$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: LeRMkKnFykFdLMWhsbVQ9aQpWv+NpJklj3xsXvit248= Subject key identifier: 54:DC:24:33:93:F7:F8:58:71:3B:7C:69:4B:BD:09:11:6C:0A:EC:32 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: 60 Signing time: Fri 15 Nov 2024 04:56:50 +0000 Manifest this update: Fri 15 Nov 2024 04:56:49 +0000 Manifest next update: Fri 22 Nov 2024 04:56:49 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: 5H4zoJYMNSMob5fCGHOKH81PW4IM2E2ZilNKd0fu+wo=) 2: 691C2F48169211EFBBB5BD6CC4F9AE02.roa (hash: JFnoGlMQvx0rfghWguqYEQOafVm5KcUTywblwtb1T0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 04:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Nov 15 04:56:49 2024 GMT Not After : Nov 22 04:56:49 2024 GMT Subject: CN=6736d492-5714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:9e:4d:f6:c0:35:bd:fc:1d:9a:ab:10:a9: d2:4c:82:e9:fb:8e:ba:ed:04:93:e2:18:a9:9c:05: bb:28:70:0f:d8:0e:f5:69:6c:62:54:88:c2:8a:85: ee:32:6d:1c:27:cc:a6:26:a0:98:78:0a:e6:4e:bb: df:ce:cc:56:e7:b6:65:35:04:e6:77:e4:cf:e6:97: e0:85:13:2e:94:ca:33:b1:70:92:e2:67:d4:b4:18: c9:22:3b:1f:90:ba:61:b2:ed:b2:9b:a9:fc:ac:62: cf:34:2d:a5:77:43:0c:6e:a1:d7:c9:f7:b7:21:a3: 11:e6:de:9c:2f:e3:7d:34:9f:3f:7f:b7:35:05:21: ed:f5:35:82:5e:f9:b1:28:50:57:35:55:d7:7b:47: a2:92:86:3d:9c:87:7f:dd:b3:b9:c5:bb:0c:56:9c: 31:be:86:6a:ef:4b:e1:57:26:12:44:10:7a:bc:65: 40:36:0e:05:90:b8:4f:d3:50:89:8c:4e:c2:76:7f: 72:07:6a:7f:c9:91:89:d4:93:bd:2f:df:44:0a:c7: be:09:d3:b0:9b:17:84:ed:e6:b0:df:bd:54:44:6a: 33:a6:0b:c9:67:e4:18:6e:38:d4:b1:47:ec:b2:f1: 1a:24:ac:2f:3a:32:02:20:dc:05:d0:a8:f7:f6:bb: 14:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:24:33:93:F7:F8:58:71:3B:7C:69:4B:BD:09:11:6C:0A:EC:32 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:65:b6:8a:93:7f:97:6f:8d:54:5d:48:59:4b:cf:69:7c:e9: a2:65:eb:d0:2c:56:4d:cf:c0:32:7d:44:57:77:ce:61:43:b2: f4:b5:95:58:b6:b5:b4:b2:52:f6:51:64:72:63:4c:03:fa:95: dc:48:75:a6:9f:10:91:fe:20:fb:35:26:90:f6:74:29:8a:2b: 30:3d:f8:7c:36:ad:4c:ec:45:d3:ad:97:2f:2e:c3:d5:65:eb: 05:ad:bb:93:e2:da:a7:69:2f:41:f8:73:4c:9c:94:16:77:b2: 2b:bc:57:53:00:3d:80:94:8a:03:77:3f:07:8f:d9:4a:c1:a2: 73:71:a6:38:9d:fc:54:3c:f5:24:15:ef:fa:fb:6e:87:11:e2: bb:1a:00:4e:2e:c6:75:1f:b4:14:84:89:11:b0:92:fc:39:87: e9:ad:2f:6e:0d:a2:cd:b7:12:60:b5:b6:e5:91:de:e2:b2:d8: bb:cd:95:1c:87:b0:b7:c1:ea:61:2f:da:58:51:e7:9b:56:f1: 91:7a:bc:1e:6d:6c:20:1c:2d:17:c3:6b:b5:5b:f9:e9:f1:85: 05:8b:ef:e4:4d:96:11:6b:af:ce:73:87:06:02:51:c9:5b:c5: 99:9b:a1:75:48:4a:c0:f5:18:f7:cc:a5:92:0c:4d:13:10:c5: 03:d8:b4:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB REQ2NDExMC8GA1UEBRMoNDBCNTVDMUFDNzQwNENDMDVGMTc3NjNBOTlCQkIyMzg5 QkQyRUFCRTAeFw0yNDExMTUwNDU2NDlaFw0yNDExMjIwNDU2NDlaMBgxFjAUBgNV BAMTDTY3MzZkNDkyLTU3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKLZ5N9sA1vfwdmqsQqdJMgun7jrrtBJPiGKmcBbsocA/YDvVpbGJUiMKKhe4y bRwnzKYmoJh4CuZOu9/OzFbntmU1BOZ35M/ml+CFEy6UyjOxcJLiZ9S0GMkiOx+Q umGy7bKbqfysYs80LaV3QwxuodfJ97choxHm3pwv4300nz9/tzUFIe31NYJe+bEo UFc1Vdd7R6KShj2ch3/ds7nFuwxWnDG+hmrvS+FXJhJEEHq8ZUA2DgWQuE/TUImM TsJ2f3IHan/JkYnUk70v30QKx74J07CbF4Tt5rDfvVREajOmC8ln5BhuONSxR+yy 8RokrC86MgIg3AXQqPf2uxSTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVNwkM5P3 +FhxO3xpS70JEWwK7DIwHwYDVR0jBBgwFoAUQLVcGsdATMBfF3Y6mbuyOJvS6r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFERDY0LzU4NDBBMDdDMTM0 QjExRUY5NDQyNEQzREM0RjlBRTAyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUxWY0dzZEFUTUJmRjNZNm1idXlPSnZTNnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFE RDY0LzU4NDBBMDdDMTM0QjExRUY5NDQyNEQzREM0RjlBRTAyL1FMVmNHc2RBVE1C ZkYzWTZtYnV5T0p2UzZyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpltoqTf5dvjVRdSFlLz2l86aJl69AsVk3PwDJ9RFd3zmFDsvS1lVi2 tbSyUvZRZHJjTAP6ldxIdaafEJH+IPs1JpD2dCmKKzA9+Hw2rUzsRdOtly8uw9Vl 6wWtu5Pi2qdpL0H4c0yclBZ3siu8V1MAPYCUigN3PweP2UrBonNxpjid/FQ89SQV 7/r7bocR4rsaAE4uxnUftBSEiRGwkvw5h+mtL24Nos23EmC1tuWR3uKy2LvNlRyH sLfB6mEv2lhR55tW8ZF6vB5tbCAcLRfDa7Vb+enxhQWL7+RNlhFrr85zhwYCUclb xZmboXVISsD1GPfMpZIMTRMQxQPYtLA= -----END CERTIFICATE-----Generated at Fri Nov 15 06:55:26 2024 by rpki-client on console-fra.rpki-client.org