$ rpki-client -vvf rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft File: eg_QMrwoEhCzyVIrRxWNVszepgo.mft (raw, json) Hash identifier: GeQKWNJsYykFvWEiG1Cqh7fEDB2M+fOQVrv/INgYnns= Subject key identifier: ED:0E:09:E3:18:C6:4C:4E:F6:B9:CD:3C:82:B9:66:0E:85:AA:EC:45 Authority key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A Certificate issuer: /CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft Manifest number: 84 Signing time: Sat 23 Nov 2024 04:36:54 +0000 Manifest this update: Sat 23 Nov 2024 04:36:54 +0000 Manifest next update: Sat 30 Nov 2024 04:36:54 +0000 Files and hashes: 1: eg_QMrwoEhCzyVIrRxWNVszepgo.crl (hash: EXRHBLIILwntwImrgVrlES2N2xRdYtkdzC5k7x/LNCs=) 2: AEC87CF641F111EFAA3E956BC4F9AE02.roa (hash: 2+ZQZYTjFgZ0ompKeq+cn1GgGM6zHpt6LAykcGBlf9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Validity Not Before: Nov 23 04:36:54 2024 GMT Not After : Nov 30 04:36:54 2024 GMT Subject: CN=67415be6-378d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:a8:af:78:b6:04:68:29:b9:b4:0c:17:97: 2f:da:06:87:d3:88:cc:19:97:38:44:21:cf:9b:c7: ba:a7:6a:4c:54:fd:12:18:3b:e6:8c:99:63:58:7c: 99:86:e8:a1:f8:40:a9:ad:38:a3:13:bc:28:63:bc: f2:1b:2c:28:1a:42:ee:a1:97:e8:e1:00:65:47:fa: 06:b7:77:40:3b:8a:07:e3:5b:04:17:2f:a9:cf:b8: 05:0e:55:19:93:58:41:ea:20:2b:d8:4f:35:b1:e8: 05:7d:d6:6d:8b:81:6e:e9:f6:9e:2a:05:e2:8c:a0: 72:9b:eb:aa:4f:e3:29:53:e3:09:86:d0:ae:aa:51: 21:cb:a8:18:19:c1:e1:2b:5a:3b:e8:67:3c:e6:3c: 71:31:81:7b:07:60:07:3f:20:9a:09:81:54:90:e2: 3a:a8:61:81:ce:a7:21:7f:9d:28:d3:71:dd:83:a3: 0c:ec:3e:c7:7c:ef:ce:c9:0c:83:88:1b:4e:21:38: 9f:dd:f0:ea:94:d4:6b:eb:8e:7a:87:ef:75:ed:cd: 04:f8:0c:cd:34:93:50:a6:5c:11:ed:d8:c4:a7:05: 3b:61:da:02:98:f2:7d:b6:48:3d:fc:ed:9a:c6:f4: c2:d9:0c:eb:7f:fa:8d:15:57:e5:09:e4:bc:57:a8: 37:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0E:09:E3:18:C6:4C:4E:F6:B9:CD:3C:82:B9:66:0E:85:AA:EC:45 X509v3 Authority Key Identifier: keyid:7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f0:a5:0f:8f:0b:bb:e9:66:43:fb:35:37:ec:51:fe:4a:b6: f8:19:35:53:df:b5:31:cf:4f:e9:cf:83:bb:62:a7:f3:bc:9a: f4:69:a9:28:b4:fa:3c:0a:71:d9:39:cf:36:85:cc:2c:0f:42: 5d:4e:1b:c3:f5:81:d2:e1:90:01:39:c8:84:4d:ef:34:b2:a8: 01:bd:43:fb:a5:38:c5:1c:19:26:f2:89:82:2f:29:69:34:51: 92:6f:92:f6:dd:3f:d3:00:04:99:1f:57:55:79:c5:b5:e7:18: be:e0:44:18:f9:fc:da:d7:a5:96:6f:f8:76:7b:62:4a:ab:2d: 7b:55:7e:7d:92:93:e3:c3:3c:6e:a0:39:aa:2d:05:81:92:dd: db:6a:82:93:71:03:da:15:b8:94:71:98:8c:e3:17:16:c9:ee: 80:11:ae:6e:cd:ac:24:85:1e:20:40:39:c0:a6:67:50:7a:77: 0a:28:87:38:00:8a:8c:f3:b4:5c:34:eb:e2:f1:7a:11:53:69: 90:1b:a8:8b:f0:a2:0f:e7:3b:df:7a:a8:63:a4:44:c2:3e:a7: 41:7e:a8:d7:b4:86:ef:2f:7f:c4:a2:ab:5a:48:7f:4c:73:6c: 70:ce:27:cb:31:09:c3:16:7b:81:12:2b:93:d6:72:bf:9b:e3: 78:ca:8b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU4MkExMTAvBgNVBAUTKDdBMEZEMDMyQkMyODEyMTBCM0M5NTIyQjQ3MTU4RDU2 Q0NERUE2MEEwHhcNMjQxMTIzMDQzNjU0WhcNMjQxMTMwMDQzNjU0WjAYMRYwFAYD VQQDEw02NzQxNWJlNi0zNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbGor3i2BGgpubQMF5cv2gaH04jMGZc4RCHPm8e6p2pMVP0SGDvmjJljWHyZ huih+ECprTijE7woY7zyGywoGkLuoZfo4QBlR/oGt3dAO4oH41sEFy+pz7gFDlUZ k1hB6iAr2E81segFfdZti4Fu6faeKgXijKBym+uqT+MpU+MJhtCuqlEhy6gYGcHh K1o76Gc85jxxMYF7B2AHPyCaCYFUkOI6qGGBzqchf50o03Hdg6MM7D7HfO/OyQyD iBtOITif3fDqlNRr6456h+917c0E+AzNNJNQplwR7djEpwU7YdoCmPJ9tkg9/O2a xvTC2Qzrf/qNFVflCeS8V6g30wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0OCeMY xkxO9rnNPIK5Zg6FquxFMB8GA1UdIwQYMBaAFHoP0DK8KBIQs8lSK0cVjVbM3qYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTgyQS83OEQ3NDk2RURE RTgxMUVFQTNCMEU3MTNDNEY5QUUwMi9lZ19RTXJ3b0VoQ3p5VklyUnhXTlZzemVw Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VnX1FNcndvRWhDenlWSXJSeFdOVnN6ZXBnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTgyQS83OEQ3NDk2RURERTgxMUVFQTNCMEU3MTNDNEY5QUUwMi9lZ19RTXJ3b0Vo Q3p5VklyUnhXTlZzemVwZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn8KUPjwu76WZD+zU37FH+Srb4GTVT37Uxz0/pz4O7YqfzvJr0aako tPo8CnHZOc82hcwsD0JdThvD9YHS4ZABOciETe80sqgBvUP7pTjFHBkm8omCLylp NFGSb5L23T/TAASZH1dVecW15xi+4EQY+fza16WWb/h2e2JKqy17VX59kpPjwzxu oDmqLQWBkt3baoKTcQPaFbiUcZiM4xcWye6AEa5uzawkhR4gQDnApmdQencKKIc4 AIqM87RcNOvi8XoRU2mQG6iL8KIP5zvfeqhjpETCPqdBfqjXtIbvL3/EoqtaSH9M c2xwzifLMQnDFnuBEiuT1nK/m+N4yote -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org