$ rpki-client -vvf rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft File: QJOHCXJ0OMjB3r_9BBWQWEggxug.mft (raw, json) Hash identifier: R68XrsWShW2z+C5X58n9rh7MJnI1SGdRdFjbJoGPfI8= Subject key identifier: 6A:F5:B8:D4:AF:28:04:C0:35:5B:33:60:50:4D:C2:14:1D:C2:EB:12 Authority key identifier: 40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 Certificate issuer: /CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Certificate serial: 11E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft Manifest number: 11DD Signing time: Wed 24 Apr 2024 17:47:20 +0000 Manifest this update: Wed 24 Apr 2024 17:47:19 +0000 Manifest next update: Wed 01 May 2024 17:47:19 +0000 Files and hashes: 1: QJOHCXJ0OMjB3r_9BBWQWEggxug.crl (hash: o+/Fz4OaimQ59obLTtxzNcSShB8/GD/YBnzXDtZYr4A=) 2: 2FE4DA1EC2E111E8A19CB72FC4F9AE02.roa (hash: WPkRwv2R4A6jQEt339OotsbCZn4MerzQzFD3flR+PJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 17:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4581 (0x11e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Validity Not Before: Apr 24 17:47:19 2024 GMT Not After : May 1 17:47:19 2024 GMT Subject: CN=662945a7-a49b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:44:0e:3e:11:9f:96:15:75:43:f4:36:51:3a: d3:2f:ac:c5:a7:2a:af:ff:29:5b:a1:b5:d3:07:31: 3c:e0:05:60:aa:86:72:be:f6:b1:8b:2c:8d:fe:4b: 7b:c8:df:3a:bf:b8:5d:20:4b:0f:88:9c:31:0a:59: d2:a6:11:f5:56:f9:e1:73:8a:d3:5e:9b:fb:bb:76: 6f:07:32:24:de:20:7d:e1:9c:dd:d8:ad:04:23:15: e0:8e:8a:52:de:d1:07:ef:b0:20:12:c2:9d:83:e9: dc:9c:25:84:d1:e6:c6:0b:7a:bc:3e:38:a5:c7:6f: 1c:79:48:38:99:96:f7:3f:33:f3:a5:cb:1d:e8:87: 27:cd:ef:41:17:26:ee:e3:f2:ad:d0:50:3d:83:6e: b9:f6:eb:74:ef:9d:53:75:7c:54:60:5e:44:35:07: 02:c0:71:e0:9a:18:e9:20:d3:31:45:48:63:f6:d3: 4c:cb:7c:e6:e7:75:3a:b1:13:2c:58:72:da:cc:11: ff:e6:17:50:3c:1d:9e:a7:0e:96:b9:e8:02:89:fc: d2:5b:29:27:7d:2a:62:57:cc:cb:a0:f7:c2:bc:2b: f1:88:6c:6a:11:06:5f:9d:c4:af:a5:07:4c:01:ef: b7:d7:d5:50:0e:ba:de:ef:98:1c:53:51:5d:9d:6a: 58:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F5:B8:D4:AF:28:04:C0:35:5B:33:60:50:4D:C2:14:1D:C2:EB:12 X509v3 Authority Key Identifier: keyid:40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8b:11:00:52:e0:e0:5d:b3:ec:60:19:d7:0c:56:92:e7:ba: f1:bf:54:02:5e:d8:18:46:86:9b:23:80:64:b5:88:95:af:7c: db:e2:d8:2f:42:f4:9d:d1:43:6a:bc:3c:76:6b:13:07:ee:24: 65:37:16:83:2c:41:b1:a1:6c:f1:b6:04:bd:e6:b7:cf:83:1f: 7f:8d:9a:35:34:e8:3d:c2:b7:70:28:09:6f:b0:77:65:46:a8: 12:49:5a:39:81:b7:d2:fc:a7:55:6c:56:08:cf:cf:6e:2f:f6: 6f:b6:76:ee:f2:68:f8:f7:ca:f5:cd:f6:e8:57:a8:a0:f2:cd: 79:5d:8f:28:d9:3f:52:bd:fb:c9:06:ea:6b:2c:73:bb:82:bf: 0a:6a:b2:b4:8a:bb:2a:c4:a2:30:b5:16:b7:88:5b:06:c5:33: 60:b0:12:f6:b5:d3:2a:74:68:d5:c9:5c:fc:d6:ca:26:0f:79: 82:93:1f:55:4e:b9:61:e0:6a:74:c4:64:57:4a:4c:74:a3:65: 7d:ff:41:d6:44:20:45:53:5e:ea:a7:47:27:8b:2f:8c:4e:aa: f0:e1:06:29:b4:eb:28:49:9c:e8:de:04:d1:4f:05:1d:f8:83: de:fe:56:42:c5:d1:e8:00:6a:50:53:2e:5a:50:25:58:9c:05: fa:16:e0:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOEYxMTAvBgNVBAUTKDQwOTM4NzA5NzI3NDM4QzhDMURFQkZGRDA0MTU5MDU4 NDgyMEM2RTgwHhcNMjQwNDI0MTc0NzE5WhcNMjQwNTAxMTc0NzE5WjAYMRYwFAYD VQQDEw02NjI5NDVhNy1hNDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9EQOPhGflhV1Q/Q2UTrTL6zFpyqv/ylbobXTBzE84AVgqoZyvvaxiyyN/kt7 yN86v7hdIEsPiJwxClnSphH1Vvnhc4rTXpv7u3ZvBzIk3iB94Zzd2K0EIxXgjopS 3tEH77AgEsKdg+ncnCWE0ebGC3q8Pjilx28ceUg4mZb3PzPzpcsd6Icnze9BFybu 4/Kt0FA9g2659ut0751TdXxUYF5ENQcCwHHgmhjpINMxRUhj9tNMy3zm53U6sRMs WHLazBH/5hdQPB2epw6WuegCifzSWyknfSpiV8zLoPfCvCvxiGxqEQZfncSvpQdM Ae+319VQDrre75gcU1FdnWpYBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGr1uNSv KATANVszYFBNwhQdwusSMB8GA1UdIwQYMBaAFECThwlydDjIwd6//QQVkFhIIMbo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE4Ri9EMjhENzVDMEMy REYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9NakIzcl85QkJXUVdFZ2d4 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKT0hDWEowT01qQjNyXzlCQldRV0VnZ3h1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjE4Ri9EMjhENzVDMEMyREYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9N akIzcl85QkJXUVdFZ2d4dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaixEAUuDgXbPsYBnXDFaS57rxv1QCXtgYRoabI4BktYiVr3zb4tgv QvSd0UNqvDx2axMH7iRlNxaDLEGxoWzxtgS95rfPgx9/jZo1NOg9wrdwKAlvsHdl RqgSSVo5gbfS/KdVbFYIz89uL/Zvtnbu8mj498r1zfboV6ig8s15XY8o2T9SvfvJ BuprLHO7gr8KarK0irsqxKIwtRa3iFsGxTNgsBL2tdMqdGjVyVz81somD3mCkx9V Trlh4Gp0xGRXSkx0o2V9/0HWRCBFU17qp0cniy+MTqrw4QYptOsoSZzo3gTRTwUd +IPe/lZCxdHoAGpQUy5aUCVYnAX6FuDe -----END CERTIFICATE-----Generated at Wed Apr 24 18:31:03 2024 by rpki-client on console-fra.rpki-client.org