$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: G8uJbKKu1zGITQCilofuLHnv6yYD98qKrFnevw+0ds8= Subject key identifier: 50:3E:47:BA:04:18:2C:08:0D:E4:B2:AF:61:DB:8B:AF:0C:2B:B8:76 Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 06AD Signing time: Fri 22 Nov 2024 21:44:45 +0000 Manifest this update: Fri 22 Nov 2024 21:44:45 +0000 Manifest next update: Fri 29 Nov 2024 21:44:45 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: 6vpXyMtNXLsvfQzJ43ZzWE5rzAzTVi2rasnm2oJiPn4=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: JGwVae5vWzz6HBXwCoXlrwSkJWV/SPa800j6qUmmqIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Nov 22 21:44:45 2024 GMT Not After : Nov 29 21:44:45 2024 GMT Subject: CN=6740fb4d-bfb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ed:fe:b8:22:2d:63:bb:66:d0:4e:a1:37:39: 38:c9:c0:dd:3a:da:6c:22:9d:cc:7e:1f:31:8c:a5: a3:f1:cb:df:23:a9:b4:b5:b1:1d:bd:ac:2e:f4:79: 45:89:5e:d8:21:7d:ab:29:2a:79:10:60:bd:b6:08: 5a:9f:d6:a8:80:3f:26:5a:a3:a1:3a:4e:dd:64:09: 6b:0b:e0:e3:47:6a:a0:50:86:0b:12:6c:0f:85:3e: 25:c5:5f:f3:e5:c7:09:59:3d:d5:a4:74:51:8a:63: d0:97:d0:8b:ef:11:02:e1:d0:af:49:5e:e4:84:e9: dc:f0:54:65:0f:c5:2b:cd:6d:93:05:66:ea:8b:4e: c3:f6:b2:4b:44:f4:1f:5b:3f:ee:99:00:21:73:c4: a5:31:2c:18:4a:ea:c2:f4:66:eb:8a:b9:7d:e0:f1: c4:4d:24:0d:e2:94:8e:fc:0a:1b:d5:75:d1:d4:d3: 16:3a:f1:0c:49:00:fc:22:50:2c:69:03:aa:69:67: 07:9d:5a:51:f9:a6:2e:77:05:58:4c:64:b7:7c:ff: fc:da:b0:2a:6d:d8:37:e5:f7:16:82:ea:cf:9b:8f: 0b:11:7a:a5:7d:24:c0:b0:5e:c9:38:70:8b:c4:f8: fb:c6:0d:76:eb:dd:27:0d:7a:79:fb:fd:84:e2:55: 06:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3E:47:BA:04:18:2C:08:0D:E4:B2:AF:61:DB:8B:AF:0C:2B:B8:76 X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:11:bb:41:52:4a:74:38:75:ab:07:47:a5:e9:25:6a:40:4f: 37:d0:1b:36:26:35:94:52:56:a4:bd:42:6d:fb:e4:e3:34:22: e5:f4:64:41:95:98:09:9d:48:b8:3c:5b:d9:5d:30:df:79:75: 02:7c:42:3a:e3:f6:39:62:7d:1e:b1:2e:89:64:2b:98:02:4e: e3:54:a2:af:1b:23:4e:43:41:e8:5b:a4:8e:d6:29:ce:a6:aa: 04:eb:0e:b4:9d:25:c6:6c:3b:99:80:79:02:fa:4f:d4:8c:0b: c5:f8:2d:d2:4b:30:cc:7b:be:c7:e8:a2:0a:a8:6b:63:ff:f4: 76:6d:a4:26:83:df:47:ba:ba:f0:99:eb:97:09:c9:c3:d9:80: 28:2f:ef:29:78:56:56:96:a1:8c:da:cc:7d:bb:9c:f9:d9:35: 92:92:ca:19:03:71:09:d2:e4:da:30:fa:03:8d:46:88:28:3e: 88:4b:eb:0f:e1:cd:ed:64:79:4d:b1:1d:34:4c:21:f1:ae:42: fd:2d:d9:ac:3e:e4:85:9d:20:22:3d:16:90:4b:32:d3:c9:d4: 8d:ba:86:48:cf:a0:20:89:fa:36:65:f1:60:e3:af:8b:5b:e4: a9:9e:bd:35:f5:c5:61:b6:79:af:47:a3:06:8b:24:69:8b:7c: cb:ff:90:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjQxMTIyMjE0NDQ1WhcNMjQxMTI5MjE0NDQ1WjAYMRYwFAYD VQQDEw02NzQwZmI0ZC1iZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAle3+uCItY7tm0E6hNzk4ycDdOtpsIp3Mfh8xjKWj8cvfI6m0tbEdvawu9HlF iV7YIX2rKSp5EGC9tghan9aogD8mWqOhOk7dZAlrC+DjR2qgUIYLEmwPhT4lxV/z 5ccJWT3VpHRRimPQl9CL7xEC4dCvSV7khOnc8FRlD8UrzW2TBWbqi07D9rJLRPQf Wz/umQAhc8SlMSwYSurC9Gbrirl94PHETSQN4pSO/Aob1XXR1NMWOvEMSQD8IlAs aQOqaWcHnVpR+aYudwVYTGS3fP/82rAqbdg35fcWgurPm48LEXqlfSTAsF7JOHCL xPj7xg12690nDXp5+/2E4lUGmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFA+R7oE GCwIDeSyr2Hbi68MK7h2MB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkEbtBUkp0OHWrB0el6SVqQE830Bs2JjWUUlakvUJt++TjNCLl9GRB lZgJnUi4PFvZXTDfeXUCfEI64/Y5Yn0esS6JZCuYAk7jVKKvGyNOQ0HoW6SO1inO pqoE6w60nSXGbDuZgHkC+k/UjAvF+C3SSzDMe77H6KIKqGtj//R2baQmg99Hurrw meuXCcnD2YAoL+8peFZWlqGM2sx9u5z52TWSksoZA3EJ0uTaMPoDjUaIKD6IS+sP 4c3tZHlNsR00TCHxrkL9LdmsPuSFnSAiPRaQSzLTydSNuoZIz6Agifo2ZfFg46+L W+Spnr019cVhtnmvR6MGiyRpi3zL/5C3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org