$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: Z0eHaDq2HPp5tsuaxRJdJKTEJj2Q51xrDudh5o2xT8Y= Subject key identifier: 7D:72:DB:33:5F:BF:91:BE:CE:5F:03:AB:B1:92:DC:0D:5A:A9:89:C0 Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: CD Signing time: Sun 05 May 2024 06:19:28 +0000 Manifest this update: Sun 05 May 2024 06:19:27 +0000 Manifest next update: Sun 12 May 2024 06:19:27 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: Bj+Hs7tI7uM5t0TZC29GK2Zr/fsVsCl0hNvtsQAFg/c=) 2: C4F6C132D68011ED86CA6756C4F9AE02.roa (hash: fAmGIZIeJ5UgE8P4J7XxA+4clbXzxz5i2LgHlxRJCh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: May 5 06:19:27 2024 GMT Not After : May 12 06:19:27 2024 GMT Subject: CN=663724ef-5ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4a:d4:cd:73:1f:8d:78:48:6b:fa:17:a0:7f: 1a:f0:a3:48:8d:10:37:fb:f4:d6:12:d2:c8:ec:46: 61:08:56:3e:60:07:0e:25:71:8f:a9:b5:72:ad:2e: eb:80:5a:c1:05:05:dc:a0:d7:65:12:bc:35:43:12: 62:26:15:45:eb:ef:c0:bb:18:ef:3e:21:d0:7e:16: 78:4a:36:05:5d:6c:8d:10:71:cf:37:a0:e2:fe:e1: 93:b1:60:72:e7:49:c8:bd:48:a1:65:78:a8:0a:6f: d3:35:a4:b9:26:dc:7f:ec:a3:5e:7c:76:eb:4d:eb: 57:9c:e9:b8:9f:cd:3c:e3:a6:b6:2b:6c:1b:11:8d: 2d:1a:1c:a6:3a:5e:b2:4c:df:9d:33:c4:82:6c:73: 64:7f:5b:f1:01:e9:a2:b0:03:ec:68:15:3f:57:6e: 58:cb:54:39:c8:96:b1:f2:08:6e:d0:26:da:ce:ad: 5b:1e:5a:31:8c:34:62:5d:c5:a5:d7:4b:38:9b:a1: a0:6e:3e:dd:ca:06:34:3b:f7:0b:e1:db:fd:cf:3d: b9:50:83:9f:11:cf:f1:d8:40:dc:66:05:7a:70:4c: 56:da:62:f9:c6:12:ba:eb:5b:ec:19:3c:63:2e:e8: cd:95:82:6f:0d:6d:01:03:c5:76:b1:c6:b8:2c:1a: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:72:DB:33:5F:BF:91:BE:CE:5F:03:AB:B1:92:DC:0D:5A:A9:89:C0 X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:40:d0:42:a3:51:9c:46:7d:6b:13:2b:77:04:b1:6c:c6:1f: 4f:1d:1b:aa:38:4a:90:d6:1b:1f:c1:16:ea:29:c8:e5:3b:14: 59:31:f6:b1:01:58:57:30:35:d9:77:98:af:6b:70:0a:37:d7: fa:5a:d1:2b:da:08:35:98:ac:d6:ca:db:63:d8:ab:be:c3:ba: fd:0f:82:3f:34:01:60:82:3f:4f:f1:c3:e1:59:2e:bb:57:3a: c3:8b:61:3a:d1:58:87:c9:6a:d7:dd:ea:7f:01:03:15:2c:5b: cf:d1:ec:29:50:21:dd:81:25:59:f2:2e:5b:b7:c8:fc:bf:f5: ab:de:fb:f8:c1:ec:df:ee:a4:b4:03:5c:dc:d6:23:00:b1:0d: f4:9c:80:9a:6b:86:d9:e9:3d:66:21:b9:40:f2:b1:4b:25:8f: 8e:b8:6a:03:01:a8:75:39:39:d1:8a:86:8e:a6:10:01:7d:47: 89:18:c1:84:ac:a1:2d:d1:9d:79:88:ef:9d:fb:4d:8f:ef:e9: c6:5c:8c:e1:59:dd:04:e2:fb:13:7c:58:d6:b0:d6:59:bd:c6: 8b:f4:bf:f7:23:a6:53:5b:9b:bd:3b:5c:34:b9:9d:fa:b7:c6: 97:dd:02:62:88:18:47:91:9f:4c:d5:fb:c7:fc:79:7c:d2:a1: 3f:f6:a8:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjQwNTA1MDYxOTI3WhcNMjQwNTEyMDYxOTI3WjAYMRYwFAYD VQQDEw02NjM3MjRlZi01YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskrUzXMfjXhIa/oXoH8a8KNIjRA3+/TWEtLI7EZhCFY+YAcOJXGPqbVyrS7r gFrBBQXcoNdlErw1QxJiJhVF6+/AuxjvPiHQfhZ4SjYFXWyNEHHPN6Di/uGTsWBy 50nIvUihZXioCm/TNaS5Jtx/7KNefHbrTetXnOm4n80846a2K2wbEY0tGhymOl6y TN+dM8SCbHNkf1vxAemisAPsaBU/V25Yy1Q5yJax8ghu0Cbazq1bHloxjDRiXcWl 10s4m6Ggbj7dygY0O/cL4dv9zz25UIOfEc/x2EDcZgV6cExW2mL5xhK661vsGTxj LujNlYJvDW0BA8V2sca4LBqMEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1y2zNf v5G+zl8Dq7GS3A1aqYnAMB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4QNBCo1GcRn1rEyt3BLFsxh9PHRuqOEqQ1hsfwRbqKcjlOxRZMfax AVhXMDXZd5iva3AKN9f6WtEr2gg1mKzWyttj2Ku+w7r9D4I/NAFggj9P8cPhWS67 VzrDi2E60ViHyWrX3ep/AQMVLFvP0ewpUCHdgSVZ8i5bt8j8v/Wr3vv4wezf7qS0 A1zc1iMAsQ30nICaa4bZ6T1mIblA8rFLJY+OuGoDAah1OTnRioaOphABfUeJGMGE rKEt0Z15iO+d+02P7+nGXIzhWd0E4vsTfFjWsNZZvcaL9L/3I6ZTW5u9O1w0uZ36 t8aX3QJiiBhHkZ9M1fvH/Hl80qE/9qj7 -----END CERTIFICATE-----Generated at Sun May 5 08:21:13 2024 by rpki-client on console-ams.rpki-client.org