5:c6:d6:68:00:88:5e:c7:4f:6f:0b:12: a6:f9:c6:c8:58:16:e1:e2:c7:f0:5d:20:e5:49:f3: 83:68:e6:d9:dc:bd:00:b9:24:23:5a:ed:86:c7:1d: 3c:7b:9b:f5:dd:9f:31:e8:72:34:1b:cb:ae:af:c9: ed:3f:44:2c:14:b9:a5:f2:e0:a5:c9:1e:20:0e:0a: ac:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F2:F1:48:3D:05:70:1A:59:01:FA:22:61:8A:D4:E0:36:D9:50:65 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2b:cb:ac:f0:e8:3a:90:6c:a0:a1:67:5d:91:a5:b5:19:d0: 7e:b7:5a:1c:06:b5:0f:58:2e:e9:32:5a:01:0e:c5:34:07:c2: f6:f4:ef:1d:e7:5d:6b:3c:b2:25:47:60:6b:8f:69:9b:3f:ba: 0f:da:12:d2:64:48:e2:d9:5a:22:0b:8e:7a:d9:47:5c:d7:9d: 39:0d:0b:e9:93:db:df:3a:c3:e2:f3:f9:02:73:70:1a:4a:d6: cb:40:c4:c2:95:fd:56:a9:1e:e8:0c:a4:2c:b1:72:e8:0d:34: 46:df:e7:a7:dc:96:95:17:75:8c:86:a6:b8:75:88:e3:14:ad: f5:85:9b:2a:6c:43:b5:89:35:cd:36:70:0c:5d:1a:cf:a5:bc: 98:43:60:a9:85:ea:99:8d:db:24:ee:3c:5d:1f:51:2c:d0:fe: ec:9e:ab:d7:40:57:2d:c9:cd:02:ff:00:83:92:17:ca:da:7d: ac:c2:2f:79:b6:a4:3e:99:c6:b8:31:4f:43:3e:a9:58:57:fe: ec:86:e9:dd:a7:3e:5c:ce:1a:68:86:1b:f0:a4:51:0f:ed:ce: 31:04:2e:1e:58:c6:ed:78:47:d7:6b:03:46:03:15:68:83:16: 8e:a3:f9:c3:49:5d:2b:ff:38:76:08:53:83:3a:8d:c5:9f:4e: d6:e3:73:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjQwNTAxMDQ0MjQ0WhcNMjQwNTA4MDQ0MjQ0WjAYMRYwFAYD VQQDEw02NjMxYzg0NC0yMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUK25QCdc0DZeYYPMl23e9lvLQNUV0A+EFQKYNdsvXLebMGKTkSBI2+/Pdb2 t8kVHmXTfmSgnu9wlWBU5zn832panPg8HL0E6s8+s2LczIwhoa17OgqQYE4TUL6E OPt5xPNR0SRuHVKi+qwFsDCL2c+pcJdchEGjwHCsTNvIOjvW1d9phqsA9ggZUs/t D5I2PTT2nhCD1GYbIn1W31VJXbBBjhcd7pvX9piL+P2RIk8dmwyyXmr1xtZoAIhe x09vCxKm+cbIWBbh4sfwXSDlSfODaObZ3L0AuSQjWu2Gxx08e5v13Z8x6HI0G8uu r8ntP0QsFLml8uClyR4gDgqs9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDy8Ug9 BXAaWQH6ImGK1OA22VBlMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfK8us8Og6kGygoWddkaW1GdB+t1ocBrUPWC7pMloBDsU0B8L29O8d 511rPLIlR2Brj2mbP7oP2hLSZEji2VoiC4562Udc1505DQvpk9vfOsPi8/kCc3Aa StbLQMTClf1WqR7oDKQssXLoDTRG3+en3JaVF3WMhqa4dYjjFK31hZsqbEO1iTXN NnAMXRrPpbyYQ2CpheqZjdsk7jxdH1Es0P7snqvXQFctyc0C/wCDkhfK2n2swi95 tqQ+mca4MU9DPqlYV/7shundpz5czhpohhvwpFEP7c4xBC4eWMbteEfXawNGAxVo gxaOo/nDSV0r/zh2CFODOo3Fn07W43Po -----END CERTIFICATE-----Generated at Wed May 1 05:59:00 2024 by rpki-client on console-fra.rpki-client.org