$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: PaYljsxpjN28nYFco7TKJkjQ8Mmwy1q87ovxu4IMJdc= Subject key identifier: 42:32:DB:9B:0C:05:4D:77:D1:72:93:27:FB:7F:D5:F8:8C:C5:8C:63 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 1FE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 5394 Signing time: Thu 02 May 2024 15:01:52 +0000 Manifest this update: Thu 02 May 2024 15:01:52 +0000 Manifest next update: Thu 09 May 2024 15:01:52 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: OQ9jn8x7ls32HM2n0fKR2ySxTRavMFEylPX6S6WMBjU=) 2: 40D6370E09EA11EA95045455C4F9AE02.roa (hash: wZRNUd2fCyBuoTSJ470WFsMEQypHqEO+4iPnq7zf5og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8165 (0x1fe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: May 2 15:01:52 2024 GMT Not After : May 9 15:01:52 2024 GMT Subject: CN=6633aae0-fdd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:14:2e:df:96:dc:a9:12:bd:3e:aa:52:12:ad: b0:91:e8:b3:90:d7:7d:c5:d3:77:a1:ab:1e:83:54: 83:4a:49:2c:bb:08:62:07:ff:e2:5b:d3:82:bd:01: 24:27:fb:73:b8:c4:3d:ae:ae:7a:59:d5:b0:23:12: 0d:05:5d:2a:f0:ed:ab:94:4a:6c:ed:e5:db:43:d5: 1d:b7:17:32:f0:ff:e8:61:6a:0d:fe:fa:ca:da:28: 0f:76:d3:62:ee:66:30:77:7f:7b:56:59:cb:70:d9: 97:91:ad:3a:01:ee:76:7b:c8:8c:30:4f:b3:bf:4c: e2:19:d6:ca:6e:56:04:4d:37:2f:15:e0:af:5b:b0: d3:72:8b:de:84:6a:55:f7:01:66:37:93:6a:07:ea: 65:9a:e4:2a:86:6b:f4:3d:1a:cc:a4:a4:82:8e:ae: 33:96:3f:75:4e:25:0b:30:99:fa:1d:9f:d7:3f:19: 39:e8:21:5a:6b:16:61:0f:73:9b:64:23:d3:7c:bb: c1:7c:e7:93:67:2e:34:40:53:89:1a:f1:82:85:5f: 7e:1a:c8:70:de:7e:c9:a4:93:2c:40:58:b9:c8:7e: 2f:9e:16:cb:42:84:a0:23:d3:35:aa:b1:8e:76:12: 69:43:46:53:74:3f:30:31:8d:56:3b:f2:30:45:aa: e9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:32:DB:9B:0C:05:4D:77:D1:72:93:27:FB:7F:D5:F8:8C:C5:8C:63 X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1c:cb:db:88:dd:7d:68:9d:ea:ed:82:3a:f4:9d:e0:bb:d9: 83:89:8f:46:09:01:bb:01:16:19:bb:54:da:95:7c:79:67:8f: ef:8b:3d:e4:27:5d:cb:31:76:67:18:c9:4c:e2:74:a9:66:2a: 15:d5:e6:86:da:2b:c6:f1:9c:08:86:7a:c8:eb:31:b7:78:67: d7:fb:cc:90:18:d5:6d:f2:b3:53:5d:53:de:3c:a7:82:10:b1: 18:f5:25:a2:51:f3:c4:1f:25:09:c7:b0:1e:c2:7b:1f:31:77: 6a:f1:8f:33:f5:4d:77:06:2c:a6:55:68:b5:b4:71:11:f7:da: 3f:fc:6c:2d:51:30:7d:ae:44:d7:7a:85:0a:34:e3:a4:b8:a4: 35:ca:ac:f3:29:c6:bb:cf:5d:9f:d7:1d:55:7a:68:53:04:0c: 30:47:e1:1c:36:28:2d:c4:12:5b:0b:37:ce:ce:09:c5:ce:67: d7:79:84:d8:3a:1d:33:da:ea:4f:ad:a1:64:5f:4e:2a:25:6a: 6a:d6:15:74:5d:40:fa:a2:2e:7b:8b:71:d8:34:15:d3:f2:8e: 1e:ce:b7:1d:19:33:b4:d5:5d:39:bc:8a:3f:11:8f:a4:8d:48: 0f:78:40:7a:d7:d0:00:64:49:45:e9:ad:81:8f:a0:f3:c0:f6: c2:08:02:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjQwNTAyMTUwMTUyWhcNMjQwNTA5MTUwMTUyWjAYMRYwFAYD VQQDEw02NjMzYWFlMC1mZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9xQu35bcqRK9PqpSEq2wkeizkNd9xdN3oaseg1SDSkksuwhiB//iW9OCvQEk J/tzuMQ9rq56WdWwIxINBV0q8O2rlEps7eXbQ9Udtxcy8P/oYWoN/vrK2igPdtNi 7mYwd397VlnLcNmXka06Ae52e8iMME+zv0ziGdbKblYETTcvFeCvW7DTcovehGpV 9wFmN5NqB+plmuQqhmv0PRrMpKSCjq4zlj91TiULMJn6HZ/XPxk56CFaaxZhD3Ob ZCPTfLvBfOeTZy40QFOJGvGChV9+Gshw3n7JpJMsQFi5yH4vnhbLQoSgI9M1qrGO dhJpQ0ZTdD8wMY1WO/IwRarpdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIy25sM BU130XKTJ/t/1fiMxYxjMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArHMvbiN19aJ3q7YI69J3gu9mDiY9GCQG7ARYZu1TalXx5Z4/viz3k J13LMXZnGMlM4nSpZioV1eaG2ivG8ZwIhnrI6zG3eGfX+8yQGNVt8rNTXVPePKeC ELEY9SWiUfPEHyUJx7AewnsfMXdq8Y8z9U13BiymVWi1tHER99o//GwtUTB9rkTX eoUKNOOkuKQ1yqzzKca7z12f1x1VemhTBAwwR+EcNigtxBJbCzfOzgnFzmfXeYTY Oh0z2upPraFkX04qJWpq1hV0XUD6oi57i3HYNBXT8o4ezrcdGTO01V05vIo/EY+k jUgPeEB619AAZElF6a2Bj6DzwPbCCAKc -----END CERTIFICATE-----Generated at Thu May 2 17:43:45 2024 by rpki-client on console-fra.rpki-client.org