$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft File: qkjQtX4IXNlA26F5HapYc8wZx_4.mft (raw, json) Hash identifier: sOVjkWFkohAtBBYKHRULRgBXzsciev1XwD68X/bHp/M= Subject key identifier: A1:B4:57:81:74:B8:AF:78:51:43:BB:78:58:68:6E:FB:01:29:1B:C9 Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft Manifest number: 02C1 Signing time: Mon 29 Apr 2024 03:25:42 +0000 Manifest this update: Mon 29 Apr 2024 03:25:41 +0000 Manifest next update: Mon 06 May 2024 03:25:41 +0000 Files and hashes: 1: qkjQtX4IXNlA26F5HapYc8wZx_4.crl (hash: NK0uRNDt4id72M/ZOcPdZ6FKQsPVN55ZSsr9A0dlsBM=) 2: 9924B750A1AF11EC9A73D814C4F9AE02.roa (hash: Cc7t4Z12goHjPA/JPUMeVBw4GQhWlHJ4SxzDvjO/7cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: Apr 29 03:25:41 2024 GMT Not After : May 6 03:25:41 2024 GMT Subject: CN=662f1335-ecbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:80:ae:a2:1c:ef:5b:4b:19:99:45:03:7f:b6: 29:a7:8c:88:fc:27:6a:c8:26:4e:80:39:ad:1f:ad: 18:bb:57:41:56:c8:90:97:37:fb:bf:79:24:4c:56: 86:2c:cc:b0:e0:1d:aa:04:3f:36:04:47:07:17:39: e9:15:b2:1f:f9:83:55:fa:94:c9:34:b0:12:26:46: c4:c7:d3:55:13:59:02:60:5b:91:0f:5d:34:af:3c: e3:65:9f:57:bf:b5:2f:68:0e:8f:13:f0:96:18:74: 1f:b0:5c:d2:f8:49:b3:75:50:a7:ec:b4:ed:6f:dc: 3e:f3:d6:63:97:b9:67:c8:44:c8:5f:4f:8f:7d:8a: 59:3e:9a:28:23:17:d5:bc:d5:27:a5:f7:4d:6a:d0: ad:b2:7f:3e:02:cd:38:16:eb:8f:e1:4a:14:df:24: 70:27:e3:00:7f:a2:2b:ef:8b:aa:af:0b:63:a3:67: c9:85:7c:5c:13:77:52:42:01:ee:88:30:23:62:b6: b2:1f:52:21:36:41:c0:f2:4c:43:1f:42:df:0b:25: f9:75:7b:97:19:a6:10:f4:9d:1c:95:57:71:79:ac: 01:d3:6e:33:ab:19:c9:65:50:1e:18:f2:c7:1d:48: 83:3c:9a:04:84:cc:01:0b:c8:26:bd:1a:a2:32:4c: 18:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B4:57:81:74:B8:AF:78:51:43:BB:78:58:68:6E:FB:01:29:1B:C9 X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:7a:86:e5:7c:82:e6:b0:ed:02:47:c4:82:f2:b9:f4:7e:2c: 3d:ab:14:a1:03:59:8f:b2:bd:a2:f2:37:aa:cc:2d:e9:72:c4: 86:e3:fa:bd:1b:cd:78:13:55:dc:be:3c:46:90:d2:a4:0e:c4: 15:c3:6e:bc:47:43:89:5d:3a:ca:0d:90:c8:a1:7c:21:44:13: fe:b5:b3:6b:a6:7b:c5:67:e3:3d:45:46:06:c2:62:45:ab:c8: a9:0a:ca:99:84:15:48:84:a9:64:af:7b:99:c9:48:30:c4:7f: 1e:40:d2:c1:69:ce:6b:04:c2:72:0e:b2:26:a3:22:ff:4e:34: a1:c0:59:60:00:ab:1a:f6:77:3d:1d:d2:bb:80:ea:1e:e7:e4: 97:03:3b:3b:2c:e7:5b:6f:16:e0:c4:15:ed:91:9c:71:ee:67: d7:8c:bf:12:57:61:8a:ff:10:b5:20:77:5d:2c:f9:0f:7a:70: 17:13:79:d0:8c:41:ac:b9:49:a8:77:e6:3f:ff:cc:26:fd:03: 9b:5e:3d:63:fd:09:9a:83:42:06:11:c0:3b:4e:68:c0:1d:ef: 89:4c:2e:2b:44:61:30:54:c8:1c:31:12:34:f7:8c:bb:29:9f: 65:02:3c:79:7c:57:c7:c5:5e:ab:97:75:2c:c5:e2:1e:59:dd: 29:10:f7:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjQwNDI5MDMyNTQxWhcNMjQwNTA2MDMyNTQxWjAYMRYwFAYD VQQDEw02NjJmMTMzNS1lY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14CuohzvW0sZmUUDf7Ypp4yI/CdqyCZOgDmtH60Yu1dBVsiQlzf7v3kkTFaG LMyw4B2qBD82BEcHFznpFbIf+YNV+pTJNLASJkbEx9NVE1kCYFuRD100rzzjZZ9X v7UvaA6PE/CWGHQfsFzS+EmzdVCn7LTtb9w+89Zjl7lnyETIX0+PfYpZPpooIxfV vNUnpfdNatCtsn8+As04FuuP4UoU3yRwJ+MAf6Ir74uqrwtjo2fJhXxcE3dSQgHu iDAjYrayH1IhNkHA8kxDH0LfCyX5dXuXGaYQ9J0clVdxeawB024zqxnJZVAeGPLH HUiDPJoEhMwBC8gmvRqiMkwYAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG0V4F0 uK94UUO7eFhobvsBKRvJMB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU4Mi85NzRGQ0FBMEExMTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhO bEEyNkY1SGFwWWM4d1p4XzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTeoblfILmsO0CR8SC8rn0fiw9qxShA1mPsr2i8jeqzC3pcsSG4/q9 G814E1XcvjxGkNKkDsQVw268R0OJXTrKDZDIoXwhRBP+tbNrpnvFZ+M9RUYGwmJF q8ipCsqZhBVIhKlkr3uZyUgwxH8eQNLBac5rBMJyDrImoyL/TjShwFlgAKsa9nc9 HdK7gOoe5+SXAzs7LOdbbxbgxBXtkZxx7mfXjL8SV2GK/xC1IHddLPkPenAXE3nQ jEGsuUmod+Y//8wm/QObXj1j/Qmag0IGEcA7TmjAHe+JTC4rRGEwVMgcMRI094y7 KZ9lAjx5fFfHxV6rl3UsxeIeWd0pEPfn -----END CERTIFICATE-----Generated at Mon Apr 29 04:55:54 2024 by rpki-client on console-fra.rpki-client.org