$ rpki-client -vvf rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft (raw, json) Hash identifier: xg5o+833RZQ5QuH6LXRfJPOCJG6qyz76vKl5NDuMcCQ= Subject key identifier: 21:7E:24:E9:D9:61:81:47:43:B5:16:6E:A4:02:AD:F0:17:0C:EE:36 Authority key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B Certificate issuer: /CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft Manifest number: DD Signing time: Sat 23 Nov 2024 03:37:04 +0000 Manifest this update: Sat 23 Nov 2024 03:37:04 +0000 Manifest next update: Sat 30 Nov 2024 03:37:04 +0000 Files and hashes: 1: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl (hash: h5kUwAkGIcQkbDJheDGpIG3kZZFYN8BL6Nalx9tY7RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Validity Not Before: Nov 23 03:37:04 2024 GMT Not After : Nov 30 03:37:04 2024 GMT Subject: CN=67414de0-7465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f6:87:30:a0:d9:29:3e:86:63:dc:4e:dd:df: 86:b6:51:d4:45:8f:9d:da:ef:9f:f5:44:c2:6d:43: 01:98:a0:cb:3c:68:23:09:87:1b:3b:31:5f:be:05: 5d:13:ff:f2:2d:8f:c8:88:56:09:7e:1f:d6:05:02: 46:35:c5:95:e1:15:98:c1:59:02:0b:08:55:55:62: da:c6:27:b3:50:7b:8d:80:02:ba:88:e8:1d:63:79: 98:85:2e:ca:65:42:47:4f:76:40:fb:4f:bc:bb:d4: 3a:c9:70:51:61:d5:9a:e7:67:77:2c:cb:50:91:95: 12:50:da:ac:e2:3e:46:23:9e:ad:95:62:ac:3c:20: c0:7c:6f:86:0a:9c:9a:8f:c8:fb:74:b2:f1:d8:7e: 65:59:25:6b:b1:2a:eb:68:59:79:0f:6c:e3:34:21: 53:26:01:15:c0:b9:c5:ec:77:e4:db:70:45:9c:a9: 71:80:ae:89:06:7f:4e:f4:d2:ee:ea:be:7a:f3:e8: e5:fc:50:44:ac:e0:39:2a:ed:6f:dc:a3:47:df:48: 11:a7:95:b9:8a:2d:fd:99:5e:9e:d5:59:9f:13:e6: 34:44:c2:25:50:d3:cc:ce:fe:af:98:49:af:19:7d: 3a:05:ce:9b:02:6b:3a:a7:7c:7a:1d:00:a8:3c:cf: 8f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7E:24:E9:D9:61:81:47:43:B5:16:6E:A4:02:AD:F0:17:0C:EE:36 X509v3 Authority Key Identifier: keyid:43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0d:c4:2d:1a:e3:58:2d:8a:81:21:35:8a:5a:d1:88:a3:98: dd:77:64:70:bb:b1:4b:34:11:c0:3b:59:59:e8:ec:80:0e:cf: 9b:3c:f2:ab:d0:ba:b8:93:05:65:1a:6e:4e:70:ab:a8:8f:ad: 67:73:ed:34:2a:d1:51:69:a9:ac:2d:2a:04:81:2e:6d:2c:3a: a9:57:8f:b5:e3:d3:66:09:58:f2:d0:5d:83:de:48:c7:86:3a: c2:b1:91:07:df:cf:f8:ae:a0:67:ac:06:ca:fa:4a:a0:31:a4: 74:15:64:1f:3e:09:32:91:91:53:d1:aa:c3:f6:c5:70:33:50: 31:2e:5f:0f:3a:5c:c9:2b:2c:5b:34:c6:47:5b:03:12:02:9d: 4d:6b:0a:05:19:23:3d:75:2d:e5:25:d2:ad:ec:b1:8d:42:79: 65:7d:6f:1b:53:75:8c:6e:85:69:2f:14:30:94:9b:9f:25:9a: dd:5d:00:f5:6d:11:1b:59:72:b5:70:66:58:e3:43:8e:38:7b: c5:6d:91:03:12:6f:77:af:fe:09:33:71:5f:cc:3e:92:3d:28: 0d:c8:7d:02:45:bc:86:92:1a:20:d6:15:89:20:40:cc:43:e3: 74:be:4c:01:80:41:db:bf:80:dd:20:3a:cd:c0:dd:f8:c2:ae: 2a:93:a3:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJDMDkxMTAvBgNVBAUTKDQzOTI5RDkxNkRDOUM5Q0UzNDYzRkY5MTU4Q0NCRUZF OUYxODJDM0IwHhcNMjQxMTIzMDMzNzA0WhcNMjQxMTMwMDMzNzA0WjAYMRYwFAYD VQQDEw02NzQxNGRlMC03NDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvaHMKDZKT6GY9xO3d+GtlHURY+d2u+f9UTCbUMBmKDLPGgjCYcbOzFfvgVd E//yLY/IiFYJfh/WBQJGNcWV4RWYwVkCCwhVVWLaxiezUHuNgAK6iOgdY3mYhS7K ZUJHT3ZA+0+8u9Q6yXBRYdWa52d3LMtQkZUSUNqs4j5GI56tlWKsPCDAfG+GCpya j8j7dLLx2H5lWSVrsSrraFl5D2zjNCFTJgEVwLnF7Hfk23BFnKlxgK6JBn9O9NLu 6r568+jl/FBErOA5Ku1v3KNH30gRp5W5ii39mV6e1VmfE+Y0RMIlUNPMzv6vmEmv GX06Bc6bAms6p3x6HQCoPM+PVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCF+JOnZ YYFHQ7UWbqQCrfAXDO42MB8GA1UdIwQYMBaAFEOSnZFtycnONGP/kVjMvv6fGCw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkMwOS9DRDZENTIwMjU2 QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnljNDBZXy1SV015LV9wOFlM RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E1S2RrVzNKeWM0MFlfLVJXTXktX3A4WUxEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkMwOS9DRDZENTIwMjU2QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnlj NDBZXy1SV015LV9wOFlMRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiDcQtGuNYLYqBITWKWtGIo5jdd2Rwu7FLNBHAO1lZ6OyADs+bPPKr 0Lq4kwVlGm5OcKuoj61nc+00KtFRaamsLSoEgS5tLDqpV4+149NmCVjy0F2D3kjH hjrCsZEH38/4rqBnrAbK+kqgMaR0FWQfPgkykZFT0arD9sVwM1AxLl8POlzJKyxb NMZHWwMSAp1NawoFGSM9dS3lJdKt7LGNQnllfW8bU3WMboVpLxQwlJufJZrdXQD1 bREbWXK1cGZY40OOOHvFbZEDEm93r/4JM3FfzD6SPSgNyH0CRbyGkhog1hWJIEDM Q+N0vkwBgEHbv4DdIDrNwN34wq4qk6Nb -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org