$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: WvoWBxVyeOkwhVpvI87JaSAqcsQcKDnBXHDvOlLjwJE= Subject key identifier: 7C:75:2A:DB:5B:8A:94:0D:FD:0B:52:26:89:D9:A9:25:78:18:5C:A3 Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 0292 Signing time: Sat 23 Nov 2024 01:08:18 +0000 Manifest this update: Sat 23 Nov 2024 01:08:18 +0000 Manifest next update: Sat 30 Nov 2024 01:08:18 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: UlvxOqHWmctZY1wTlxoja8KoaqAftakywS77SwzILsI=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: RSA/ql0lNyv9WyAk0d5FOAFZ5R84Y3YnmGvbKn1e7f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: Nov 23 01:08:18 2024 GMT Not After : Nov 30 01:08:18 2024 GMT Subject: CN=67412b02-1fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:aa:13:68:ad:ea:cf:cb:db:d2:98:1f:10:39: 95:24:f6:18:2f:b3:67:9c:db:43:d1:ee:57:84:8b: 38:f0:6e:b9:85:0a:00:67:5e:4e:5b:33:9d:00:dd: 73:5b:38:e2:16:66:4e:68:d5:bd:eb:cd:82:57:8c: bd:3c:98:57:1a:77:e9:f6:bb:91:6a:90:61:6e:3e: a8:89:cb:82:62:aa:aa:7c:a3:92:99:cf:31:fb:92: e5:57:d4:b5:91:24:4b:35:34:81:b6:90:6c:f2:9c: 41:9f:bd:8e:68:15:73:11:99:7e:73:60:26:e3:93: 37:79:99:ea:33:3e:5c:fa:38:9a:3b:47:42:8f:48: 3a:27:0c:67:ed:b1:f3:25:f1:8e:1b:0e:40:4f:eb: 74:5e:4a:73:89:2e:f0:f1:7f:c5:58:1d:67:b9:36: 2a:17:18:6c:db:68:b1:79:ed:9e:81:95:25:8a:f7: 4f:af:b5:f2:4b:af:9f:89:f1:63:e7:5f:c6:0e:64: 1b:a3:8d:e9:72:25:6e:0c:7f:90:09:b6:79:fb:cf: 1a:50:b4:fa:d5:92:26:80:99:09:cf:2c:d3:4c:f2: 7b:28:dd:fa:1d:ce:24:f5:18:fb:ce:ce:4b:e2:e9: 19:64:ea:55:22:9e:a8:ac:5c:e2:65:4b:3f:dc:47: cf:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:75:2A:DB:5B:8A:94:0D:FD:0B:52:26:89:D9:A9:25:78:18:5C:A3 X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a2:c4:fd:a1:93:7e:b5:f5:cf:4d:b5:bf:1b:18:88:6f:cb: 7d:d3:89:70:f3:e4:cc:0f:a6:7a:45:d5:1f:8a:3a:af:13:8f: 67:33:f8:78:8d:8f:4e:54:f3:c3:4b:35:eb:98:aa:f8:2d:c7: 3a:0a:b2:f0:a5:28:16:4f:e1:c6:ee:b5:58:e3:6a:c0:76:38: 38:fa:47:4c:c0:32:aa:f4:33:98:aa:ab:9c:97:ef:2a:91:d5: 9f:5f:6c:05:ee:cf:7d:16:ac:29:59:7b:d5:ac:a3:e3:38:18: 7c:6b:de:5f:9e:01:eb:e5:b6:db:c5:9f:42:0e:81:be:fe:40: c2:be:92:1b:b2:76:5a:aa:85:ae:b3:37:6c:a0:4a:72:9a:61: 3d:0d:be:a8:f2:bb:44:23:e0:36:e0:77:6a:9a:1f:e3:b3:95: 1b:db:1a:7e:cb:25:96:74:1f:fe:50:ab:18:05:74:f5:b8:6f: 98:e3:68:d6:d6:20:3a:16:5e:59:0a:5e:37:ab:15:72:c1:93: 72:60:c0:fe:4f:c7:5f:a9:3b:72:00:51:20:3f:89:f1:b6:4a: 3f:e0:a8:38:5d:7a:8e:88:a3:6f:cb:a0:02:1e:54:06:5d:b4: 2c:96:d2:43:54:7c:1c:59:99:53:20:fe:ed:05:e0:f8:e0:5d: 34:b1:85:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjQxMTIzMDEwODE4WhcNMjQxMTMwMDEwODE4WjAYMRYwFAYD VQQDEw02NzQxMmIwMi0xZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqoTaK3qz8vb0pgfEDmVJPYYL7NnnNtD0e5XhIs48G65hQoAZ15OWzOdAN1z WzjiFmZOaNW9682CV4y9PJhXGnfp9ruRapBhbj6oicuCYqqqfKOSmc8x+5LlV9S1 kSRLNTSBtpBs8pxBn72OaBVzEZl+c2Am45M3eZnqMz5c+jiaO0dCj0g6Jwxn7bHz JfGOGw5AT+t0XkpziS7w8X/FWB1nuTYqFxhs22ixee2egZUlivdPr7XyS6+fifFj 51/GDmQbo43pciVuDH+QCbZ5+88aULT61ZImgJkJzyzTTPJ7KN36Hc4k9Rj7zs5L 4ukZZOpVIp6orFziZUs/3EfPyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHx1Kttb ipQN/QtSJonZqSV4GFyjMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4osT9oZN+tfXPTbW/GxiIb8t904lw8+TMD6Z6RdUfijqvE49nM/h4 jY9OVPPDSzXrmKr4Lcc6CrLwpSgWT+HG7rVY42rAdjg4+kdMwDKq9DOYqqucl+8q kdWfX2wF7s99FqwpWXvVrKPjOBh8a95fngHr5bbbxZ9CDoG+/kDCvpIbsnZaqoWu szdsoEpymmE9Db6o8rtEI+A24Hdqmh/js5Ub2xp+yyWWdB/+UKsYBXT1uG+Y42jW 1iA6Fl5ZCl43qxVywZNyYMD+T8dfqTtyAFEgP4nxtko/4Kg4XXqOiKNvy6ACHlQG XbQsltJDVHwcWZlTIP7tBeD44F00sYUh -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org