$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: 0h5wmO/F9WR8lflmVDXyTKsMIp5BQkh3Ca+MTEClz7Y= Subject key identifier: 89:8E:91:9B:1A:A4:51:50:E3:92:60:BB:46:1C:AA:89:FC:AD:7F:DA Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0E1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0E14 Signing time: Fri 22 Nov 2024 17:44:56 +0000 Manifest this update: Fri 22 Nov 2024 17:44:55 +0000 Manifest next update: Fri 29 Nov 2024 17:44:55 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: z2nwbfqjOj5vj2eOaWt/FI76ipbcSbrRun5y/St0Qkc=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: 2rvUxpqj7Y+E1RimjzmymQTO9YIeEHWwe9dn2EcRiJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3615 (0xe1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: Nov 22 17:44:55 2024 GMT Not After : Nov 29 17:44:55 2024 GMT Subject: CN=6740c317-4bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:05:9e:2e:70:24:8a:2e:e5:0b:bf:7d:f9:89: cc:3f:c2:8b:30:c5:73:16:24:61:39:7b:5e:7c:0b: 45:ed:91:cd:ea:84:4d:b6:1f:e1:3b:fe:13:b5:7c: 77:9f:bc:ff:16:a0:dd:31:3e:f6:7f:15:ba:64:df: 31:00:81:cb:db:12:70:88:b0:fd:bc:30:d6:e2:6a: bf:ee:4c:f9:3a:c0:ea:64:1e:65:8e:cc:37:3a:ce: 26:78:d6:32:68:82:cb:42:02:91:27:86:0d:55:24: 5d:f4:bf:ce:d6:30:33:f3:75:ce:fd:4c:22:7a:f2: fe:82:75:f4:4b:46:53:29:91:3a:16:cb:5f:d8:5f: d2:7f:24:df:84:97:90:ff:d1:e0:da:6a:7b:aa:90: 02:3f:fd:b8:d8:66:4b:61:ab:01:3d:32:6a:3a:56: 1d:73:aa:d6:1d:5b:ff:b5:08:ed:4b:f1:89:a4:af: c8:25:3b:6d:ab:70:0b:d3:68:ce:b8:d8:f2:a6:03: 6a:e0:ac:ef:32:37:70:01:57:99:26:b3:77:92:c2: 0a:f4:46:04:81:36:4e:5b:ca:68:a3:21:1b:a3:e7: 0f:88:30:f1:a7:83:d4:92:e2:8b:ac:12:2e:6f:45: 9b:dd:31:d4:c5:e3:83:a0:7f:7f:18:72:4a:5b:df: 86:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8E:91:9B:1A:A4:51:50:E3:92:60:BB:46:1C:AA:89:FC:AD:7F:DA X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:f8:2a:fa:44:96:1a:fb:2b:6e:a8:4a:bd:8f:c4:f7:0c:eb: 46:f8:4f:df:df:76:d6:ec:e5:e8:33:8b:1a:af:0e:f5:9e:8b: 19:8a:b4:ed:53:66:01:1c:dd:b0:ee:50:d9:86:9c:c5:08:9d: 45:91:01:ae:cb:53:d6:71:50:0a:75:cd:7c:ca:37:6b:f4:4b: 3c:2f:c7:bb:6e:2b:9d:4c:d6:68:ee:a6:f8:de:f4:cf:0b:89: be:bb:f9:d6:fc:42:37:c5:22:01:06:f6:64:f5:f6:4d:d4:12: 5c:35:f3:78:83:65:28:42:7b:cf:af:18:54:cb:11:55:d8:60: 05:ac:ee:11:87:e9:49:9b:e1:31:54:7b:b7:1b:d5:a2:f1:31: b5:ff:fe:e2:51:08:2d:2a:ce:24:ee:92:28:8e:ba:04:c7:dd: ff:23:d9:23:f1:d8:f1:33:44:5f:12:02:41:9c:54:cc:91:c8: d7:71:2b:28:37:23:b7:17:6b:c7:80:6f:07:c6:72:db:fa:17: 97:71:cf:cd:23:64:cd:72:62:86:ef:2d:30:50:8f:29:1d:dd: a1:67:d6:06:a7:d6:d9:df:b5:cd:29:53:86:5b:ef:fe:9a:fc: 08:29:00:d3:53:5b:8b:52:6c:f3:29:c7:e8:f5:79:c1:56:15: 97:d9:52:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjQxMTIyMTc0NDU1WhcNMjQxMTI5MTc0NDU1WjAYMRYwFAYD VQQDEw02NzQwYzMxNy00YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AWeLnAkii7lC799+YnMP8KLMMVzFiRhOXtefAtF7ZHN6oRNth/hO/4TtXx3 n7z/FqDdMT72fxW6ZN8xAIHL2xJwiLD9vDDW4mq/7kz5OsDqZB5ljsw3Os4meNYy aILLQgKRJ4YNVSRd9L/O1jAz83XO/UwievL+gnX0S0ZTKZE6Fstf2F/SfyTfhJeQ /9Hg2mp7qpACP/242GZLYasBPTJqOlYdc6rWHVv/tQjtS/GJpK/IJTttq3AL02jO uNjypgNq4KzvMjdwAVeZJrN3ksIK9EYEgTZOW8pooyEbo+cPiDDxp4PUkuKLrBIu b0Wb3THUxeODoH9/GHJKW9+GlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImOkZsa pFFQ45Jgu0Ycqon8rX/aMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU+Cr6RJYa+ytuqEq9j8T3DOtG+E/f33bW7OXoM4sarw71nosZirTt U2YBHN2w7lDZhpzFCJ1FkQGuy1PWcVAKdc18yjdr9Es8L8e7biudTNZo7qb43vTP C4m+u/nW/EI3xSIBBvZk9fZN1BJcNfN4g2UoQnvPrxhUyxFV2GAFrO4Rh+lJm+Ex VHu3G9Wi8TG1//7iUQgtKs4k7pIojroEx93/I9kj8djxM0RfEgJBnFTMkcjXcSso NyO3F2vHgG8HxnLb+heXcc/NI2TNcmKG7y0wUI8pHd2hZ9YGp9bZ37XNKVOGW+/+ mvwIKQDTU1uLUmzzKcfo9XnBVhWX2VKn -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org