$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft File: QP0nMwGov44nCXYsZPSuom0q4LQ.mft (raw, json) Hash identifier: /s5L76DDX3rdY0tSYdSUYPB0heX0naHRwamqtOMdZP0= Subject key identifier: C9:34:80:5E:E1:1C:8D:0A:13:C1:C7:50:14:F1:9C:4F:F8:F6:79:01 Authority key identifier: 40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 Certificate issuer: /CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft Manifest number: 69 Signing time: Thu 16 May 2024 17:58:04 +0000 Manifest this update: Thu 16 May 2024 17:58:03 +0000 Manifest next update: Thu 23 May 2024 17:58:03 +0000 Files and hashes: 1: QP0nMwGov44nCXYsZPSuom0q4LQ.crl (hash: VyvRT8q6g8wf+DjZeRb0EaS+Y7F5yI8YOOHWCDv1HQo=) 2: 26BFE5FE841611EEB980955AC4F9AE02.roa (hash: t1X6x7kpD3zFa0n1CC+WgLqz+qw3+Q3hFxhOF5F7z6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Validity Not Before: May 16 17:58:03 2024 GMT Not After : May 23 17:58:03 2024 GMT Subject: CN=6646492c-fba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:37:f6:14:8e:2b:85:36:f6:7f:75:58:58:33: 01:32:e4:c2:98:9c:8a:96:51:29:cd:9f:64:02:1e: 51:60:d9:91:9e:ba:0f:eb:6c:d0:62:d1:6d:ee:96: 9f:b4:af:ba:80:82:1a:85:f2:8f:e6:bf:87:48:75: 87:25:c1:c1:ae:b8:77:c9:54:15:ce:9a:94:3d:d3: 2f:4d:e5:eb:65:44:01:45:a2:ff:52:ea:3e:3d:b1: e8:fc:e7:00:20:e1:ab:90:f7:91:8d:a2:a1:43:75: c8:38:7f:04:65:7b:db:e5:94:c4:82:d8:3a:ca:68: d0:09:27:12:c7:f1:12:05:54:70:c5:97:c3:e2:ff: 3f:f6:e1:6e:78:cf:e4:fa:18:a7:7a:2c:da:df:cd: 19:2d:03:f0:e7:4b:46:ff:0e:22:2e:b5:75:d2:30: c6:77:96:b8:69:9b:c3:13:3f:eb:ad:9d:6c:e2:08: 75:0c:67:04:f5:5c:ae:82:77:28:6e:5e:66:a6:1a: 6f:95:02:9d:30:c4:6d:01:3c:8a:bc:f1:8c:c9:1f: c9:77:67:a3:f8:92:75:b6:d7:6b:88:e5:dd:11:64: fd:95:0c:10:87:b3:89:41:72:5c:41:a3:f2:23:c9: 84:9a:69:09:6a:84:63:85:f8:a3:1f:3a:84:a9:c8: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:34:80:5E:E1:1C:8D:0A:13:C1:C7:50:14:F1:9C:4F:F8:F6:79:01 X509v3 Authority Key Identifier: keyid:40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:75:54:d5:6d:e1:de:53:a0:12:5d:6b:3f:51:c6:8e:09:0a: cc:1b:b8:7f:d1:dc:03:fb:10:78:ed:95:c3:b5:4f:46:41:13: a8:34:58:f0:7d:d3:0e:76:ae:a1:b2:6b:38:96:f0:d3:08:8a: 9e:b1:0e:b5:2b:89:e7:aa:b8:08:c8:22:f9:f5:71:c0:fe:7e: c5:a7:c9:59:21:03:b8:f2:34:b7:a3:3b:9a:1c:39:b5:19:3c: 2d:92:9f:05:db:20:06:b9:c2:e5:88:5d:1b:13:4b:d9:d2:40: 76:a4:5d:58:c0:b1:fa:c6:41:80:30:2e:29:cf:d7:d3:3a:44: d0:65:b9:ad:01:97:d8:3a:e2:52:ee:75:0f:7b:55:cd:2a:72: 1f:47:5d:2e:86:22:e6:89:a1:97:5d:a8:01:be:e4:ce:01:f3: fa:b6:c6:30:35:26:5b:bb:6a:79:62:31:1c:15:f3:c7:d4:92: 32:3d:7c:77:1e:67:8a:3b:85:c2:fc:7c:cb:34:96:49:e8:bf: 2b:06:75:fa:61:8a:9b:74:74:02:eb:2d:75:74:f0:b5:ef:2a: 04:76:52:0f:f7:29:ab:ff:00:80:9a:1e:27:f3:3d:be:f4:3b: 4b:ce:80:19:c0:88:ae:fd:69:3d:ac:23:39:fa:fa:cf:28:9b: fc:b3:62:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDg2MDExMC8GA1UEBRMoNDBGRDI3MzMwMUE4QkY4RTI3MDk3NjJDNjRGNEFFQTI2 RDJBRTBCNDAeFw0yNDA1MTYxNzU4MDNaFw0yNDA1MjMxNzU4MDNaMBgxFjAUBgNV BAMTDTY2NDY0OTJjLWZiYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfN/YUjiuFNvZ/dVhYMwEy5MKYnIqWUSnNn2QCHlFg2ZGeug/rbNBi0W3ulp+0 r7qAghqF8o/mv4dIdYclwcGuuHfJVBXOmpQ90y9N5etlRAFFov9S6j49sej85wAg 4auQ95GNoqFDdcg4fwRle9vllMSC2DrKaNAJJxLH8RIFVHDFl8Pi/z/24W54z+T6 GKd6LNrfzRktA/DnS0b/DiIutXXSMMZ3lrhpm8MTP+utnWziCHUMZwT1XK6Cdyhu XmamGm+VAp0wxG0BPIq88YzJH8l3Z6P4knW212uI5d0RZP2VDBCHs4lBclxBo/Ij yYSaaQlqhGOF+KMfOoSpyGiZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyTSAXuEc jQoTwcdQFPGcT/j2eQEwHwYDVR0jBBgwFoAUQP0nMwGov44nCXYsZPSuom0q4LQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0ODYwLzZCRUFFMDg4N0Iz OTExRUU5RTkxODQ1RkM0RjlBRTAyL1FQMG5Nd0dvdjQ0bkNYWXNaUFN1b20wcTRM US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUVAwbk13R292NDRuQ1hZc1pQU3VvbTBxNExRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 ODYwLzZCRUFFMDg4N0IzOTExRUU5RTkxODQ1RkM0RjlBRTAyL1FQMG5Nd0dvdjQ0 bkNYWXNaUFN1b20wcTRMUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABN1VNVt4d5ToBJdaz9Rxo4JCswbuH/R3AP7EHjtlcO1T0ZBE6g0WPB9 0w52rqGyaziW8NMIip6xDrUrieequAjIIvn1ccD+fsWnyVkhA7jyNLejO5ocObUZ PC2SnwXbIAa5wuWIXRsTS9nSQHakXVjAsfrGQYAwLinP19M6RNBlua0Bl9g64lLu dQ97Vc0qch9HXS6GIuaJoZddqAG+5M4B8/q2xjA1Jlu7anliMRwV88fUkjI9fHce Z4o7hcL8fMs0lknovysGdfphipt0dALrLXV08LXvKgR2Ug/3Kav/AICaHifzPb70 O0vOgBnAiK79aT2sIzn6+s8om/yzYu4= -----END CERTIFICATE-----Generated at Thu May 16 18:26:05 2024 by rpki-client on console-fra.rpki-client.org