$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.mft File: QQmhbhhypDGvWRhmVbtg1TN8pIU.mft (raw, json) Hash identifier: ypl0OV+g41bggIJ256CmjpmpUG68TJbs/ZcKG7tNlX8= Subject key identifier: B2:25:39:25:01:48:95:BE:53:D6:93:03:CD:FC:FD:B6:96:31:5A:FD Authority key identifier: 41:09:A1:6E:18:72:A4:31:AF:59:18:66:55:BB:60:D5:33:7C:A4:85 Certificate issuer: /CN=A91AE309/serialNumber=4109A16E1872A431AF59186655BB60D5337CA485 Certificate serial: 062E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQmhbhhypDGvWRhmVbtg1TN8pIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.mft Manifest number: 0629 Signing time: Fri 22 Nov 2024 22:06:06 +0000 Manifest this update: Fri 22 Nov 2024 22:06:05 +0000 Manifest next update: Fri 29 Nov 2024 22:06:05 +0000 Files and hashes: 1: QQmhbhhypDGvWRhmVbtg1TN8pIU.crl (hash: mBdrSOlQ2PJ3ReZHqS7Y69cjVKGY2lUvqSCLTfB3Xrs=) 2: E036A33A724711EBAC3F0059C4F9AE02.roa (hash: f7Qn0qXwPKUSx1AKDqHdBuBm3lykdUVyid+XDevm250=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.crl rsync://rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQmhbhhypDGvWRhmVbtg1TN8pIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE309/serialNumber=4109A16E1872A431AF59186655BB60D5337CA485 Validity Not Before: Nov 22 22:06:05 2024 GMT Not After : Nov 29 22:06:05 2024 GMT Subject: CN=6741004d-a02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e3:ec:07:40:97:ed:f6:46:a3:cb:07:1e:5b: 8d:8e:96:39:5c:8e:29:52:34:9e:6b:2a:0c:f4:f4: 97:69:61:c1:09:6a:06:3d:75:21:f2:1f:db:86:d9: ce:91:2f:eb:27:6e:e7:d6:35:a3:a2:51:ca:82:5e: c4:a6:6f:3c:07:63:df:c1:41:42:58:d6:59:eb:70: 33:02:4b:9f:54:a2:91:1f:91:f1:90:03:f2:cb:f1: 65:3b:74:d5:61:6c:f9:17:4d:dc:2a:5e:7a:6e:8f: c5:24:d3:ca:81:b0:f2:bf:9d:7f:32:1f:df:28:e0: 29:2f:6e:b8:67:87:35:ee:ce:55:03:3b:20:ad:88: 69:dd:a9:47:2e:cb:3b:52:92:be:ed:1a:20:67:e0: 4a:26:8c:93:12:e5:e0:dc:a7:7c:2d:8f:83:bb:61: 19:d1:b7:c7:c1:78:54:a2:e7:5b:f7:44:28:f4:23: c7:24:34:db:0b:28:d2:74:d7:c2:1c:91:b3:ba:e4: d2:cf:b8:50:bf:5b:bb:d5:b6:8c:42:64:9b:3a:6a: 17:51:5b:0a:15:50:15:97:ee:9f:14:4d:78:39:85: d5:d9:57:98:67:33:5e:6c:1d:f1:66:d9:9a:81:4d: 95:16:ce:47:2e:b2:0e:15:85:55:ea:a0:8b:77:4f: a8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:25:39:25:01:48:95:BE:53:D6:93:03:CD:FC:FD:B6:96:31:5A:FD X509v3 Authority Key Identifier: keyid:41:09:A1:6E:18:72:A4:31:AF:59:18:66:55:BB:60:D5:33:7C:A4:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQmhbhhypDGvWRhmVbtg1TN8pIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE309/BDB42F36724611EB8AEDDC58C4F9AE02/QQmhbhhypDGvWRhmVbtg1TN8pIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:94:49:40:fd:f2:f3:e3:67:e8:c0:61:59:c8:b5:98:4a:e2: 