$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: ubLdwS4yGgvjPB4Yokjt9dcFxrl4xMrpNikT3vSxXdc= Subject key identifier: AA:A6:27:83:82:BC:58:A9:DF:D9:92:85:98:CE:E2:87:68:14:56:40 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 076C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 076C Signing time: Fri 22 Nov 2024 20:57:38 +0000 Manifest this update: Fri 22 Nov 2024 20:57:38 +0000 Manifest next update: Fri 29 Nov 2024 20:57:38 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: YtL52HBdvejuTj1ingRO33+u71AxNsMhEf5M+e0kgr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1900 (0x76c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Nov 22 20:57:38 2024 GMT Not After : Nov 29 20:57:38 2024 GMT Subject: CN=6740f042-cc8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:8c:7f:7b:43:cd:0d:c4:4c:99:96:5b:5d: a6:9f:5d:95:62:fa:ff:3e:37:be:b1:81:ad:65:f8: e9:3e:43:8b:f7:24:a9:88:e4:de:1e:b5:45:22:e6: 1a:ad:1c:81:24:c2:b6:d0:95:a7:a7:99:83:7a:12: b2:78:1f:c3:87:37:4c:92:24:5c:86:cc:52:72:1c: 4b:a9:c7:37:34:b0:0f:86:89:0c:36:95:f3:5f:d0: 1d:27:88:86:39:ed:f3:e8:ab:97:45:72:80:a9:ce: 59:a4:de:4a:f1:bb:34:8b:cc:c7:0b:49:3c:27:1f: da:ce:b2:b5:bf:0f:c3:52:f1:d7:ae:df:45:94:d3: f7:a7:4c:27:23:26:b8:56:84:aa:8c:56:20:69:8c: 17:c3:a5:dd:45:f3:cf:d2:ac:ef:fe:44:75:c5:b2: 3e:15:bc:6e:a9:5c:98:eb:08:33:11:e0:55:77:16: 0f:b3:9f:71:d5:45:e8:6c:23:1f:aa:a6:88:1f:34: e0:3c:71:d3:26:57:d1:24:83:27:28:76:d8:64:93: 95:74:32:7f:e3:52:be:6f:c2:2f:52:dc:9e:71:1a: 21:b6:86:43:ca:d2:42:6f:27:b7:50:67:ca:7c:11: 86:41:35:0a:d4:87:15:d8:dc:6e:e9:47:c2:c5:83: 87:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A6:27:83:82:BC:58:A9:DF:D9:92:85:98:CE:E2:87:68:14:56:40 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:f9:84:a0:71:98:05:91:f5:f4:d5:ae:be:85:11:07:fb:e0: bc:0f:94:4f:f4:71:a0:f4:2a:d2:35:f1:d4:df:3d:b2:7f:ca: 1c:7e:56:ab:4d:1b:cc:cc:8c:1e:a4:77:ea:83:74:8f:86:78: 4e:52:6c:43:c8:71:dd:a3:74:95:0a:4e:c2:d0:3d:9f:b7:cc: b1:6b:87:ca:07:81:d8:de:ec:7d:72:98:b3:52:71:de:75:fa: 50:72:86:24:3e:19:0c:b1:da:ee:02:8b:68:1a:02:be:25:3e: a1:62:70:b0:9d:93:df:39:4e:0b:44:53:9b:54:8f:aa:f5:f8: b9:9c:f6:78:c1:ca:b4:45:8c:a0:fb:e5:19:46:08:39:32:82: a0:91:4f:33:9c:ef:38:61:78:99:f2:1d:90:d0:30:da:ff:27: 4c:f4:e4:77:64:1a:55:dc:ef:12:23:5f:b1:67:9b:0e:a1:91: 49:71:97:f4:5a:d6:28:bd:62:55:e9:38:52:b2:ce:71:bb:8f: 5d:44:e4:f4:79:b4:aa:6b:7c:a7:bf:8a:a9:cf:62:26:fe:02: d5:11:0b:99:71:4a:e5:de:1f:48:f2:e6:64:eb:ff:61:e0:0c: ee:01:a8:0e:aa:78:eb:ee:6f:07:ed:4d:4c:f0:b2:b1:d4:ac: 78:b4:a1:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjQxMTIyMjA1NzM4WhcNMjQxMTI5MjA1NzM4WjAYMRYwFAYD VQQDEw02NzQwZjA0Mi1jYzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIKMf3tDzQ3ETJmWW12mn12VYvr/Pje+sYGtZfjpPkOL9ySpiOTeHrVFIuYa rRyBJMK20JWnp5mDehKyeB/DhzdMkiRchsxSchxLqcc3NLAPhokMNpXzX9AdJ4iG Oe3z6KuXRXKAqc5ZpN5K8bs0i8zHC0k8Jx/azrK1vw/DUvHXrt9FlNP3p0wnIya4 VoSqjFYgaYwXw6XdRfPP0qzv/kR1xbI+FbxuqVyY6wgzEeBVdxYPs59x1UXobCMf qqaIHzTgPHHTJlfRJIMnKHbYZJOVdDJ/41K+b8IvUtyecRohtoZDytJCbye3UGfK fBGGQTUK1IcV2Nxu6UfCxYOHMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqmJ4OC vFip39mShZjO4odoFFZAMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr+YSgcZgFkfX01a6+hREH++C8D5RP9HGg9CrSNfHU3z2yf8ocflar TRvMzIwepHfqg3SPhnhOUmxDyHHdo3SVCk7C0D2ft8yxa4fKB4HY3ux9cpizUnHe dfpQcoYkPhkMsdruAotoGgK+JT6hYnCwnZPfOU4LRFObVI+q9fi5nPZ4wcq0RYyg ++UZRgg5MoKgkU8znO84YXiZ8h2Q0DDa/ydM9OR3ZBpV3O8SI1+xZ5sOoZFJcZf0 WtYovWJV6ThSss5xu49dROT0ebSqa3ynv4qpz2Im/gLVEQuZcUrl3h9I8uZk6/9h 4AzuAagOqnjr7m8H7U1M8LKx1Kx4tKEK -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org