$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: Xd1AqWs5CMx16ozQtG4gXw5hKeCMsVYPvyS+yZvrEMM= Subject key identifier: A9:B3:A1:70:47:B8:28:B2:08:C6:58:26:7B:CF:A9:95:99:C5:5B:A2 Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: 16 Signing time: Thu 21 Nov 2024 06:02:34 +0000 Manifest this update: Thu 21 Nov 2024 06:02:33 +0000 Manifest next update: Thu 28 Nov 2024 06:02:33 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: jbojoCn9Tyr6yuhw4PlNJwj+fTTETtDyu56K/tTt0YA=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Nov 21 06:02:33 2024 GMT Not After : Nov 28 06:02:33 2024 GMT Subject: CN=673eccfa-a70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9f:92:ad:60:d1:fc:e2:a7:d8:c5:90:c9:f2: 7e:a7:40:7f:30:fc:b5:d0:24:fd:b1:4e:3c:28:81: 1e:78:c8:57:50:84:e8:9d:55:7d:8c:8d:92:2c:d1: c3:37:4c:16:83:12:34:b3:04:36:f5:fe:5b:ce:cb: 18:e1:56:1e:d6:2e:29:08:17:ae:43:0c:77:2d:48: f0:01:bc:8f:0b:70:d9:70:ce:47:20:e7:ef:f3:45: 58:98:87:8e:2c:36:0f:d8:15:47:db:21:96:30:1d: ae:d5:e2:ec:6a:6f:7f:4d:b1:ae:43:c0:b8:eb:90: 21:aa:52:be:c8:67:e3:89:f6:fc:df:6f:05:26:44: 54:08:90:6a:fd:73:71:8d:30:74:66:b8:4d:6c:1e: 42:dc:ef:e1:47:b5:d7:39:82:90:93:fa:a1:10:aa: 14:ab:f6:5e:e2:6e:6c:ca:53:5a:ba:90:99:f7:03: a2:43:40:2a:50:45:93:8c:9f:a0:5a:62:61:70:e7: 91:4e:18:f5:df:3c:35:62:fc:48:f1:66:65:d1:c1: e3:fb:87:cf:74:67:ca:78:d4:5f:24:ed:68:82:e4: 6c:cb:8e:bd:dc:3b:48:e1:6d:39:bc:3b:f5:a9:fc: 70:8e:15:52:59:ae:fc:79:eb:f2:a4:44:4f:e9:36: fc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B3:A1:70:47:B8:28:B2:08:C6:58:26:7B:CF:A9:95:99:C5:5B:A2 X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:49:ae:af:34:f5:3d:82:ab:25:cd:65:56:27:5f:56:44:35: fa:73:1a:68:56:4f:ef:b7:13:92:79:1d:1c:97:5a:96:0a:f5: 5f:95:92:62:fd:b3:37:e7:f3:b2:7a:b9:61:40:17:bb:09:1c: cd:20:83:8f:72:98:40:ea:03:76:bc:bf:9e:8d:52:30:02:36: 0e:da:f7:d7:18:5f:07:31:4a:b5:9a:fc:90:70:c7:3d:93:74: f0:de:1c:5b:da:b9:5f:60:0d:f7:d5:c4:cd:73:45:84:05:2a: 31:27:d0:35:14:d3:92:2c:d1:89:07:18:3a:a7:e8:5f:20:da: 87:fc:84:9e:22:6e:37:4b:b8:cd:17:79:fa:97:02:ac:d9:cf: 58:5f:55:12:fe:5b:3c:60:3a:37:d8:00:14:00:ad:24:9b:b1: ac:b4:01:90:1b:ae:5d:92:ce:9c:63:44:26:07:e0:9f:c4:2a: 19:20:77:21:ea:55:b4:f5:fb:73:15:66:02:61:90:95:ce:d5: 6f:b1:e1:2a:1e:52:b6:9c:b5:b7:e7:38:7d:86:6d:b4:e9:5f: 4a:20:46:10:39:20:67:94:83:04:a0:28:9b:1c:a6:ff:67:db: ab:c9:1e:87:6e:70:5c:81:f3:51:0a:d5:42:dd:e8:0f:76:0b: 9a:ab:2f:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0IwNTExMC8GA1UEBRMoNDBEREVFRjAxOEVBRENERTREMUJGNzhEMTU0ODUxRjhE OEJDMjZBNTAeFw0yNDExMjEwNjAyMzNaFw0yNDExMjgwNjAyMzNaMBgxFjAUBgNV BAMTDTY3M2VjY2ZhLWE3MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbn5KtYNH84qfYxZDJ8n6nQH8w/LXQJP2xTjwogR54yFdQhOidVX2MjZIs0cM3 TBaDEjSzBDb1/lvOyxjhVh7WLikIF65DDHctSPABvI8LcNlwzkcg5+/zRViYh44s Ng/YFUfbIZYwHa7V4uxqb39Nsa5DwLjrkCGqUr7IZ+OJ9vzfbwUmRFQIkGr9c3GN MHRmuE1sHkLc7+FHtdc5gpCT+qEQqhSr9l7ibmzKU1q6kJn3A6JDQCpQRZOMn6Ba YmFw55FOGPXfPDVi/EjxZmXRweP7h890Z8p41F8k7WiC5GzLjr3cO0jhbTm8O/Wp /HCOFVJZrvx56/KkRE/pNvztAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqbOhcEe4 KLIIxlgme8+plZnFW6IwHwYDVR0jBBgwFoAUQN3u8Bjq3N5NG/eNFUhR+Ni8JqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQjA1L0YwQjY2Q0Y4OEE5 QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUU4zdThCanEzTjVOR19lTkZVaFItTmk4SnFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QjA1L0YwQjY2Q0Y4OEE5QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041 TkdfZU5GVWhSLU5pOEpxVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpJrq809T2CqyXNZVYnX1ZENfpzGmhWT++3E5J5HRyXWpYK9V+VkmL9 szfn87J6uWFAF7sJHM0gg49ymEDqA3a8v56NUjACNg7a99cYXwcxSrWa/JBwxz2T dPDeHFvauV9gDffVxM1zRYQFKjEn0DUU05Is0YkHGDqn6F8g2of8hJ4ibjdLuM0X efqXAqzZz1hfVRL+WzxgOjfYABQArSSbsay0AZAbrl2SzpxjRCYH4J/EKhkgdyHq VbT1+3MVZgJhkJXO1W+x4SoeUractbfnOH2GbbTpX0ogRhA5IGeUgwSgKJscpv9n 26vJHoducFyB81EK1ULd6A92C5qrL8I= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:00 2024 by rpki-client on console-ams.rpki-client.org