26:70:09:f4:a9:30:59:45:fa:9c:a8:73:3b:b6:29:df:94:f0: 1d:45:fb:2e:d1:08:0f:87:30:d5:a4:11:ab:a4:fc:6c:fd:d5: 82:32:99:6d:da:67:48:bb:7b:43:f5:61:86:59:e1:0f:27:f5: 71:4e:ab:91:06:49:00:94:47:9e:37:3a:ec:12:b1:5a:7d:b9: 95:ba:16:ca:b5:0a:85:0d:0c:db:ee:46:62:94:e8:64:00:30: ee:cd:d9:08:74:07:bd:6f:38:71:5c:e6:d9:83:08:4e:d2:a7: c5:e5:c4:97:63:e7:24:55:c9:66:dc:b6:df:5a:98:19:ba:0a: b5:6c:11:a4:47:e2:19:ca:43:5b:4a:3e:d3:ee:c0:51:a7:b6: e2:55:2c:94:30:16:33:ab:b9:49:c6:10:cf:3d:e3:0b:61:46: 17:e6:8a:40:ce:0c:c2:c1:3b:be:8c:ef:92:c4:fb:02:91:d2: 5a:77:92:ea:15:d8:b1:25:2d:11:0e:e0:d9:5a:cf:8a:64:6b: a5:55:5a:28:30:eb:43:36:78:d9:0c:d9:a0:a6:16:09:69:0d: 02:0f:4a:ea:f6:e8:21:56:66:d5:c7:cd:bb:54:67:b8:08:2d: f2:07:51:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUzMDkxMTAvBgNVBAUTKDQxMDlBMTZFMTg3MkE0MzFBRjU5MTg2NjU1QkI2MEQ1 MzM3Q0E0ODUwHhcNMjQxMTIyMjIwNjA1WhcNMjQxMTI5MjIwNjA1WjAYMRYwFAYD VQQDEw02NzQxMDA0ZC1hMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+PsB0CX7fZGo8sHHluNjpY5XI4pUjSeayoM9PSXaWHBCWoGPXUh8h/bhtnO kS/rJ27n1jWjolHKgl7Epm88B2PfwUFCWNZZ63AzAkufVKKRH5HxkAPyy/FlO3TV YWz5F03cKl56bo/FJNPKgbDyv51/Mh/fKOApL264Z4c17s5VAzsgrYhp3alHLss7 UpK+7RogZ+BKJoyTEuXg3Kd8LY+Du2EZ0bfHwXhUoudb90Qo9CPHJDTbCyjSdNfC HJGzuuTSz7hQv1u71baMQmSbOmoXUVsKFVAVl+6fFE14OYXV2VeYZzNebB3xZtma gU2VFs5HLrIOFYVV6qCLd0+oVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIlOSUB SJW+U9aTA838/baWMVr9MB8GA1UdIwQYMBaAFEEJoW4YcqQxr1kYZlW7YNUzfKSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTMwOS9CREI0MkYzNjcy NDYxMUVCOEFFRERDNThDNEY5QUUwMi9RUW1oYmhoeXBER3ZXUmhtVmJ0ZzFUTjhw SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FRbWhiaGh5cERHdldSaG1WYnRnMVROOHBJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTMwOS9CREI0MkYzNjcyNDYxMUVCOEFFRERDNThDNEY5QUUwMi9RUW1oYmhoeXBE R3ZXUmhtVmJ0ZzFUTjhwSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIlElA/fLz42fowGFZyLWYSuImcAn0qTBZRfqcqHM7tinflPAdRfsu 0QgPhzDVpBGrpPxs/dWCMplt2mdIu3tD9WGGWeEPJ/VxTquRBkkAlEeeNzrsErFa fbmVuhbKtQqFDQzb7kZilOhkADDuzdkIdAe9bzhxXObZgwhO0qfF5cSXY+ckVclm 3LbfWpgZugq1bBGkR+IZykNbSj7T7sBRp7biVSyUMBYzq7lJxhDPPeMLYUYX5opA zgzCwTu+jO+SxPsCkdJad5LqFdixJS0RDuDZWs+KZGulVVooMOtDNnjZDNmgphYJ aQ0CD0rq9ughVmbVx827VGe4CC3yB1GI -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:32 2024 by rpki-client on console-fra.rpki-client.org