$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: zYm9LAjbb8YQiAaTjYBUDcZqa+dSi0DHVmcjOkMhdYc= Subject key identifier: 7B:E1:4A:97:F1:06:C7:42:B8:74:14:18:71:61:FF:2E:91:F4:D6:37 Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: 33 Signing time: Sat 23 Nov 2024 05:39:40 +0000 Manifest this update: Sat 23 Nov 2024 05:39:40 +0000 Manifest next update: Sat 30 Nov 2024 05:39:40 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: a877q/PcmjhjL0yAlxunAyiLuclQWboCBqPMndSzV7E=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: leXx7bxy8L09wkMSJ9uvzmOroNyOU5baBfHEIk5BxTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Nov 23 05:39:40 2024 GMT Not After : Nov 30 05:39:40 2024 GMT Subject: CN=67416a9c-b284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:3e:a8:c0:c7:d4:f9:9a:24:f5:c4:93:5d: 3e:c6:f7:17:5b:3b:53:4d:d0:77:32:5f:2c:48:61: 36:76:34:ed:50:00:65:b8:66:c9:e4:7f:c2:a9:08: 17:14:bd:1c:97:56:40:5c:3e:14:95:d9:21:39:c0: 4d:f2:4a:b0:7c:8c:59:b6:de:67:b7:5d:92:f2:51: 82:30:5f:66:11:03:a5:02:53:9c:bf:97:46:80:44: 28:11:27:a7:57:da:bd:88:12:06:c6:37:d2:9e:fd: 74:15:28:90:71:77:22:a9:30:70:9c:10:8a:ef:85: d7:9b:e3:9e:2e:7c:87:d9:19:e6:8a:51:30:ba:16: 22:31:b7:b8:24:27:86:86:7a:54:b9:4b:87:9e:02: 52:17:ed:e7:6d:f5:c2:20:5c:d8:c2:57:73:cc:28: f7:fb:be:0a:c6:2b:a3:13:a0:8a:d5:b2:cc:6f:9c: e4:83:7c:ec:20:45:d6:c9:d0:f8:0c:e1:47:4c:ac: ad:e7:03:bc:9d:d9:01:cd:e1:5a:bd:6f:7b:92:78: 74:54:04:a5:b2:13:29:37:21:c0:62:4c:60:44:4b: fb:b7:70:b1:29:3c:6a:e2:25:28:9a:f1:24:9c:21: e9:5c:62:21:16:60:05:e1:b7:3e:30:f2:c6:87:32: 15:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E1:4A:97:F1:06:C7:42:B8:74:14:18:71:61:FF:2E:91:F4:D6:37 X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e8:29:d6:b0:a5:67:f6:90:3b:1f:5c:76:24:d0:5c:17:94: d5:14:a2:48:ae:88:b5:de:b1:fc:ac:fb:ef:5e:9e:7d:81:36: 94:da:f2:ed:39:da:f4:f4:ee:95:ec:f6:8c:37:ca:7b:10:fb: 0e:e4:ad:8b:e4:6e:49:52:d2:48:c9:69:49:18:ba:01:81:6f: be:8f:70:56:b5:0c:ae:ce:e3:08:30:c0:87:9b:4c:76:6b:3f: f8:fc:62:c0:ce:f1:8a:df:58:b7:ad:8d:61:99:9f:98:48:4d: e5:f9:df:1d:33:37:57:16:34:6d:c0:75:e9:37:e3:3a:3b:5c: 39:53:1b:39:9d:63:c0:64:a5:78:75:26:31:c4:e0:7a:15:ae: 7e:eb:ec:c0:52:8e:42:fb:18:cf:82:78:1f:fe:f2:06:91:fd: a1:4b:e1:86:05:1d:79:b1:7b:03:34:2f:a3:71:26:bf:62:5d: 9a:93:ac:bf:50:f0:5e:3e:b6:62:4b:f4:ea:ec:d2:59:43:be: 53:13:3a:d5:7e:c2:ce:56:c9:07:8b:29:e5:fe:df:fc:e0:91: 47:9c:f2:77:e3:6c:4c:c9:4f:19:52:1e:8a:0e:a3:5f:22:90: 85:e9:a6:e2:63:8c:4b:58:e9:0a:d7:4a:8c:00:3a:f8:67:7e: 5e:94:c1:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTk2QTExMC8GA1UEBRMoMENERDUwNTgzMkVBOEM5QTREMjNCMTA2MzcyMDFENzk0 Mjk1NjRDMDAeFw0yNDExMjMwNTM5NDBaFw0yNDExMzAwNTM5NDBaMBgxFjAUBgNV BAMTDTY3NDE2YTljLWIyODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJcD6owMfU+Zok9cSTXT7G9xdbO1NN0HcyXyxIYTZ2NO1QAGW4Zsnkf8KpCBcU vRyXVkBcPhSV2SE5wE3ySrB8jFm23me3XZLyUYIwX2YRA6UCU5y/l0aARCgRJ6dX 2r2IEgbGN9Ke/XQVKJBxdyKpMHCcEIrvhdeb454ufIfZGeaKUTC6FiIxt7gkJ4aG elS5S4eeAlIX7edt9cIgXNjCV3PMKPf7vgrGK6MToIrVssxvnOSDfOwgRdbJ0PgM 4UdMrK3nA7yd2QHN4Vq9b3uSeHRUBKWyEyk3IcBiTGBES/u3cLEpPGriJSia8SSc IelcYiEWYAXhtz4w8saHMhW7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe+FKl/EG x0K4dBQYcWH/LpH01jcwHwYDVR0jBBgwFoAUDN1QWDLqjJpNI7EGNyAdeUKVZMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBOTZBL0Q0QzE2ODgyNkE2 RTExRUY4NEY5OEUzNUM0RjlBRTAyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE4xUVdETHFqSnBOSTdFR055QWRlVUtWWk1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB OTZBL0Q0QzE2ODgyNkE2RTExRUY4NEY5OEUzNUM0RjlBRTAyL0ROMVFXRExxakpw Tkk3RUdOeUFkZVVLVlpNQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA3oKdawpWf2kDsfXHYk0FwXlNUUokiuiLXesfys++9enn2BNpTa8u05 2vT07pXs9ow3ynsQ+w7krYvkbklS0kjJaUkYugGBb76PcFa1DK7O4wgwwIebTHZr P/j8YsDO8YrfWLetjWGZn5hITeX53x0zN1cWNG3Adek34zo7XDlTGzmdY8BkpXh1 JjHE4HoVrn7r7MBSjkL7GM+CeB/+8gaR/aFL4YYFHXmxewM0L6NxJr9iXZqTrL9Q 8F4+tmJL9Ors0llDvlMTOtV+ws5WyQeLKeX+3/zgkUec8nfjbEzJTxlSHooOo18i kIXppuJjjEtY6QrXSowAOvhnfl6UwSw= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org