$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: pKd2/46+64WWwFvT8JriZmRVthoU989gVtVfSxlvTkM= Subject key identifier: 91:18:84:3E:F7:A7:BC:23:49:ED:41:27:C0:36:02:9F:1D:24:DF:F8 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 3429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 3429 Signing time: Sun 24 Nov 2024 14:37:15 +0000 Manifest this update: Sun 24 Nov 2024 14:37:14 +0000 Manifest next update: Sun 01 Dec 2024 14:37:14 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: azDrHqxQgXef3iRU58ORMGUaYZqLeiEjrde3VSTZipc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Nov 24 14:37:14 2024 GMT Not After : Dec 1 14:37:14 2024 GMT Subject: CN=67433a1a-b790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:08:a5:40:ee:72:40:45:a5:d1:c3:b3:09:ea: 1d:1d:47:b7:b4:e9:8f:d6:db:2b:11:13:9e:ed:76: c4:0e:47:0e:2f:d9:d9:a8:e9:b4:61:60:f4:43:d7: f7:68:6d:8f:e2:df:54:dc:b8:5d:fd:6e:5f:a6:6f: 07:c5:95:6b:96:59:d9:c6:d3:60:be:b3:28:c1:91: dc:2c:07:9c:3d:48:1e:d2:25:9d:96:70:1d:71:23: ae:64:30:d3:77:06:58:f3:b8:05:32:89:ed:43:13: 7a:a9:da:72:fd:e5:d4:95:ec:0c:4b:0e:99:73:ac: 27:fd:e9:00:23:e7:e4:ad:7e:3c:7b:02:ca:e7:3e: 84:a1:f4:7a:99:3f:05:08:1e:28:c4:66:8f:1f:49: 6e:84:07:b8:ba:b0:84:05:5f:ef:40:80:0c:3e:1d: 19:b2:e9:7a:ec:43:df:26:27:4f:e4:18:19:ec:1d: 5b:e5:43:43:d8:87:f2:3b:a5:1e:fd:3b:9c:7c:0d: 10:04:3c:91:5e:9f:05:f6:7d:d9:56:a6:3f:4b:13: 6a:4f:fa:0b:72:c5:f4:3c:85:62:51:87:9e:b8:cf: 45:24:a1:81:cd:05:2c:3e:a5:37:dc:62:25:87:d5: f7:0f:0e:21:d1:40:06:fb:49:be:06:09:c6:28:39: 57:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:18:84:3E:F7:A7:BC:23:49:ED:41:27:C0:36:02:9F:1D:24:DF:F8 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:8c:83:2a:a9:8d:a4:00:d9:41:e4:7a:df:ab:9c:7c:41:f6: 8f:4c:8d:a1:05:c3:62:d1:ee:53:71:64:42:e2:aa:e2:4c:cb: 7a:c3:bf:8f:48:bf:9c:09:61:da:76:67:e0:58:88:fa:ad:9e: 1f:d7:63:6c:3b:f9:34:c5:bb:cc:29:59:9b:d4:5a:06:25:19: 81:30:4b:41:f7:37:8d:84:74:8a:79:30:2a:ad:ca:ff:2e:85: 45:d5:b7:5f:ed:33:44:df:ee:61:d5:11:62:44:84:88:11:a0: 7d:a1:f3:8b:b3:ec:57:49:b6:de:d0:1e:94:c8:9c:1c:1f:1f: b1:ba:59:36:6c:8c:78:1a:cf:d4:8c:18:5e:ed:70:e9:a6:ec: f5:39:5c:86:e4:9b:ab:14:b5:d9:1e:7e:61:01:3d:f4:49:8d: 82:10:33:82:35:22:17:c3:2f:c9:8b:b6:11:6d:05:0c:59:93: 0f:e1:19:14:b2:cf:07:26:7b:5d:1b:23:3e:d4:f6:07:1d:11: c1:30:a8:28:68:c3:66:b1:74:3e:6b:07:b3:28:c0:18:fc:b9: b1:7a:1c:a0:db:3d:de:50:78:fa:62:25:3f:56:a1:9d:99:92: cc:cb:cd:a2:49:73:03:9b:e0:13:72:96:8f:6a:4a:7c:64:90: b1:18:3e:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjQxMTI0MTQzNzE0WhcNMjQxMjAxMTQzNzE0WjAYMRYwFAYD VQQDEw02NzQzM2ExYS1iNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wilQO5yQEWl0cOzCeodHUe3tOmP1tsrEROe7XbEDkcOL9nZqOm0YWD0Q9f3 aG2P4t9U3Lhd/W5fpm8HxZVrllnZxtNgvrMowZHcLAecPUge0iWdlnAdcSOuZDDT dwZY87gFMontQxN6qdpy/eXUlewMSw6Zc6wn/ekAI+fkrX48ewLK5z6EofR6mT8F CB4oxGaPH0luhAe4urCEBV/vQIAMPh0Zsul67EPfJidP5BgZ7B1b5UND2IfyO6Ue /TucfA0QBDyRXp8F9n3ZVqY/SxNqT/oLcsX0PIViUYeeuM9FJKGBzQUsPqU33GIl h9X3Dw4h0UAG+0m+BgnGKDlXJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEYhD73 p7wjSe1BJ8A2Ap8dJN/4MB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/jIMqqY2kANlB5Hrfq5x8QfaPTI2hBcNi0e5TcWRC4qriTMt6w7+P SL+cCWHadmfgWIj6rZ4f12NsO/k0xbvMKVmb1FoGJRmBMEtB9zeNhHSKeTAqrcr/ LoVF1bdf7TNE3+5h1RFiRISIEaB9ofOLs+xXSbbe0B6UyJwcHx+xulk2bIx4Gs/U jBhe7XDppuz1OVyG5JurFLXZHn5hAT30SY2CEDOCNSIXwy/Ji7YRbQUMWZMP4RkU ss8HJntdGyM+1PYHHRHBMKgoaMNmsXQ+awezKMAY/Lmxehyg2z3eUHj6YiU/VqGd mZLMy82iSXMDm+ATcpaPakp8ZJCxGD6K -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:01 2024 by rpki-client on console-fra.rpki-client.org