$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: psWC18IkV8jO+TIEblXvDtM3SVxzLE34D1CgRYJhQE4= Subject key identifier: 31:2E:7C:A8:1F:A8:F6:BF:4F:98:22:BD:6F:2D:2F:87:5B:5F:E9:DA Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 059E Signing time: Fri 22 Nov 2024 22:54:27 +0000 Manifest this update: Fri 22 Nov 2024 22:54:26 +0000 Manifest next update: Fri 29 Nov 2024 22:54:26 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: rlmeKHeif0ZXe3m2m6V1dTpZ2D6A1GxR2/5hcQQRPrQ=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: FedrzSDMz6K0xdRADgFCG6UG6bEUJhygKHnFHoEZyTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Nov 22 22:54:26 2024 GMT Not After : Nov 29 22:54:26 2024 GMT Subject: CN=67410ba3-3b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:09:8a:71:13:65:36:7b:92:3c:4a:ad:1e:f0: 8e:0c:1a:47:63:c5:ab:90:d0:28:44:2a:a1:93:3d: 3d:c5:b0:ba:ec:ca:cf:38:8d:1f:1f:19:08:6b:12: aa:25:cc:30:08:d3:c1:01:3d:cf:d0:1b:31:4e:84: 29:97:7f:d4:ce:7f:eb:fa:f1:fa:75:2a:f4:ed:11: 54:72:d0:d0:14:15:74:88:49:14:cf:5d:8b:14:49: f9:54:33:f4:96:39:5f:c4:4e:ff:00:6f:71:53:19: ab:49:8f:d8:38:f5:91:c0:70:da:9d:aa:d7:30:cb: 1f:7f:1d:57:93:90:d1:51:90:2a:dc:35:5e:98:4f: c1:87:f3:de:19:77:0f:b0:62:30:ff:8e:2a:d2:a0: e1:ca:a3:a3:cd:57:c9:f8:47:ef:f6:06:98:e0:2f: 41:c0:32:81:72:3d:f3:6d:c7:d7:67:2e:b4:eb:1a: 6f:ca:ce:ab:ba:04:f6:a0:91:e9:6a:b4:b9:29:b6: 39:f3:50:27:48:ae:49:4e:cd:0c:fc:0f:b3:b1:19: 7b:67:e1:66:a2:c0:84:a6:d4:44:eb:e4:95:37:87: 67:70:e6:6b:be:24:3b:87:3e:71:3e:2e:d5:4c:ef: 85:eb:c4:a8:28:af:3a:64:57:a0:fe:65:a6:e7:63: a5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2E:7C:A8:1F:A8:F6:BF:4F:98:22:BD:6F:2D:2F:87:5B:5F:E9:DA X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:dc:c9:d2:5b:13:16:2e:36:b3:39:5a:a6:c6:7e:ed:9f:61: a4:8b:19:f0:84:86:96:29:16:a6:67:40:47:dd:cc:e6:b1:72: a0:ab:00:bf:f0:f6:1c:c5:5c:c6:91:d5:f1:d1:e1:ce:34:94: 9c:64:c6:0e:7c:53:5e:23:cb:0e:d3:51:9d:f9:9f:df:8e:6b: 43:ac:a0:97:f8:b6:be:b7:d8:b4:d0:aa:31:0f:74:2a:41:94: a3:79:d4:43:ad:1e:5b:71:41:1a:be:5a:f3:03:b8:d3:5f:26: f4:00:a2:b8:72:33:b7:1e:a4:fb:7f:f9:06:f2:4f:99:2f:6d: 96:31:ab:51:4c:7d:3e:ca:4c:a2:4f:d5:98:45:b7:3c:5f:2f: 58:5b:82:83:b4:84:24:73:dd:1b:81:fe:e2:b8:2c:d2:dd:a9: 76:93:f9:42:3d:f6:47:06:0f:d8:5e:08:7a:00:34:d9:f3:3c: 60:f2:03:09:77:55:ad:ff:b7:33:90:ec:ea:74:14:7c:ff:5b: a9:16:04:67:e6:25:2f:24:9e:fd:d2:72:91:12:40:5b:6b:b8: 08:b7:16:4f:c8:c7:7e:19:75:87:42:f5:94:09:25:08:4e:ee: 01:00:ec:8b:2b:76:86:6c:0a:17:89:c7:ac:46:d1:2e:cb:f1: c5:8d:db:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjQxMTIyMjI1NDI2WhcNMjQxMTI5MjI1NDI2WjAYMRYwFAYD VQQDEw02NzQxMGJhMy0zYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QmKcRNlNnuSPEqtHvCODBpHY8WrkNAoRCqhkz09xbC67MrPOI0fHxkIaxKq JcwwCNPBAT3P0BsxToQpl3/Uzn/r+vH6dSr07RFUctDQFBV0iEkUz12LFEn5VDP0 ljlfxE7/AG9xUxmrSY/YOPWRwHDanarXMMsffx1Xk5DRUZAq3DVemE/Bh/PeGXcP sGIw/44q0qDhyqOjzVfJ+Efv9gaY4C9BwDKBcj3zbcfXZy606xpvys6rugT2oJHp arS5KbY581AnSK5JTs0M/A+zsRl7Z+FmosCEptRE6+SVN4dncOZrviQ7hz5xPi7V TO+F68SoKK86ZFeg/mWm52OlGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEufKgf qPa/T5givW8tL4dbX+naMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI3MnSWxMWLjazOVqmxn7tn2GkixnwhIaWKRamZ0BH3czmsXKgqwC/ 8PYcxVzGkdXx0eHONJScZMYOfFNeI8sO01Gd+Z/fjmtDrKCX+La+t9i00KoxD3Qq QZSjedRDrR5bcUEavlrzA7jTXyb0AKK4cjO3HqT7f/kG8k+ZL22WMatRTH0+ykyi T9WYRbc8Xy9YW4KDtIQkc90bgf7iuCzS3al2k/lCPfZHBg/YXgh6ADTZ8zxg8gMJ d1Wt/7czkOzqdBR8/1upFgRn5iUvJJ790nKREkBba7gItxZPyMd+GXWHQvWUCSUI Tu4BAOyLK3aGbAoXicesRtEuy/HFjduA -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org