$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: 9YIflPTiJ0E4H5HQq8Jv33/vK61XCqGkbrbZtRaP8c8= Subject key identifier: 44:03:68:76:32:E9:5B:18:47:8B:E7:5D:D4:26:8E:3F:34:B5:CB:C2 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 016D Signing time: Tue 07 May 2024 04:49:17 +0000 Manifest this update: Tue 07 May 2024 04:49:17 +0000 Manifest next update: Tue 14 May 2024 04:49:17 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: Z0bE7aivQYSuytCUICsGGf66HYmBPhczBISPUAPegmk=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: yRAPnTe/VZO2b05uWY4SgOt//CLBO/66/YgOza0zWD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: May 7 04:49:17 2024 GMT Not After : May 14 04:49:17 2024 GMT Subject: CN=6639b2cd-e0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:16:da:9e:1f:0d:58:7c:65:04:0d:28:7f: c1:2c:34:a5:d8:60:95:68:71:8b:b0:04:74:fb:a9: 74:5f:e9:f2:52:00:ed:84:d7:13:06:9e:39:af:ca: 64:c8:aa:0d:0e:14:dc:67:f3:3b:fd:d9:75:5c:39: ac:db:64:a6:c5:f4:1e:e3:49:6c:5f:26:f4:44:f0: b1:4d:a1:8b:9d:f3:ab:93:3d:80:91:c3:7e:0e:db: 1d:8f:7d:3a:1e:cd:97:9f:92:f8:c3:6e:b1:97:0c: 53:0b:24:33:c7:65:42:ac:23:64:20:b9:8e:12:8e: 76:14:a9:2c:bf:4d:6e:f4:e5:56:14:9f:30:28:e9: 3a:c8:f3:24:a6:d5:f6:d1:c1:f0:be:98:78:40:a5: 96:cf:98:cd:e9:b7:5c:2a:87:99:b4:6d:58:a4:fe: 32:ce:fe:80:d0:8b:1a:78:cf:b5:d8:43:16:4a:2c: ca:b9:9a:40:5b:ff:10:66:76:d9:ed:20:0e:ab:7c: bc:45:fb:1e:48:95:7a:e4:46:56:df:71:95:0b:33: 1f:1d:fd:d2:d7:d2:cc:52:1d:5b:a1:07:37:9a:aa: 53:53:e2:fb:24:ae:69:9c:8e:38:ad:69:aa:11:4f: 0f:e6:4c:4d:ab:34:19:83:40:22:4d:77:5b:e7:94: 32:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:03:68:76:32:E9:5B:18:47:8B:E7:5D:D4:26:8E:3F:34:B5:CB:C2 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:89:7a:c7:a1:ec:bb:82:01:08:1f:4b:76:2d:06:db:cb:ec: 4c:c6:92:06:d6:96:02:09:fb:2d:f3:b1:f7:63:fc:9f:fa:91: bc:5d:fd:09:e9:26:f8:01:59:0e:a9:c1:45:90:aa:a5:d8:e8: 4a:a4:7d:f0:c0:9b:20:76:d2:13:14:f3:8d:16:dc:b2:56:6e: dd:62:40:1a:3f:d7:23:f1:94:ab:fb:b9:c8:db:de:6a:90:88: 3c:10:9a:d7:be:d7:91:eb:75:2e:cd:35:81:a2:bb:30:32:34: df:c0:c7:ac:47:8c:9c:60:73:fd:dd:f0:c1:18:bb:83:09:fc: e9:42:ab:47:94:8f:84:f1:46:0e:39:e8:ff:d4:c4:4f:7a:34: 35:66:f9:21:89:34:dc:ea:b9:8b:b3:a8:cd:1f:9c:16:6e:e4: e1:f9:df:0a:bc:c8:69:2a:6f:5f:6e:08:b2:2e:7a:ef:5b:10: 54:3a:67:91:3f:09:d9:e0:2a:de:ac:32:95:7c:c5:04:49:af: b4:5d:4b:c7:fb:6f:95:0e:5d:ee:f9:73:ff:ff:90:74:60:3b: 50:a9:23:e5:c7:56:24:5a:7b:95:7a:6d:32:94:d6:b3:15:16: 60:5b:4b:f4:34:a4:ae:07:fe:83:84:f2:4a:84:59:ff:35:1f: a6:c7:52:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjQwNTA3MDQ0OTE3WhcNMjQwNTE0MDQ0OTE3WjAYMRYwFAYD VQQDEw02NjM5YjJjZC1lMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmcW2p4fDVh8ZQQNKH/BLDSl2GCVaHGLsAR0+6l0X+nyUgDthNcTBp45r8pk yKoNDhTcZ/M7/dl1XDms22SmxfQe40lsXyb0RPCxTaGLnfOrkz2AkcN+Dtsdj306 Hs2Xn5L4w26xlwxTCyQzx2VCrCNkILmOEo52FKksv01u9OVWFJ8wKOk6yPMkptX2 0cHwvph4QKWWz5jN6bdcKoeZtG1YpP4yzv6A0IsaeM+12EMWSizKuZpAW/8QZnbZ 7SAOq3y8RfseSJV65EZW33GVCzMfHf3S19LMUh1boQc3mqpTU+L7JK5pnI44rWmq EU8P5kxNqzQZg0AiTXdb55QyNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQDaHYy 6VsYR4vnXdQmjj80tcvCMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJiXrHoey7ggEIH0t2LQbby+xMxpIG1pYCCfst87H3Y/yf+pG8Xf0J 6Sb4AVkOqcFFkKql2OhKpH3wwJsgdtITFPONFtyyVm7dYkAaP9cj8ZSr+7nI295q kIg8EJrXvteR63UuzTWBorswMjTfwMesR4ycYHP93fDBGLuDCfzpQqtHlI+E8UYO Oej/1MRPejQ1ZvkhiTTc6rmLs6jNH5wWbuTh+d8KvMhpKm9fbgiyLnrvWxBUOmeR PwnZ4CrerDKVfMUESa+0XUvH+2+VDl3u+XP//5B0YDtQqSPlx1YkWnuVem0ylNaz FRZgW0v0NKSuB/6DhPJKhFn/NR+mx1Lq -----END CERTIFICATE-----Generated at Tue May 7 05:34:25 2024 by rpki-client on console-ams.rpki-client.org