$ rpki-client -vvf rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.mft File: qCS2Y_P1o0-C7iJyqK795Dt5vZM.mft (raw, json) Hash identifier: eLJnBoKQH1vLSO+qo5+9ABdHZkOxIIMsBRe+qRU7xPk= Subject key identifier: FF:96:04:77:BE:E4:35:DF:2C:1E:D6:8A:05:E9:9F:AD:08:17:76:D8 Authority key identifier: A8:24:B6:63:F3:F5:A3:4F:82:EE:22:72:A8:AE:FD:E4:3B:79:BD:93 Certificate issuer: /CN=A91953AF/serialNumber=A824B663F3F5A34F82EE2272A8AEFDE43B79BD93 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qCS2Y_P1o0-C7iJyqK795Dt5vZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.mft Manifest number: 91 Signing time: Sat 23 Nov 2024 04:29:21 +0000 Manifest this update: Sat 23 Nov 2024 04:29:21 +0000 Manifest next update: Sat 30 Nov 2024 04:29:21 +0000 Files and hashes: 1: qCS2Y_P1o0-C7iJyqK795Dt5vZM.crl (hash: lw2Tm0A2jHeaoGppUarhPCjyDq+GSo8ajiaciNmqG4w=) 2: 593AFF1ACA0611EEBA01A22CC4F9AE02.roa (hash: OJ4fpN3cmDk3uuK8aUmty/8y+YQxN8L4Ij0QimxgngE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.crl rsync://rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qCS2Y_P1o0-C7iJyqK795Dt5vZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91953AF/serialNumber=A824B663F3F5A34F82EE2272A8AEFDE43B79BD93 Validity Not Before: Nov 23 04:29:21 2024 GMT Not After : Nov 30 04:29:21 2024 GMT Subject: CN=67415a21-b010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:23:d9:76:32:f1:6e:81:f3:39:96:4e:c6: 77:98:83:58:88:43:ba:1b:47:ee:3d:be:ec:e3:97: d0:30:91:c8:6b:b2:f7:fa:9c:8f:e9:c8:3e:ac:80: c8:49:bf:6f:67:5f:56:fa:a3:2d:79:29:16:70:ce: 93:46:6a:6d:a0:1c:11:47:94:c6:9a:7a:ca:8b:51: 5a:3d:4e:ec:2c:81:15:cc:06:4b:96:92:1d:43:4d: a9:31:18:aa:be:37:6b:4a:94:81:5b:4c:00:43:2c: 92:18:fd:29:1d:97:aa:04:1f:ba:ff:8b:8f:47:94: 9e:36:fb:a6:39:1d:7d:37:4c:0b:d3:f3:af:00:54: b2:83:26:55:84:45:bf:c3:8d:1c:e9:2f:88:d9:44: df:e3:e1:df:2b:e7:8b:0c:95:58:58:9e:c4:c3:e4: 1b:25:72:f7:ff:fa:ee:ab:fc:d9:bc:9d:29:a1:88: 1b:05:1f:64:36:b5:ff:28:e5:7f:1f:88:04:9a:ee: d0:5a:2a:b4:70:01:16:99:4b:ad:99:2a:c6:9a:20: 2b:ef:2e:e2:64:b9:60:a9:b0:24:1c:69:ed:84:cf: 14:5f:1b:81:01:a9:a3:dc:c0:9e:f4:c3:b6:0a:ee: 0c:65:12:91:54:1b:8e:d5:66:9a:9c:96:3b:7e:9b: a4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:96:04:77:BE:E4:35:DF:2C:1E:D6:8A:05:E9:9F:AD:08:17:76:D8 X509v3 Authority Key Identifier: keyid:A8:24:B6:63:F3:F5:A3:4F:82:EE:22:72:A8:AE:FD:E4:3B:79:BD:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qCS2Y_P1o0-C7iJyqK795Dt5vZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91953AF/043160B0CA0411EEBCD01770C4F9AE02/qCS2Y_P1o0-C7iJyqK795Dt5vZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:85:70:97:bf:d4:90:db:cf:a5:bd:49:1b:d9:f8:f5:08:36: 