$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: J/TOC2zTl+6GcIfLEqPPVbfiAppaPk7VdcnMYNjaJVg= Subject key identifier: 84:3F:44:BA:C4:FD:8F:73:E8:66:F1:7C:44:D2:FC:21:62:18:98:DC Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 17DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 17D3 Signing time: Fri 22 Nov 2024 16:33:24 +0000 Manifest this update: Fri 22 Nov 2024 16:33:24 +0000 Manifest next update: Fri 29 Nov 2024 16:33:24 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: C7ERCdePwJWEHLnWFHDIxsFoH6FoCy11TxKL77uFVYE=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6110 (0x17de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Nov 22 16:33:24 2024 GMT Not After : Nov 29 16:33:24 2024 GMT Subject: CN=6740b254-4be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:86:64:34:93:af:7b:2c:a4:b1:5c:f0:de: 24:48:da:52:f6:fc:2a:61:bb:0a:38:a3:02:68:4a: 6d:d4:67:7a:9f:97:34:a1:1e:66:d6:e0:fd:09:21: d3:2b:a1:e0:ea:d9:90:2f:da:be:e8:4e:c2:53:9e: e3:42:ca:03:51:84:14:dc:6e:12:9a:c6:30:4f:28: 8b:21:8d:f3:51:63:43:86:69:62:cf:f5:eb:28:a9: 72:2c:4c:21:ba:03:b3:52:39:26:43:b5:0c:25:95: 3c:18:2b:92:91:82:71:ed:1b:12:a9:3c:94:9e:9a: 32:f7:5d:8d:0e:e6:cd:e5:5f:f0:1a:5c:a4:94:56: 10:d7:35:c1:bd:93:b1:96:d7:6d:62:ff:8d:11:86: 7f:18:43:58:77:96:05:51:dd:d0:1f:c1:c8:40:a3: f6:ff:9e:6e:ca:d4:70:22:db:46:c9:15:1c:0f:e6: 27:ee:16:1a:70:87:f8:ab:98:36:14:15:91:58:f6: bd:77:d6:b2:94:8c:c3:51:f4:e7:ea:f6:06:f8:26: c4:f8:16:97:95:c6:36:49:78:31:44:17:e5:70:99: 99:b9:79:74:9d:ff:19:38:10:ed:c3:51:0e:6c:77: f0:44:06:d5:df:d6:69:f6:a8:c8:45:58:45:6e:85: 9f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3F:44:BA:C4:FD:8F:73:E8:66:F1:7C:44:D2:FC:21:62:18:98:DC X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:98:41:b8:2b:4c:d1:5f:32:93:3a:e8:15:56:07:6c:d8:35: 44:cb:4a:f9:18:70:dc:33:8a:18:ca:93:77:ec:d5:23:d2:71: 58:77:cf:63:4a:53:fc:77:06:d5:b8:7f:62:6c:2a:a6:1b:1b: 36:c5:d7:cf:b7:94:cc:0c:84:d8:3d:2d:a3:3a:65:a9:58:1d: 33:df:79:36:de:48:d8:bd:7f:0a:49:5d:a9:06:d2:c1:e5:02: 73:31:56:0d:9d:73:6f:e9:3a:de:ea:85:ce:1d:00:d4:46:07: 79:68:3d:05:9b:b1:ee:bc:8f:c3:17:14:5d:cf:51:54:b9:aa: 63:ff:ce:1f:87:56:2f:a5:23:03:65:f2:c2:cd:e4:9b:4a:df: e1:21:13:43:06:a3:9a:d3:10:ca:20:9e:39:46:72:28:16:e5: c3:af:a9:59:8d:31:7e:21:13:8b:73:a3:51:26:70:d6:36:c9: 6c:2d:5b:77:aa:f3:95:f5:70:93:f0:1e:1d:a8:d5:28:98:ff: 8d:c8:fe:29:ff:64:37:02:bb:78:ff:3f:76:14:84:76:c5:59: 0a:78:b8:8a:c5:68:fe:ac:2b:36:bc:41:10:89:61:06:7d:0f: 4e:6b:e3:e8:ca:87:50:12:cb:4d:51:be:7f:54:fa:90:66:ca: 6d:fd:86:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjQxMTIyMTYzMzI0WhcNMjQxMTI5MTYzMzI0WjAYMRYwFAYD VQQDEw02NzQwYjI1NC00YmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaWGZDSTr3sspLFc8N4kSNpS9vwqYbsKOKMCaEpt1Gd6n5c0oR5m1uD9CSHT K6Hg6tmQL9q+6E7CU57jQsoDUYQU3G4SmsYwTyiLIY3zUWNDhmliz/XrKKlyLEwh ugOzUjkmQ7UMJZU8GCuSkYJx7RsSqTyUnpoy912NDubN5V/wGlyklFYQ1zXBvZOx ltdtYv+NEYZ/GENYd5YFUd3QH8HIQKP2/55uytRwIttGyRUcD+Yn7hYacIf4q5g2 FBWRWPa9d9aylIzDUfTn6vYG+CbE+BaXlcY2SXgxRBflcJmZuXl0nf8ZOBDtw1EO bHfwRAbV39Zp9qjIRVhFboWfRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQ/RLrE /Y9z6GbxfETS/CFiGJjcMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFmEG4K0zRXzKTOugVVgds2DVEy0r5GHDcM4oYypN37NUj0nFYd89j SlP8dwbVuH9ibCqmGxs2xdfPt5TMDITYPS2jOmWpWB0z33k23kjYvX8KSV2pBtLB 5QJzMVYNnXNv6Tre6oXOHQDURgd5aD0Fm7HuvI/DFxRdz1FUuapj/84fh1YvpSMD ZfLCzeSbSt/hIRNDBqOa0xDKIJ45RnIoFuXDr6lZjTF+IROLc6NRJnDWNslsLVt3 qvOV9XCT8B4dqNUomP+NyP4p/2Q3Art4/z92FIR2xVkKeLiKxWj+rCs2vEEQiWEG fQ9Oa+PoyodQEstNUb5/VPqQZspt/YY5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org