$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: PtnC947Q/V7sWDJrn3i7KKYXvG1FfcxNNQLEJr8zF2w= Subject key identifier: F1:4B:49:D2:37:C4:4B:93:7E:DD:31:95:F3:80:A0:11:EA:CB:EE:93 Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 16D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 16CA Signing time: Fri 22 Nov 2024 16:39:37 +0000 Manifest this update: Fri 22 Nov 2024 16:39:36 +0000 Manifest next update: Fri 29 Nov 2024 16:39:36 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: 9PwC0ajcd3Cop/44WHRmWGh9SHxkhYsQidp3Jv0JW+o=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: Ooak6D5iQ2fJ6FZTf7sU2wRFg0kTNy2Wu4Ysho3zOO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5843 (0x16d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Nov 22 16:39:36 2024 GMT Not After : Nov 29 16:39:36 2024 GMT Subject: CN=6740b3c9-d669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:81:87:02:1f:f6:a1:97:35:55:e7:da:7d: f0:ef:d1:02:03:76:8e:bd:94:06:3e:21:67:30:56: cc:04:65:54:26:e5:59:24:a4:27:54:69:6e:81:f3: ad:02:1f:ad:5c:5c:94:50:42:83:1d:dd:a3:fc:60: 5c:ce:a9:ac:26:8e:4b:7e:5b:c8:f7:67:9d:9c:5f: d9:cc:f6:d8:b6:60:8e:0b:b5:db:b5:e9:f3:f0:17: ef:04:52:21:6b:c7:7f:2d:a0:13:39:ab:16:8b:1e: 01:f9:23:fa:ed:f5:70:48:ec:70:78:f3:e8:90:57: 8d:81:77:10:f5:25:5d:25:96:05:b4:21:b4:50:e7: a2:56:e1:e1:fc:b7:01:0e:2c:ef:8e:34:09:a0:b9: e0:35:e9:31:cf:f2:79:ee:ed:23:7a:88:56:97:e6: c3:3d:f2:13:0e:c7:c7:c9:ed:42:a9:d0:94:ea:3b: 64:57:cb:4c:6e:e6:b0:59:76:9d:d6:be:e9:06:e2: 5c:9e:9e:5a:99:ad:c7:34:33:bf:9c:10:9e:8f:48: 06:fe:06:45:de:bb:dd:9f:b7:53:5c:d4:dd:83:16: e4:00:70:d4:86:19:d1:26:2b:65:2f:57:cc:be:ec: 4d:91:0f:3f:ef:eb:c2:54:2c:69:fa:6e:ff:ba:2a: c9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4B:49:D2:37:C4:4B:93:7E:DD:31:95:F3:80:A0:11:EA:CB:EE:93 X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:f5:71:6d:f7:2e:66:cf:13:6c:e2:bb:9a:42:d5:02:de:98: cd:11:ca:1c:f4:e9:4c:df:70:46:9a:0b:ab:ed:39:b0:a0:7a: 42:0b:b3:d2:54:2c:5e:a2:d9:26:19:18:a3:00:2c:53:f6:d7: 6b:1d:f3:3c:a9:fc:58:fd:32:b9:9a:a4:aa:73:ad:59:ae:f9: 26:ff:38:29:1a:a2:8f:0d:e5:7f:bd:12:a6:32:b5:a3:d3:eb: 24:1c:1e:78:2c:55:ce:42:9b:d0:ac:a2:8c:78:12:ec:68:5d: 9b:48:46:d8:27:d7:a3:01:70:3b:1c:23:7c:73:09:ec:44:1b: 26:93:42:f0:79:2d:c5:12:d5:a6:5d:fe:42:80:d1:91:1e:83: a6:ce:da:6f:e3:38:48:29:de:f1:7e:6a:74:42:3d:06:90:06: eb:19:94:6d:0e:31:ca:a6:83:fa:e1:ad:6e:f3:26:de:c3:53: 7e:22:cc:32:ce:78:aa:65:fd:7a:d3:d0:86:41:80:29:69:d4: 9f:60:52:0f:b4:d0:2c:61:cf:2b:41:25:f2:d7:48:e5:67:3f: 8e:88:91:95:59:28:56:44:9a:1d:ca:73:b9:e0:95:7f:04:5f: 28:4a:2e:b2:07:ea:1a:c3:68:cc:c8:ce:4e:fe:01:37:90:c0: 17:d0:56:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjQxMTIyMTYzOTM2WhcNMjQxMTI5MTYzOTM2WjAYMRYwFAYD VQQDEw02NzQwYjNjOS1kNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXWBhwIf9qGXNVXn2n3w79ECA3aOvZQGPiFnMFbMBGVUJuVZJKQnVGlugfOt Ah+tXFyUUEKDHd2j/GBczqmsJo5LflvI92ednF/ZzPbYtmCOC7Xbtenz8BfvBFIh a8d/LaATOasWix4B+SP67fVwSOxwePPokFeNgXcQ9SVdJZYFtCG0UOeiVuHh/LcB DizvjjQJoLngNekxz/J57u0jeohWl+bDPfITDsfHye1CqdCU6jtkV8tMbuawWXad 1r7pBuJcnp5ama3HNDO/nBCej0gG/gZF3rvdn7dTXNTdgxbkAHDUhhnRJitlL1fM vuxNkQ8/7+vCVCxp+m7/uirJMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFLSdI3 xEuTft0xlfOAoBHqy+6TMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC49XFt9y5mzxNs4ruaQtUC3pjNEcoc9OlM33BGmgur7TmwoHpCC7PS VCxeotkmGRijACxT9tdrHfM8qfxY/TK5mqSqc61Zrvkm/zgpGqKPDeV/vRKmMrWj 0+skHB54LFXOQpvQrKKMeBLsaF2bSEbYJ9ejAXA7HCN8cwnsRBsmk0LweS3FEtWm Xf5CgNGRHoOmztpv4zhIKd7xfmp0Qj0GkAbrGZRtDjHKpoP64a1u8ybew1N+Iswy zniqZf1609CGQYApadSfYFIPtNAsYc8rQSXy10jlZz+OiJGVWShWRJodynO54JV/ BF8oSi6yB+oaw2jMyM5O/gE3kMAX0Fa6 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org