$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: jvubXZsup5cxYjpFkT/pxqL7vYtvUVL8dEHDcrPGWjw= Subject key identifier: B0:C6:E5:02:EA:0E:E4:72:B8:1A:B6:71:BF:0D:0B:88:30:52:87:9E Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 022C Signing time: Sun 05 May 2024 04:10:34 +0000 Manifest this update: Sun 05 May 2024 04:10:34 +0000 Manifest next update: Sun 12 May 2024 04:10:34 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: Bagx0iykU0bFOaP6l3u6yEbL9+tPk+hMWhJgudBePTY=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: RSA/ql0lNyv9WyAk0d5FOAFZ5R84Y3YnmGvbKn1e7f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: May 5 04:10:34 2024 GMT Not After : May 12 04:10:34 2024 GMT Subject: CN=663706ba-5f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:3b:65:24:a6:7f:34:02:cf:6d:83:5d:20: 2a:35:7c:80:21:80:0c:ae:96:6f:7c:c0:40:3e:63: 4b:7f:76:e5:54:ef:c8:4e:d3:eb:20:ec:b1:20:7b: 07:c4:94:57:e5:ac:23:d0:b6:d2:44:34:46:69:b5: 8f:97:5d:8d:6b:68:22:12:a2:b6:93:f2:c6:65:18: dd:dd:a9:ab:f4:b6:96:c4:ab:73:07:ff:bf:a5:96: 2e:6b:a9:8c:05:00:11:da:be:12:b6:dc:de:3b:60: ae:40:f1:73:c5:ac:32:e2:4d:a7:f0:d9:f5:72:f4: 9b:b1:8f:9f:3c:6a:39:13:03:3f:11:f2:94:3b:a7: b5:05:18:d2:b8:73:74:d3:6b:25:64:b8:99:38:e5: f8:a6:72:d9:a3:75:55:33:a9:82:83:5a:5f:c0:eb: 2b:d9:80:2e:32:33:90:19:aa:f1:86:95:74:87:a2: 9f:d5:fd:5b:aa:4d:57:c3:b8:26:dd:62:b2:73:0c: bc:89:98:0a:6b:02:0b:7e:e8:a0:d0:af:f0:fa:48: b2:ef:5b:25:4a:4f:8c:02:8b:0f:50:0d:aa:2f:11: d3:12:cd:df:62:b7:96:f0:fe:d1:13:2c:c4:97:d7: ae:b0:5e:3d:79:f3:c5:66:e3:f2:b4:dd:69:0d:ee: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C6:E5:02:EA:0E:E4:72:B8:1A:B6:71:BF:0D:0B:88:30:52:87:9E X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:18:75:7f:0f:06:19:fd:59:24:39:c5:a4:c6:44:91:f0:10: 7c:e0:02:ca:bc:cb:2c:18:93:e5:20:86:7b:bb:f7:da:b2:f4: 52:a0:6c:73:64:0a:23:e0:b8:45:8e:cb:80:6e:6d:c6:c4:b6: 6f:b3:5d:ae:a3:70:cc:e5:3e:db:28:3d:02:75:bb:3c:7a:74: fd:b9:0c:46:f1:a4:a4:d4:44:3f:c7:1f:23:84:ed:78:d1:cb: 7b:c9:8c:90:38:77:83:73:64:73:d3:f4:2b:17:eb:09:22:f0: 2b:d2:6c:1a:da:a0:96:6f:0c:d0:2c:5e:4c:61:9a:5c:2d:7c: af:04:cd:f7:72:4e:db:eb:0c:78:00:5c:4d:7b:23:db:5f:ef: fd:54:12:30:b1:8b:91:7c:d4:ae:31:20:d8:a1:f6:9a:dc:a2: 6e:8d:77:ed:67:2c:82:93:ca:07:3e:2a:99:cb:dd:7a:5e:74: 6c:e3:01:e4:04:59:e7:12:b4:76:a7:df:55:0b:66:14:c5:dc: 60:88:e3:89:f3:a4:5e:30:09:0e:d2:4a:6b:32:90:20:04:8e: 50:b4:23:4e:5c:38:40:b9:d6:70:6a:c0:03:fb:69:23:c6:db: a1:3a:75:61:3a:91:73:83:40:a8:af:31:35:68:c7:4c:61:d6: 55:91:4a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjQwNTA1MDQxMDM0WhcNMjQwNTEyMDQxMDM0WjAYMRYwFAYD VQQDEw02NjM3MDZiYS01Zjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pg7ZSSmfzQCz22DXSAqNXyAIYAMrpZvfMBAPmNLf3blVO/ITtPrIOyxIHsH xJRX5awj0LbSRDRGabWPl12Na2giEqK2k/LGZRjd3amr9LaWxKtzB/+/pZYua6mM BQAR2r4SttzeO2CuQPFzxawy4k2n8Nn1cvSbsY+fPGo5EwM/EfKUO6e1BRjSuHN0 02slZLiZOOX4pnLZo3VVM6mCg1pfwOsr2YAuMjOQGarxhpV0h6Kf1f1bqk1Xw7gm 3WKycwy8iZgKawILfuig0K/w+kiy71slSk+MAosPUA2qLxHTEs3fYreW8P7REyzE l9eusF49efPFZuPytN1pDe6ocwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDG5QLq DuRyuBq2cb8NC4gwUoeeMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5GHV/DwYZ/VkkOcWkxkSR8BB84ALKvMssGJPlIIZ7u/fasvRSoGxz ZAoj4LhFjsuAbm3GxLZvs12uo3DM5T7bKD0Cdbs8enT9uQxG8aSk1EQ/xx8jhO14 0ct7yYyQOHeDc2Rz0/QrF+sJIvAr0mwa2qCWbwzQLF5MYZpcLXyvBM33ck7b6wx4 AFxNeyPbX+/9VBIwsYuRfNSuMSDYofaa3KJujXftZyyCk8oHPiqZy916XnRs4wHk BFnnErR2p99VC2YUxdxgiOOJ86ReMAkO0kprMpAgBI5QtCNOXDhAudZwasAD+2kj xtuhOnVhOpFzg0CorzE1aMdMYdZVkUoz -----END CERTIFICATE-----Generated at Sun May 5 04:39:58 2024 by rpki-client on console-ams.rpki-client.org