$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: NGf5CK3Ri83wibcUeHtwXFkPx24d+SrsXotv8dQ9GWo= Subject key identifier: 39:23:AD:B3:63:A7:8E:A8:AC:48:95:16:96:44:86:B8:EE:48:89:0D Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0325 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0321 Signing time: Sun 05 May 2024 03:12:13 +0000 Manifest this update: Sun 05 May 2024 03:12:13 +0000 Manifest next update: Sun 12 May 2024 03:12:13 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: yRLwJiMJUmFS5pwSwnFNFm0covAlSSibGfq4yWlFrhc=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: 4EA20sWKXOK0+EASX2fNTIexi95SBTtQ84LrzMppkU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: May 5 03:12:13 2024 GMT Not After : May 12 03:12:13 2024 GMT Subject: CN=6636f90d-f237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:55:e0:85:41:59:c4:be:46:92:28:81:39:2a: be:40:b9:27:24:a8:bc:5e:73:17:c1:a4:b2:1e:9d: 05:98:9e:01:fe:b3:d7:a5:c8:f9:fa:82:6b:a1:8e: fb:f2:3d:6f:a9:19:69:bf:f4:e7:76:4d:bf:16:f7: 04:09:43:b0:51:ac:21:be:f1:11:00:f2:f9:00:33: 08:b4:5e:26:99:d2:75:6a:9e:13:6b:28:44:b6:c8: 0c:f0:ec:76:80:39:ba:e0:27:e7:72:04:56:b9:72: 0f:36:ec:0f:0d:43:44:a8:b1:b3:00:d2:05:8b:d5: e4:e3:ab:f3:e4:fa:fd:45:83:d4:47:33:42:9a:c0: 57:32:cb:c3:af:40:15:aa:f2:f3:88:d9:30:20:00: c0:9d:a5:98:de:9a:32:16:47:4d:83:c6:7f:1d:c0: 08:ef:a3:0d:a4:89:67:a2:52:db:db:57:c3:b7:b3: 95:3a:89:5a:63:c5:b1:c6:cd:8e:59:80:80:8b:ae: d6:62:01:68:d8:62:19:54:00:28:b9:b5:94:0b:3e: 85:3f:ac:d7:a9:bb:11:59:70:65:0c:e5:a9:12:7c: eb:55:56:7c:5f:90:80:94:18:3c:28:3c:54:37:07: 94:d9:3c:a2:40:45:29:43:1e:ec:76:fb:88:eb:43: 24:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:23:AD:B3:63:A7:8E:A8:AC:48:95:16:96:44:86:B8:EE:48:89:0D X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6f:25:21:70:8b:b9:31:37:0f:70:5f:b0:6c:16:58:88:e6: 70:d1:75:21:ef:ac:be:3f:45:c9:54:da:d6:6c:eb:78:c9:77: f2:b8:8b:61:62:69:d8:63:ab:72:eb:5c:8e:30:19:c7:8e:23: d7:81:48:65:d0:30:5e:87:35:09:ba:fb:b7:97:05:c2:02:fe: 82:de:7f:99:b1:8a:cf:81:37:70:d3:4a:53:4a:7c:39:3a:a2: e3:92:f6:37:18:e9:b9:10:98:be:bc:c0:e0:82:58:80:c3:bd: 6b:80:dd:d2:21:86:2f:49:c1:40:82:83:1e:f4:7a:78:4f:72: 6f:a8:23:9b:5a:b9:be:c5:56:b5:64:33:27:e2:87:41:e8:e3: ea:ae:6d:e2:2b:47:d7:8f:7a:a5:cd:b9:b3:1c:18:b1:9c:1e: eb:c5:7c:70:80:2a:1d:2a:cf:aa:cf:37:0d:50:f3:9b:07:7b: ff:2b:d3:a3:08:6f:51:08:3b:a9:4b:0d:d2:19:ba:93:2c:7a: bb:6e:cb:9e:40:07:eb:f2:32:ca:8b:9b:f1:ae:7f:fe:33:d7: fd:80:d3:b5:7d:79:94:8b:dd:0c:cd:05:b1:c4:26:d1:fd:34: 27:b8:50:4e:fe:f5:f6:73:44:d1:0b:05:7d:82:66:03:63:46: bb:5d:18:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjQwNTA1MDMxMjEzWhcNMjQwNTEyMDMxMjEzWjAYMRYwFAYD VQQDEw02NjM2ZjkwZC1mMjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlXghUFZxL5GkiiBOSq+QLknJKi8XnMXwaSyHp0FmJ4B/rPXpcj5+oJroY77 8j1vqRlpv/Tndk2/FvcECUOwUawhvvERAPL5ADMItF4mmdJ1ap4TayhEtsgM8Ox2 gDm64CfncgRWuXIPNuwPDUNEqLGzANIFi9Xk46vz5Pr9RYPURzNCmsBXMsvDr0AV qvLziNkwIADAnaWY3poyFkdNg8Z/HcAI76MNpIlnolLb21fDt7OVOolaY8Wxxs2O WYCAi67WYgFo2GIZVAAoubWUCz6FP6zXqbsRWXBlDOWpEnzrVVZ8X5CAlBg8KDxU NweU2TyiQEUpQx7sdvuI60MkqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkjrbNj p46orEiVFpZEhrjuSIkNMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBbyUhcIu5MTcPcF+wbBZYiOZw0XUh76y+P0XJVNrWbOt4yXfyuIth YmnYY6ty61yOMBnHjiPXgUhl0DBehzUJuvu3lwXCAv6C3n+ZsYrPgTdw00pTSnw5 OqLjkvY3GOm5EJi+vMDggliAw71rgN3SIYYvScFAgoMe9Hp4T3JvqCObWrm+xVa1 ZDMn4odB6OPqrm3iK0fXj3qlzbmzHBixnB7rxXxwgCodKs+qzzcNUPObB3v/K9Oj CG9RCDupSw3SGbqTLHq7bsueQAfr8jLKi5vxrn/+M9f9gNO1fXmUi90MzQWxxCbR /TQnuFBO/vX2c0TRCwV9gmYDY0a7XRhu -----END CERTIFICATE-----Generated at Sun May 5 03:52:19 2024 by rpki-client on console-ams.rpki-client.org