$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: PfL2ZW9qnAdQehh3K4ainhp3QLzDHj3/Z6HIVJwVU5Q= Subject key identifier: F6:C4:89:77:55:1B:CA:F7:4D:59:41:00:4E:57:1F:CC:31:3D:DD:C2 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 05EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 05E8 Signing time: Fri 22 Nov 2024 22:25:24 +0000 Manifest this update: Fri 22 Nov 2024 22:25:23 +0000 Manifest next update: Fri 29 Nov 2024 22:25:23 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: iJyHJFoP8A6A0DXcBkT98Lcsy72DKRYhe63ENm8vwOA=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: 9fks3NvnHOVB0kb3Kc99MGLGUTLgUhxpBqtGNsXU3KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Nov 22 22:25:23 2024 GMT Not After : Nov 29 22:25:23 2024 GMT Subject: CN=674104d4-c10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e6:a7:bf:fa:49:d1:5f:d8:66:9e:69:1f:4f: e1:0e:f8:e1:1a:ec:69:88:d1:dd:0d:f9:b1:c0:9b: 35:e7:0a:67:cd:4e:5b:ea:3f:0d:41:4c:8a:be:7c: de:80:77:a5:31:06:cf:56:a7:9e:3d:2e:df:ea:b1: e8:09:cf:a8:5a:35:a3:23:e3:27:07:d3:19:ad:b9: 02:26:c0:d9:c4:2c:0f:8f:41:45:69:81:fd:92:36: 9b:81:57:44:5c:c6:ae:7c:1b:6f:be:86:cb:6a:58: 0e:16:68:d5:66:b7:51:98:d4:dd:31:4b:4a:a9:26: af:18:15:a3:42:01:ae:95:02:e2:04:b7:17:f9:7c: 36:11:58:4c:3c:6e:bd:4e:34:53:5f:09:38:c2:49: e1:fc:ed:cf:51:cf:ec:c1:45:5b:de:fc:b0:b3:4e: 71:27:dd:41:7b:9e:78:41:b4:b0:bb:49:09:86:cd: 26:56:fe:b3:d6:cc:c2:b6:1a:3b:8b:50:33:6a:6d: cf:e1:c6:83:3b:bb:97:ea:2f:7b:c5:17:95:4c:68: 94:e7:f2:be:d1:64:27:81:49:ea:9d:1e:f3:86:f3: 3c:db:4a:98:de:b9:e7:41:36:f4:3a:62:b2:6b:4e: 10:09:f6:18:78:f6:12:13:ec:5e:75:34:a0:71:0f: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C4:89:77:55:1B:CA:F7:4D:59:41:00:4E:57:1F:CC:31:3D:DD:C2 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:46:b3:a8:66:f9:86:73:b4:ab:4a:42:95:d8:16:b1:13:c4: 05:55:c2:41:35:12:95:6d:c9:35:c2:9b:86:e5:9a:8b:3b:36: 42:74:62:a6:8e:ea:f4:8c:2f:bb:a2:ac:e6:74:5a:2e:c1:60: e1:8d:3c:74:4d:7f:0b:e9:56:10:47:9f:eb:b3:9d:0c:70:19: 6e:46:ff:81:1e:40:f1:ae:46:00:8c:a7:bc:ba:8e:0d:e3:fc: ba:3a:26:e5:2e:33:aa:88:99:e2:fd:01:0a:5e:84:b1:2d:50: ab:5b:37:63:60:9a:1d:1f:a7:1e:7b:33:e3:66:aa:f1:d1:fa: 6d:09:10:39:7a:3d:b1:0c:a1:34:85:9c:b7:ce:c8:38:91:24: 6c:bb:d6:55:2f:09:6a:8b:73:61:0c:16:96:84:b8:80:f6:7b: 85:e7:e8:2f:51:12:c5:aa:58:2c:bb:ff:3c:fa:36:34:83:49: 09:2e:18:fe:ff:07:b8:74:7a:24:00:dd:28:76:91:a1:06:c2: ec:08:43:99:f7:4b:c5:f2:44:de:5d:81:ee:e6:df:1f:38:ad: 0e:2a:67:93:2d:24:9a:dd:93:6c:8f:52:36:70:bc:b5:ff:1b: 92:be:3c:29:93:8d:2f:bc:86:47:e5:8a:68:ba:88:0e:89:e8: e7:db:74:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjQxMTIyMjIyNTIzWhcNMjQxMTI5MjIyNTIzWjAYMRYwFAYD VQQDEw02NzQxMDRkNC1jMTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uanv/pJ0V/YZp5pH0/hDvjhGuxpiNHdDfmxwJs15wpnzU5b6j8NQUyKvnze gHelMQbPVqeePS7f6rHoCc+oWjWjI+MnB9MZrbkCJsDZxCwPj0FFaYH9kjabgVdE XMaufBtvvobLalgOFmjVZrdRmNTdMUtKqSavGBWjQgGulQLiBLcX+Xw2EVhMPG69 TjRTXwk4wknh/O3PUc/swUVb3vyws05xJ91Be554QbSwu0kJhs0mVv6z1szCtho7 i1Azam3P4caDO7uX6i97xReVTGiU5/K+0WQngUnqnR7zhvM820qY3rnnQTb0OmKy a04QCfYYePYSE+xedTSgcQ80tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbEiXdV G8r3TVlBAE5XH8wxPd3CMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGRrOoZvmGc7SrSkKV2BaxE8QFVcJBNRKVbck1wpuG5ZqLOzZCdGKm jur0jC+7oqzmdFouwWDhjTx0TX8L6VYQR5/rs50McBluRv+BHkDxrkYAjKe8uo4N 4/y6OiblLjOqiJni/QEKXoSxLVCrWzdjYJodH6ceezPjZqrx0fptCRA5ej2xDKE0 hZy3zsg4kSRsu9ZVLwlqi3NhDBaWhLiA9nuF5+gvURLFqlgsu/88+jY0g0kJLhj+ /we4dHokAN0odpGhBsLsCEOZ90vF8kTeXYHu5t8fOK0OKmeTLSSa3ZNsj1I2cLy1 /xuSvjwpk40vvIZH5YpouogOiejn23TL -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org