$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft File: cqUfTuqiGLczbu_3p6WMsa5UQjk.mft (raw, json) Hash identifier: gs6P9ZyVUHfnTt1HiITbYrAQB4+40E/jmFJ1Fh57eMs= Subject key identifier: 50:30:C1:F5:B0:3B:B0:0A:CA:2D:63:FA:B2:B6:74:09:00:50:D0:7B Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft Manifest number: 0729 Signing time: Fri 22 Nov 2024 21:30:08 +0000 Manifest this update: Fri 22 Nov 2024 21:30:08 +0000 Manifest next update: Fri 29 Nov 2024 21:30:08 +0000 Files and hashes: 1: cqUfTuqiGLczbu_3p6WMsa5UQjk.crl (hash: AhL0hrcOzT6hJkOjDTJ3HCXKF6eiR9JmuTirTgnF/jg=) 2: DAAB94840EC911EBA913852BC4F9AE02.roa (hash: Ra2znUTkgYIAlMI3Nb4TxH0Q0Xt60h4LRpNWU6qPbaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: Nov 22 21:30:08 2024 GMT Not After : Nov 29 21:30:08 2024 GMT Subject: CN=6740f7e0-c380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0f:83:0b:21:16:d6:b5:87:3f:7b:95:13:bb: 05:76:6f:67:d7:94:c7:e5:79:40:71:ab:d2:12:f6: f7:d3:26:e0:36:d8:62:62:96:b8:28:72:f6:93:04: 31:5c:a3:a4:8e:15:7a:33:0a:36:e9:99:86:d9:2a: 23:1b:fd:d0:ab:d0:6b:8d:c9:e5:09:26:cb:0c:5e: 54:91:5a:67:38:5c:8d:a6:fa:fb:90:5a:50:c3:9c: 35:a6:19:25:6a:09:e4:5c:f4:7b:dc:c5:58:b9:a3: a4:80:26:e9:72:08:7d:24:c6:89:52:81:ee:32:77: 73:55:54:9f:65:aa:b7:cc:13:52:cd:2b:36:d0:1a: 9a:49:4a:db:d1:b9:de:01:eb:64:ff:22:e5:91:37: b2:d3:5e:d6:fa:21:a7:e2:97:8a:2c:28:b5:30:0b: 2d:a9:10:d2:df:84:71:8f:56:14:14:de:fa:93:fa: a2:d6:c6:01:59:76:a5:0b:95:5c:fe:77:42:f4:30: 9e:45:a1:d7:f6:3e:f7:ca:dd:69:98:9f:b2:a0:2e: 7d:8b:2c:6a:ba:05:2c:24:bb:b5:aa:9c:37:c3:68: cf:20:94:74:be:d8:48:16:aa:9b:c4:95:12:fb:95: 5e:fe:c6:bf:cc:ab:9a:39:4a:fd:32:8b:9b:dc:3c: 6a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:30:C1:F5:B0:3B:B0:0A:CA:2D:63:FA:B2:B6:74:09:00:50:D0:7B X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:17:04:f3:e7:bb:b1:ca:b8:6a:c0:7d:c5:f9:28:45:1f:15: 3a:fe:1c:a4:9b:aa:1e:d2:33:d4:71:84:0f:89:94:87:3f:6b: ff:e0:6d:c3:f6:4e:78:f4:5c:52:db:4b:b9:3b:c6:6d:2a:57: 34:b0:fa:5c:f5:04:9c:d9:73:78:a9:25:dd:a3:d2:f4:43:0d: 1d:60:74:10:de:87:99:a6:be:a4:ca:86:2f:17:3e:44:59:9c: 4d:fe:6e:6d:8a:33:15:0e:37:fe:8c:21:72:10:58:0d:75:a3: c3:a3:ad:34:e9:00:a7:82:5a:f3:02:9d:5d:d6:b5:fa:cc:97: f6:2d:54:46:af:0e:48:7d:2f:9b:81:76:2e:d0:52:3e:79:cc: 7a:4d:71:ce:eb:72:24:04:1a:b3:83:9d:cd:99:cb:55:07:b7: f9:a6:eb:36:f9:50:3e:7f:98:1d:3a:f7:0f:13:a3:42:e2:b4: ea:35:d3:ee:6b:b1:45:4d:ea:ec:90:00:d9:7c:82:5e:f4:f0: af:8e:4a:4e:66:b7:e6:2a:9b:0a:3a:1a:b0:4a:96:7e:0b:e5: 6f:e3:2c:00:d1:fc:18:af:dc:be:18:32:a3:97:2d:63:a5:58: c3:40:69:ab:d7:48:bb:2f:85:bd:df:51:8c:36:f2:6f:49:db: 92:d5:a8:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjQxMTIyMjEzMDA4WhcNMjQxMTI5MjEzMDA4WjAYMRYwFAYD VQQDEw02NzQwZjdlMC1jMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow+DCyEW1rWHP3uVE7sFdm9n15TH5XlAcavSEvb30ybgNthiYpa4KHL2kwQx XKOkjhV6Mwo26ZmG2SojG/3Qq9BrjcnlCSbLDF5UkVpnOFyNpvr7kFpQw5w1phkl agnkXPR73MVYuaOkgCbpcgh9JMaJUoHuMndzVVSfZaq3zBNSzSs20BqaSUrb0bne Aetk/yLlkTey017W+iGn4peKLCi1MAstqRDS34Rxj1YUFN76k/qi1sYBWXalC5Vc /ndC9DCeRaHX9j73yt1pmJ+yoC59iyxqugUsJLu1qpw3w2jPIJR0vthIFqqbxJUS +5Ve/sa/zKuaOUr9Moub3Dxq/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAwwfWw O7AKyi1j+rK2dAkAUNB7MB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDEyMS84QjBGOEIwQzBFQzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdM Y3pidV8zcDZXTXNhNVVRamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhFwTz57uxyrhqwH3F+ShFHxU6/hykm6oe0jPUcYQPiZSHP2v/4G3D 9k549FxS20u5O8ZtKlc0sPpc9QSc2XN4qSXdo9L0Qw0dYHQQ3oeZpr6kyoYvFz5E WZxN/m5tijMVDjf+jCFyEFgNdaPDo6006QCnglrzAp1d1rX6zJf2LVRGrw5IfS+b gXYu0FI+ecx6TXHO63IkBBqzg53NmctVB7f5pus2+VA+f5gdOvcPE6NC4rTqNdPu a7FFTerskADZfIJe9PCvjkpOZrfmKpsKOhqwSpZ+C+Vv4ywA0fwYr9y+GDKjly1j pVjDQGmr10i7L4W931GMNvJvSduS1agA -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org