$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft File: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft (raw, json) Hash identifier: ZDbHrcZs9VIb+iiNmJVRnnAC8MEQtFaIvB/s08LxBAY= Subject key identifier: 74:67:77:B5:05:BD:86:C6:C3:46:C8:4F:87:40:F0:49:C0:6C:B7:FF Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft Manifest number: B8 Signing time: Sat 23 Nov 2024 04:07:56 +0000 Manifest this update: Sat 23 Nov 2024 04:07:56 +0000 Manifest next update: Sat 30 Nov 2024 04:07:56 +0000 Files and hashes: 1: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl (hash: aJJcVGZmjPu2QAFI0SLUtzNLzrd7SX5iFdsv1FM/C7A=) 2: 9BD4B85894D611EE85EDE844C4F9AE02.roa (hash: qMb5p2DafyW8EWL0hOaIMJWbQyW8PlH7p5vaUcSXFyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: Nov 23 04:07:56 2024 GMT Not After : Nov 30 04:07:56 2024 GMT Subject: CN=6741551c-b843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:f5:a5:4f:2e:75:bb:00:04:ca:a8:95:ce: 3f:2c:5f:b9:f1:52:ba:93:2b:a6:14:fd:36:3b:2e: 13:bc:a7:1f:8e:7b:5d:78:35:da:25:62:eb:0a:a9: 2b:87:82:2b:6a:0e:fe:99:1f:f9:e8:5a:db:a9:1d: a8:e3:63:cb:a3:f3:1e:9b:2e:39:c0:b2:d1:1a:fb: b9:88:cc:52:b8:b5:b8:74:0f:a8:7c:42:8f:97:b3: cf:c6:d6:21:d7:e8:4c:43:ee:a7:c4:fd:ba:f3:1c: cf:59:3b:3e:0c:79:00:d8:bc:cc:2e:50:50:cb:19: d6:0c:19:fc:16:f5:af:54:87:22:b9:cf:0e:01:5e: f7:ec:1a:4f:22:09:b1:a3:a1:da:72:dc:2b:a4:60: 42:ff:f2:db:5e:93:00:9c:16:e1:8c:9e:97:da:12: af:99:cc:66:b0:cb:71:3d:f9:ef:4c:0a:84:3e:b0: 8b:c2:17:f7:9e:20:58:fb:c7:30:cc:15:7d:63:9f: d0:00:73:c3:7a:d5:94:06:9f:ef:e4:2c:79:2a:76: e4:f6:c6:38:12:f9:ec:53:61:d6:e3:04:18:51:19: 66:49:a3:2b:b4:d2:bb:6f:c0:bd:d6:09:9c:c4:81: 37:c3:49:2e:0f:a2:6a:54:6c:d5:e2:82:5c:c9:79: 23:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:67:77:B5:05:BD:86:C6:C3:46:C8:4F:87:40:F0:49:C0:6C:B7:FF X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:69:0d:74:91:c7:49:b6:89:da:7a:8e:cd:14:99:7c:b9:1b: 8e:31:da:d4:d5:f1:2c:b2:7d:e5:bb:59:df:75:46:08:47:38: 02:69:7b:2a:a2:5b:ad:63:a8:39:24:e6:94:70:ec:d8:6e:13: d4:29:f6:6c:7f:4c:57:6a:5f:94:59:c6:a2:b5:74:26:6d:fb: 69:e3:65:2e:7b:b8:65:e2:aa:53:58:85:0f:d8:b7:e4:48:be: 17:41:55:5c:d2:3b:1a:0c:d6:5d:04:af:9d:c3:b8:4e:77:34: 42:cd:bc:57:77:f0:1d:1e:8c:7b:b4:b3:b4:05:9f:75:da:c3: a8:f2:e5:6b:00:cc:3e:56:f6:31:e2:15:48:8a:77:70:2f:5c: 1d:32:b7:87:d9:58:6a:3c:a8:d8:d6:dd:6d:6b:e3:8d:39:ce: 9b:3d:1f:bf:50:76:24:24:e9:81:81:57:86:ee:81:fc:ee:d7: f2:44:fa:96:b3:0d:fe:d4:b3:66:d2:0d:75:18:2b:05:d6:1d: 7d:38:e2:1d:6d:6b:ff:51:9c:7a:d9:0d:15:74:99:5b:14:3a: 9b:8f:e9:d5:19:42:e5:1e:9a:c2:1b:f2:8b:3f:9e:84:b3:41: dd:59:10:1c:f3:31:22:4b:b4:f0:83:52:69:c2:45:98:00:38: 49:50:04:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM3QTIxMTAvBgNVBAUTKDQzODJGOUFBMzAxNkZDQkYzMUY5MjRDRjEzMkU5NUJG OTI3MDlBREQwHhcNMjQxMTIzMDQwNzU2WhcNMjQxMTMwMDQwNzU2WjAYMRYwFAYD VQQDEw02NzQxNTUxYy1iODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+T1pU8udbsABMqolc4/LF+58VK6kyumFP02Oy4TvKcfjntdeDXaJWLrCqkr h4Irag7+mR/56FrbqR2o42PLo/Memy45wLLRGvu5iMxSuLW4dA+ofEKPl7PPxtYh 1+hMQ+6nxP268xzPWTs+DHkA2LzMLlBQyxnWDBn8FvWvVIciuc8OAV737BpPIgmx o6HactwrpGBC//LbXpMAnBbhjJ6X2hKvmcxmsMtxPfnvTAqEPrCLwhf3niBY+8cw zBV9Y5/QAHPDetWUBp/v5Cx5Knbk9sY4EvnsU2HW4wQYURlmSaMrtNK7b8C91gmc xIE3w0kuD6JqVGzV4oJcyXkjwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRnd7UF vYbGw0bIT4dA8EnAbLf/MB8GA1UdIwQYMBaAFEOC+aowFvy/MfkkzxMulb+ScJrd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzdBMi80OUU2RTNENjkz M0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19MOHgtU1RQRXk2VnY1Sndt dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzdBMi80OUU2RTNENjkzM0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19M OHgtU1RQRXk2VnY1SndtdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6aQ10kcdJtonaeo7NFJl8uRuOMdrU1fEssn3lu1nfdUYIRzgCaXsq olutY6g5JOaUcOzYbhPUKfZsf0xXal+UWcaitXQmbftp42Uue7hl4qpTWIUP2Lfk SL4XQVVc0jsaDNZdBK+dw7hOdzRCzbxXd/AdHox7tLO0BZ912sOo8uVrAMw+VvYx 4hVIindwL1wdMreH2VhqPKjY1t1ta+ONOc6bPR+/UHYkJOmBgVeG7oH87tfyRPqW sw3+1LNm0g11GCsF1h19OOIdbWv/UZx62Q0VdJlbFDqbj+nVGULlHprCG/KLP56E s0HdWRAc8zEiS7Twg1JpwkWYADhJUASU -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org