$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: nOxTGoIfP16VG0rL6pUwv3L0OiPBJISIv8KUpDKY9t4= Subject key identifier: EF:EC:90:5C:CE:AB:4D:30:39:88:B1:6D:B3:16:AD:8E:6F:CA:5B:42 Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0692 Signing time: Fri 22 Nov 2024 22:34:18 +0000 Manifest this update: Fri 22 Nov 2024 22:34:17 +0000 Manifest next update: Fri 29 Nov 2024 22:34:17 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: 0lFfyNC5Qn2zMYFjZ+U4pZOvkxTBDpRUjgrXjfd8a2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Nov 22 22:34:17 2024 GMT Not After : Nov 29 22:34:17 2024 GMT Subject: CN=674106ea-72ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b3:37:fd:0f:11:2f:4b:5e:3a:89:12:65:81: 27:71:72:25:e3:f2:98:5a:3e:a6:9c:25:a2:ee:22: b8:ab:8d:a7:f9:71:35:8c:3e:aa:a6:25:e1:c4:26: 8f:36:6e:85:84:d2:e2:2b:c6:85:07:b4:53:c7:8f: bc:5e:78:a7:f2:9b:2e:14:7b:32:9d:7f:ee:68:67: 41:9e:36:35:9f:12:1a:60:79:d9:fa:d6:3f:e6:06: e9:38:e7:20:0e:f9:d2:60:22:e0:f0:9a:ef:0f:65: 3f:ca:f6:c3:7c:34:71:1d:b0:f2:ca:04:cd:4f:1e: 65:c2:49:ae:75:23:77:30:f9:7e:4d:af:f0:e6:2c: 04:ab:e8:01:89:58:c6:f5:ec:76:3c:90:76:2f:24: 31:6c:59:67:0a:da:e6:34:56:24:ca:3e:89:12:56: ca:ba:bb:ed:11:a1:a9:d2:48:3e:f2:44:a5:45:c8: 53:32:27:21:0e:db:5f:d7:26:41:2f:2f:9f:d2:36: 3f:fd:2c:7f:8c:47:74:1c:f6:63:f0:63:82:e8:0a: bd:35:7e:dd:c9:18:4f:0f:d6:52:f4:67:2b:f9:fe: 80:c6:2c:89:61:81:5e:77:a7:06:38:95:97:90:46: 17:c3:52:84:02:67:ae:26:b9:3a:02:9c:ac:0e:54: 62:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:EC:90:5C:CE:AB:4D:30:39:88:B1:6D:B3:16:AD:8E:6F:CA:5B:42 X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:2e:74:f7:34:a2:45:d4:15:fd:74:48:7f:0c:60:d7:84:3e: 43:a1:18:2d:f6:13:5c:b9:41:3a:81:98:e9:06:c0:86:92:73: 54:a2:53:60:c7:fc:7b:a9:dc:8b:ed:8c:83:ee:29:4b:4d:8b: fb:f0:5d:0a:f8:4d:c9:35:d8:46:09:71:25:d9:8a:15:15:e9: a3:56:42:e4:72:79:7e:dc:ff:f1:c9:a5:63:98:62:98:01:33: 10:a7:bf:6f:05:28:fd:37:9c:c9:2c:b2:63:36:5c:e1:af:68: 83:71:51:39:56:20:95:24:26:b7:9c:38:c1:f2:7b:cc:b6:c7: 93:5c:1f:3f:f1:c4:2e:2a:64:e8:f6:a1:74:42:45:b6:6e:0a: 25:d0:e9:04:1a:82:35:dd:75:4e:32:70:39:91:29:de:10:ad: a1:95:c6:80:71:7a:fb:9c:3b:8c:1c:5b:a1:ad:75:da:6e:8e: fb:0c:53:80:08:41:78:19:db:04:1f:65:7a:a7:94:38:98:c3: 27:3d:7c:66:6d:34:33:96:b6:10:05:e7:09:da:a4:40:7d:26: a4:fd:b8:2a:fc:7d:08:7e:f4:91:bd:1a:c0:34:3d:23:f9:e1: 40:79:08:1b:0b:43:68:53:3a:17:69:42:d1:c7:73:6f:e8:82: cc:f6:8d:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjQxMTIyMjIzNDE3WhcNMjQxMTI5MjIzNDE3WjAYMRYwFAYD VQQDEw02NzQxMDZlYS03MmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07M3/Q8RL0teOokSZYEncXIl4/KYWj6mnCWi7iK4q42n+XE1jD6qpiXhxCaP Nm6FhNLiK8aFB7RTx4+8Xnin8psuFHsynX/uaGdBnjY1nxIaYHnZ+tY/5gbpOOcg DvnSYCLg8JrvD2U/yvbDfDRxHbDyygTNTx5lwkmudSN3MPl+Ta/w5iwEq+gBiVjG 9ex2PJB2LyQxbFlnCtrmNFYkyj6JElbKurvtEaGp0kg+8kSlRchTMichDttf1yZB Ly+f0jY//Sx/jEd0HPZj8GOC6Aq9NX7dyRhPD9ZS9Gcr+f6AxiyJYYFed6cGOJWX kEYXw1KEAmeuJrk6ApysDlRiwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/skFzO q00wOYixbbMWrY5vyltCMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQLnT3NKJF1BX9dEh/DGDXhD5DoRgt9hNcuUE6gZjpBsCGknNUolNg x/x7qdyL7YyD7ilLTYv78F0K+E3JNdhGCXEl2YoVFemjVkLkcnl+3P/xyaVjmGKY ATMQp79vBSj9N5zJLLJjNlzhr2iDcVE5ViCVJCa3nDjB8nvMtseTXB8/8cQuKmTo 9qF0QkW2bgol0OkEGoI13XVOMnA5kSneEK2hlcaAcXr7nDuMHFuhrXXabo77DFOA CEF4GdsEH2V6p5Q4mMMnPXxmbTQzlrYQBecJ2qRAfSak/bgq/H0IfvSRvRrAND0j +eFAeQgbC0NoUzoXaULRx3Nv6ILM9o0T -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:26 2024 by rpki-client on console-fra.rpki-client.org