$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: t7zOhX6dNiMtnvG6ov+vORlREYLq5uR3kX5OgspmI7w= Subject key identifier: 27:DF:BD:E7:D1:8E:21:3A:61:CD:BD:A5:EC:87:3A:CD:D2:2F:9B:3B Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 9C Signing time: Thu 21 Nov 2024 04:32:54 +0000 Manifest this update: Thu 21 Nov 2024 04:32:54 +0000 Manifest next update: Thu 28 Nov 2024 04:32:54 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: AfTbeRAGBGUK3JKvCMSF3YmL9igOOWRR/bnnFnPVA4s=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: upnb9pWZD0/MwjWD3rqKlqLTBkCEQHcxZN7CAtlC5Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Nov 21 04:32:54 2024 GMT Not After : Nov 28 04:32:54 2024 GMT Subject: CN=673eb7f6-0b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7b:3d:4b:13:4a:94:b7:0f:85:93:36:10:d1: e1:66:18:06:0a:b3:b9:b3:fb:db:1d:ed:eb:42:76: 93:fa:cf:6f:8e:88:3a:95:a5:50:ba:e3:26:4a:bd: 83:7d:2c:26:53:39:f5:03:b0:2e:31:a4:8d:ec:75: e8:6c:c9:c1:86:b5:bd:89:fd:d6:3a:a5:b0:aa:74: e0:e5:51:7b:4c:d8:7d:1a:52:cb:2b:a0:d8:a8:87: 04:a1:a0:28:4f:ab:05:ee:b7:4b:6f:30:34:53:9d: 82:3f:a7:24:7f:1b:dd:0e:1c:d9:e6:5e:a7:bc:29: 56:f4:49:e1:7d:43:0c:b0:03:c7:cd:1c:04:65:92: 9f:91:95:56:d6:ed:f9:13:3c:a9:6a:c2:97:7e:3e: cf:c6:f9:71:d2:4a:b4:cd:9c:7c:52:2f:22:fa:6a: d1:4f:45:08:a4:c0:c8:cf:38:a9:85:06:da:84:e9: c6:14:3a:49:e5:19:19:08:9b:0a:27:e5:1a:8e:f0: ab:e6:44:c7:67:e5:99:be:99:d0:8d:d7:00:42:19: 3c:88:86:a7:61:56:1a:05:3c:a9:e1:21:4d:dc:ac: a4:f5:36:0f:d3:71:ec:16:af:0c:1e:2b:d6:03:af: 09:e4:09:76:9b:95:2a:15:f7:64:f7:2c:c7:e5:3f: 93:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DF:BD:E7:D1:8E:21:3A:61:CD:BD:A5:EC:87:3A:CD:D2:2F:9B:3B X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:b2:6f:05:74:ee:b0:4a:8d:56:af:e2:96:30:ea:46:bd:09: 1a:e1:9d:97:6c:2d:2e:47:fb:01:1f:5d:48:05:0d:20:bd:92: 4e:ad:33:db:ad:84:e3:86:89:e9:0a:78:4a:7e:84:a1:e1:93: 31:00:fc:bf:61:76:84:09:58:36:4c:c4:bc:1e:c3:bc:bd:4f: 20:b6:99:81:1c:c9:d8:99:13:ab:a8:63:65:0c:d0:57:b5:ba: 24:5f:98:01:12:5b:d1:8f:f9:16:c7:fe:8b:88:a3:e7:18:93: f5:90:ae:7a:90:31:24:a0:7a:a0:4a:6a:61:ac:61:3f:ff:a4: f5:de:e7:c2:4b:d8:a6:0b:85:08:dc:12:51:d9:a1:81:79:9e: 12:ff:48:b6:27:93:13:2a:bf:54:6e:8f:9b:c9:66:76:42:72: 4b:0e:85:0b:d0:67:72:2d:20:94:c4:b5:2f:e4:f5:ba:3a:e0: 61:e2:f0:4c:8e:fd:e8:f8:7e:4a:73:67:77:2f:6c:bb:a8:89: bf:23:4c:f3:36:c5:9f:e8:ed:27:35:1b:64:e0:3f:1c:3f:1f: c4:90:9e:6f:be:e0:ff:95:da:c7:75:d9:fd:79:58:c5:f1:e3: df:66:c7:5b:90:86:8d:40:b5:e5:70:98:56:90:6b:a5:26:15: 59:3f:29:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjQxMTIxMDQzMjU0WhcNMjQxMTI4MDQzMjU0WjAYMRYwFAYD VQQDEw02NzNlYjdmNi0wYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3s9SxNKlLcPhZM2ENHhZhgGCrO5s/vbHe3rQnaT+s9vjog6laVQuuMmSr2D fSwmUzn1A7AuMaSN7HXobMnBhrW9if3WOqWwqnTg5VF7TNh9GlLLK6DYqIcEoaAo T6sF7rdLbzA0U52CP6ckfxvdDhzZ5l6nvClW9EnhfUMMsAPHzRwEZZKfkZVW1u35 EzypasKXfj7Pxvlx0kq0zZx8Ui8i+mrRT0UIpMDIzziphQbahOnGFDpJ5RkZCJsK J+UajvCr5kTHZ+WZvpnQjdcAQhk8iIanYVYaBTyp4SFN3Kyk9TYP03HsFq8MHivW A68J5Al2m5UqFfdk9yzH5T+T8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCffvefR jiE6Yc29peyHOs3SL5s7MB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZsm8FdO6wSo1Wr+KWMOpGvQka4Z2XbC0uR/sBH11IBQ0gvZJOrTPb rYTjhonpCnhKfoSh4ZMxAPy/YXaECVg2TMS8HsO8vU8gtpmBHMnYmROrqGNlDNBX tbokX5gBElvRj/kWx/6LiKPnGJP1kK56kDEkoHqgSmphrGE//6T13ufCS9imC4UI 3BJR2aGBeZ4S/0i2J5MTKr9Ubo+byWZ2QnJLDoUL0GdyLSCUxLUv5PW6OuBh4vBM jv3o+H5Kc2d3L2y7qIm/I0zzNsWf6O0nNRtk4D8cPx/EkJ5vvuD/ldrHddn9eVjF 8ePfZsdbkIaNQLXlcJhWkGulJhVZPykV -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org