$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: 242iC2/b5GNu7ffjynxAOm8UPMJ4UDmnJaefGAVG4lk= Subject key identifier: 38:BF:E4:E6:43:30:49:FB:99:7D:18:43:5D:E8:C6:A7:8E:60:23:82 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: F5 Signing time: Sat 23 Nov 2024 03:22:41 +0000 Manifest this update: Sat 23 Nov 2024 03:22:41 +0000 Manifest next update: Sat 30 Nov 2024 03:22:41 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: 12VRalKmhKIZ96gUhDMHtWpyJxTSzbD5z0Inn5qQuHs=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: KN097sj8tp2qdOXl0WodsTPOwpV2GR7rS/3ve5t47xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Nov 23 03:22:41 2024 GMT Not After : Nov 30 03:22:41 2024 GMT Subject: CN=67414a81-fce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:3d:eb:12:09:c6:50:d6:04:cf:e1:7b:6c: b7:e8:ac:9a:e3:78:b5:1c:5a:35:32:fb:96:b8:78: 9a:fd:69:09:c1:9a:d9:22:7e:54:e4:9d:a4:13:36: 34:1b:b6:f4:8c:39:3f:50:d0:c1:24:cd:6c:59:fa: 29:16:0f:df:b0:c5:5b:83:51:a8:7a:b4:37:5f:26: 6a:1a:3c:cf:c9:d0:48:fe:12:14:48:e1:d7:21:31: 1d:0e:8c:46:c9:1b:18:44:d8:4c:df:3d:d5:6e:e8: 72:8b:a5:3c:47:ab:f6:a7:9d:a0:ae:80:c4:5e:89: 06:3c:82:74:40:86:b1:cc:df:2b:4d:63:31:74:73: c1:fa:e5:8a:29:f5:71:25:db:fc:02:b3:c1:fa:8e: 76:9e:e8:bd:c2:fa:2a:a8:8e:b5:7f:13:f5:f4:1e: b3:a4:e0:ac:1b:cd:14:f6:d8:30:fa:b0:22:7e:70: 25:e1:44:7a:c8:06:4a:6a:b0:05:9a:a7:b4:99:25: ee:c8:8b:e0:8d:2b:b9:82:45:b8:97:0d:db:5c:df: fa:ee:f4:db:87:14:4b:8d:6a:fb:25:fe:a2:69:64: 7a:c5:c2:c5:ed:ce:b8:2e:9e:0f:ee:b5:d9:5d:d0: bc:4f:33:4a:ee:c7:14:71:00:5a:73:61:80:28:e3: 9c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:BF:E4:E6:43:30:49:FB:99:7D:18:43:5D:E8:C6:A7:8E:60:23:82 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:46:c7:e6:2b:ec:f1:df:f8:dd:fb:66:bb:e1:e6:1d:b3:fc: 79:37:c5:c4:73:17:7e:5b:12:dc:07:6b:7e:43:33:b9:97:70: f8:f4:72:88:35:05:0f:a3:28:82:8c:10:f6:b7:53:72:37:6c: 48:85:59:d9:9d:a7:33:20:7b:0b:37:1a:f6:4f:91:a9:9d:1e: f3:32:34:1b:46:31:4f:24:d0:5e:04:ac:5c:db:02:be:16:27: 49:64:f3:f9:4d:92:d1:a7:fa:49:a7:1b:cb:4e:cb:38:bc:18: 9d:67:34:46:8e:68:fa:be:54:1d:c4:ff:3e:d3:d0:c4:8b:18: b2:3b:81:0b:f2:f0:a7:d2:c1:73:e9:8b:f3:ad:af:20:2a:ba: 69:82:75:8a:7a:87:69:e2:18:0c:ac:0a:02:3a:79:b5:cf:90: 32:a5:55:ce:3a:ed:ad:1a:9b:05:fd:ba:aa:95:61:d3:96:dc: 86:d3:97:e1:46:53:1e:82:ca:54:49:72:89:e4:90:1e:ac:22: f5:2e:cb:97:51:1d:d1:16:ec:87:a1:d6:dd:91:9d:77:4c:fb: 02:8c:66:ec:db:21:d3:7c:a0:39:96:b6:d0:e7:46:2b:66:7c: d4:b7:e0:2a:ed:58:0a:40:c9:c3:cd:b0:4e:7a:72:93:19:51: 8f:af:73:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjQxMTIzMDMyMjQxWhcNMjQxMTMwMDMyMjQxWjAYMRYwFAYD VQQDEw02NzQxNGE4MS1mY2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+o96xIJxlDWBM/he2y36Kya43i1HFo1MvuWuHia/WkJwZrZIn5U5J2kEzY0 G7b0jDk/UNDBJM1sWfopFg/fsMVbg1GoerQ3XyZqGjzPydBI/hIUSOHXITEdDoxG yRsYRNhM3z3Vbuhyi6U8R6v2p52groDEXokGPIJ0QIaxzN8rTWMxdHPB+uWKKfVx Jdv8ArPB+o52nui9wvoqqI61fxP19B6zpOCsG80U9tgw+rAifnAl4UR6yAZKarAF mqe0mSXuyIvgjSu5gkW4lw3bXN/67vTbhxRLjWr7Jf6iaWR6xcLF7c64Lp4P7rXZ XdC8TzNK7scUcQBac2GAKOOc7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDi/5OZD MEn7mX0YQ13oxqeOYCOCMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9RsfmK+zx3/jd+2a74eYds/x5N8XEcxd+WxLcB2t+QzO5l3D49HKI NQUPoyiCjBD2t1NyN2xIhVnZnaczIHsLNxr2T5GpnR7zMjQbRjFPJNBeBKxc2wK+ FidJZPP5TZLRp/pJpxvLTss4vBidZzRGjmj6vlQdxP8+09DEixiyO4EL8vCn0sFz 6Yvzra8gKrppgnWKeodp4hgMrAoCOnm1z5AypVXOOu2tGpsF/bqqlWHTltyG05fh RlMegspUSXKJ5JAerCL1LsuXUR3RFuyHodbdkZ13TPsCjGbs2yHTfKA5lrbQ50Yr ZnzUt+Aq7VgKQMnDzbBOenKTGVGPr3Pv -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org