$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: NULIoS4iLLXhsjd3aE8DceRqRnXzk4pnn3F2wbGltGs= Subject key identifier: FF:04:82:E8:78:B0:B6:80:AB:9A:02:E3:C6:31:7E:1D:CD:12:2A:EB Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 03C5 Signing time: Sat 23 Nov 2024 00:15:15 +0000 Manifest this update: Sat 23 Nov 2024 00:15:14 +0000 Manifest next update: Sat 30 Nov 2024 00:15:14 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: ng+UDLkdL13CoArW/jdfHAdQaaFojHJ+7mZTRn9/nXc=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: gnbIBMqD5hJ7Vz9utbOPNutm0e/N5U3T0Xpff+xnLP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Nov 23 00:15:14 2024 GMT Not After : Nov 30 00:15:14 2024 GMT Subject: CN=67411e92-15e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:57:66:83:3b:75:df:cf:05:27:cf:1b:0f: ca:aa:bc:f2:d3:33:b8:91:40:d6:d6:39:c2:01:e0: e7:3c:7d:27:74:aa:13:13:d0:37:0c:ef:59:31:2f: 98:b9:31:d5:da:f2:8d:ce:f5:f6:10:08:34:3d:e5: 1a:12:95:ca:03:79:4b:16:2c:c7:81:3f:6b:c3:58: 97:e9:26:6b:37:ef:6a:64:7b:ec:19:fe:cd:29:6d: e6:b0:2f:41:4a:e2:dc:43:b3:40:e8:1b:11:b9:93: dc:f5:08:76:3f:32:10:d9:98:03:6d:96:5e:d9:b7: cb:70:c8:98:3c:64:1b:e1:d2:e4:9f:24:52:e8:ff: 78:1e:78:3e:c3:9e:04:2e:87:57:ed:7e:ec:4c:21: 0a:e9:f0:6a:27:87:86:e9:82:c5:1f:b2:40:79:ea: 48:0e:32:45:40:09:22:40:35:d2:e4:f0:53:22:f0: f3:67:35:c4:e8:3f:22:94:62:74:40:44:4e:13:43: af:d2:01:d4:00:3c:04:32:09:54:24:5a:71:de:18: ba:9d:fc:b1:26:21:2f:27:b7:7a:29:8f:0b:e6:ec: 36:ee:30:7a:7e:7e:66:16:f1:21:dd:2c:9b:ac:49: 66:df:22:59:81:9d:1f:2e:e6:f2:92:ca:88:79:a0: 2c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:04:82:E8:78:B0:B6:80:AB:9A:02:E3:C6:31:7E:1D:CD:12:2A:EB X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:dc:ec:86:e3:ce:36:50:7f:2a:94:dc:4b:e6:b6:2c:00:6e: b9:d8:c4:c4:dd:a8:30:58:7a:b7:04:ae:77:ff:4d:75:92:3b: 38:3d:5f:e7:78:12:36:4c:39:be:a4:60:f0:d5:56:14:bd:12: 8d:b8:90:ed:dc:11:e8:00:b1:34:83:a8:cf:2c:b4:49:8f:af: 5e:7f:bc:38:41:1a:b1:a7:72:bc:90:ea:de:02:37:fa:d5:85: af:ef:63:c2:1f:ce:a7:3b:20:f4:74:16:2e:86:c7:01:c4:c5: 5b:14:91:26:6c:2e:09:1b:bb:d0:81:4d:f6:de:c9:40:4c:1a: 7c:8b:6a:cf:b6:a7:f4:c1:b1:1f:1a:98:15:50:a3:09:99:43: 2a:bb:93:fd:1a:48:94:12:b2:6b:d1:bf:72:2b:51:4e:87:a0: 75:be:b7:7a:b2:10:54:40:14:50:e2:f0:c3:a8:dd:2d:b0:d5: f4:c2:e0:e1:3f:eb:16:aa:53:38:55:94:3d:ee:8b:31:7d:ef: 83:ce:6d:28:ff:3e:b5:7e:2a:f0:42:2c:50:b7:0c:55:ca:ba: 2c:c3:2e:24:17:24:75:11:c8:c4:53:a7:aa:ba:27:22:e2:de: f5:48:fa:b1:26:47:e0:67:db:85:be:93:46:fd:07:51:24:a0: 1f:a3:6a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjQxMTIzMDAxNTE0WhcNMjQxMTMwMDAxNTE0WjAYMRYwFAYD VQQDEw02NzQxMWU5Mi0xNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUtXZoM7dd/PBSfPGw/Kqrzy0zO4kUDW1jnCAeDnPH0ndKoTE9A3DO9ZMS+Y uTHV2vKNzvX2EAg0PeUaEpXKA3lLFizHgT9rw1iX6SZrN+9qZHvsGf7NKW3msC9B SuLcQ7NA6BsRuZPc9Qh2PzIQ2ZgDbZZe2bfLcMiYPGQb4dLknyRS6P94Hng+w54E LodX7X7sTCEK6fBqJ4eG6YLFH7JAeepIDjJFQAkiQDXS5PBTIvDzZzXE6D8ilGJ0 QEROE0Ov0gHUADwEMglUJFpx3hi6nfyxJiEvJ7d6KY8L5uw27jB6fn5mFvEh3Syb rElm3yJZgZ0fLubyksqIeaAs3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8Eguh4 sLaAq5oC48Yxfh3NEirrMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ3OyG4842UH8qlNxL5rYsAG652MTE3agwWHq3BK53/011kjs4PV/n eBI2TDm+pGDw1VYUvRKNuJDt3BHoALE0g6jPLLRJj69ef7w4QRqxp3K8kOreAjf6 1YWv72PCH86nOyD0dBYuhscBxMVbFJEmbC4JG7vQgU323slATBp8i2rPtqf0wbEf GpgVUKMJmUMqu5P9GkiUErJr0b9yK1FOh6B1vrd6shBUQBRQ4vDDqN0tsNX0wuDh P+sWqlM4VZQ97osxfe+Dzm0o/z61firwQixQtwxVyroswy4kFyR1EcjEU6equici 4t71SPqxJkfgZ9uFvpNG/QdRJKAfo2rm -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org