31:fb:81:f6:8e:43:36:de:15:66:0e:3b:c3:47:f0:58:f9:0b: dd:7b:67:78:b3:e8:c3:93:f6:16:3a:77:81:95:07:2a:63:da: 98:ae:a3:e9:54:ea:82:7e:99:6d:a0:2f:35:c0:52:7b:1f:7a: a8:d3:74:c9:c8:34:bf:6d:38:e3:9e:35:e1:e6:53:e0:f3:3e: 44:38:54:43:dd:24:bf:9d:97:ee:a9:2a:1e:fc:3e:6e:85:46: 45:06:44:39:f5:24:20:7e:20:8e:66:85:c7:1e:47:8d:04:5d: 9b:2b:52:cc:9d:16:c0:e3:5d:e7:96:7f:51:ed:cb:93:d4:46: 52:b5:e7:5b:d5:5a:d4:f3:88:cc:61:5f:37:65:b1:83:a6:89: f2:49:9f:02:e3:1b:dd:16:13:74:0c:71:6b:13:c2:6b:43:2a: f1:6a:06:6c:17:99:1d:6e:6e:0f:ff:a0:87:3c:20:14:7b:f9: 5a:5f:81:a3:59:5a:39:32:d1:8a:d6:6e:9b:79:36:74:fb:87: df:05:07:66:0e:5d:b9:3e:09:8a:bf:ef:cb:43:a9:7b:5b:51: 38:39:26:f3:e5:43:66:58:dd:32:57:02:31:5c:ac:5c:19:e0: 1c:f2:77:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzQUYxMTAvBgNVBAUTKEE4MjRCNjYzRjNGNUEzNEY4MkVFMjI3MkE4QUVGREU0 M0I3OUJEOTMwHhcNMjQxMTIzMDQyOTIxWhcNMjQxMTMwMDQyOTIxWjAYMRYwFAYD VQQDEw02NzQxNWEyMS1iMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSoj2XYy8W6B8zmWTsZ3mINYiEO6G0fuPb7s45fQMJHIa7L3+pyP6cg+rIDI Sb9vZ19W+qMteSkWcM6TRmptoBwRR5TGmnrKi1FaPU7sLIEVzAZLlpIdQ02pMRiq vjdrSpSBW0wAQyySGP0pHZeqBB+6/4uPR5SeNvumOR19N0wL0/OvAFSygyZVhEW/ w40c6S+I2UTf4+HfK+eLDJVYWJ7Ew+QbJXL3//ruq/zZvJ0poYgbBR9kNrX/KOV/ H4gEmu7QWiq0cAEWmUutmSrGmiAr7y7iZLlgqbAkHGnthM8UXxuBAamj3MCe9MO2 Cu4MZRKRVBuO1WaanJY7fpukKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+WBHe+ 5DXfLB7WigXpn60IF3bYMB8GA1UdIwQYMBaAFKgktmPz9aNPgu4icqiu/eQ7eb2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTNBRi8wNDMxNjBCMENB MDQxMUVFQkNEMDE3NzBDNEY5QUUwMi9xQ1MyWV9QMW8wLUM3aUp5cUs3OTVEdDV2 Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FDUzJZX1AxbzAtQzdpSnlxSzc5NUR0NXZaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTNBRi8wNDMxNjBCMENBMDQxMUVFQkNEMDE3NzBDNEY5QUUwMi9xQ1MyWV9QMW8w LUM3aUp5cUs3OTVEdDV2Wk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClhXCXv9SQ28+lvUkb2fj1CDYx+4H2jkM23hVmDjvDR/BY+Qvde2d4 s+jDk/YWOneBlQcqY9qYrqPpVOqCfpltoC81wFJ7H3qo03TJyDS/bTjjnjXh5lPg 8z5EOFRD3SS/nZfuqSoe/D5uhUZFBkQ59SQgfiCOZoXHHkeNBF2bK1LMnRbA413n ln9R7cuT1EZStedb1VrU84jMYV83ZbGDponySZ8C4xvdFhN0DHFrE8JrQyrxagZs F5kdbm4P/6CHPCAUe/laX4GjWVo5MtGK1m6beTZ0+4ffBQdmDl25PgmKv+/LQ6l7 W1E4OSbz5UNmWN0yVwIxXKxcGeAc8ncZ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:15 2024 by rpki-client on console-ams.rpki-client.org