$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: QjbnctXAg8DXJ7iDNDNkCeIJ7bNNvJZYBBoDIhAOBjU= Subject key identifier: 6B:97:0C:2D:CC:66:96:80:20:16:FA:DD:2A:39:2B:7C:1B:2D:1F:2F Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: 07 Signing time: Wed 23 Oct 2024 06:50:49 +0000 Manifest this update: Wed 23 Oct 2024 06:50:49 +0000 Manifest next update: Wed 30 Oct 2024 06:50:49 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: 3xPhTTih7w+ISLXWnfEf+8JYNk2cyL+U2cduC3fMRTs=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Oct 23 06:50:49 2024 GMT Not After : Oct 30 06:50:49 2024 GMT Subject: CN=67189cc9-b634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f6:b7:c5:03:28:bb:ae:ec:4c:7c:8f:6a:a0: f4:4d:9b:ee:fd:15:ee:b1:3e:74:4f:11:54:e9:8a: e9:eb:6d:90:7b:da:ae:38:ae:aa:05:20:c0:b4:d7: 15:d9:05:9e:a8:e1:60:1f:dd:3e:91:f3:0d:d5:56: 77:fe:5a:42:14:80:91:db:55:a1:dd:97:09:9f:35: 0b:cd:d7:5f:e0:66:97:f1:52:84:38:db:97:96:07: f8:b1:3a:f7:f8:a1:60:3a:18:e9:2e:d7:6b:8c:4c: b4:48:b0:4f:19:ed:cb:83:c1:55:53:4d:94:05:17: 73:07:8d:c7:d3:91:99:d2:f7:05:b1:51:ba:d2:54: 22:f5:68:3b:7b:d7:f5:c3:14:9d:42:7c:0e:cd:11: 94:68:9d:43:ea:48:19:7f:8d:88:16:4d:aa:87:67: ae:2c:e3:34:f9:90:ac:3d:ed:96:3e:0e:28:f0:d2: 4b:48:98:10:bc:ca:4c:4f:63:99:9f:28:35:56:3a: 76:3d:c9:e3:1e:b8:03:35:eb:e1:8f:7f:b8:1d:a5: c8:a5:57:fa:7e:e7:98:3f:61:4a:33:5a:f1:10:38: f8:a5:05:7a:8b:7a:6c:3c:77:72:2e:3f:e1:35:0f: c4:63:51:3b:91:86:e6:ca:8e:4e:ce:54:cb:85:76: f3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:97:0C:2D:CC:66:96:80:20:16:FA:DD:2A:39:2B:7C:1B:2D:1F:2F X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:82:4e:5a:92:a2:33:e9:cd:07:52:8a:c0:5d:2c:09:b8:1a: aa:f9:a8:6c:86:3d:5d:2f:c3:5c:a7:6a:7e:6f:78:90:cc:11: af:44:ab:46:1a:4f:c5:6d:93:37:8f:96:8f:c7:e6:85:11:ae: 1b:ef:b4:fc:37:d7:4b:f8:e7:8c:54:cb:1f:be:6b:67:0d:81: 80:e9:97:a0:ff:98:05:21:08:6f:c1:af:8c:79:c1:2d:89:3e: c2:74:cf:09:7b:ae:ea:ff:ce:91:27:89:2d:86:6e:f8:3d:1c: 9c:e7:6b:25:a7:4d:7c:b9:2c:d2:70:d3:bc:d4:72:cc:60:4a: 3f:6a:38:94:44:66:30:23:40:5f:51:ae:1f:a0:4b:d3:cf:f3: f1:97:35:38:a3:16:50:da:5d:e7:cb:6c:05:39:3e:ad:03:2e: b7:61:7d:ee:1f:75:0f:bb:30:f7:99:28:ee:be:f3:ee:72:95: 08:f9:54:a6:23:c5:d6:83:99:60:bc:25:91:17:d9:1d:ba:c2: 34:99:df:75:43:48:da:77:63:65:33:f5:60:59:5a:b4:3a:c4: b5:26:63:c4:5c:a0:36:b0:42:ee:43:a5:d6:52:5d:72:29:38: 33:f9:55:cc:5e:4c:98:cf:1a:b9:8d:bc:79:ef:d5:e3:e1:54: 73:da:f0:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0IwNTExMC8GA1UEBRMoNDBEREVFRjAxOEVBRENERTREMUJGNzhEMTU0ODUxRjhE OEJDMjZBNTAeFw0yNDEwMjMwNjUwNDlaFw0yNDEwMzAwNjUwNDlaMBgxFjAUBgNV BAMTDTY3MTg5Y2M5LWI2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG9rfFAyi7ruxMfI9qoPRNm+79Fe6xPnRPEVTpiunrbZB72q44rqoFIMC01xXZ BZ6o4WAf3T6R8w3VVnf+WkIUgJHbVaHdlwmfNQvN11/gZpfxUoQ425eWB/ixOvf4 oWA6GOku12uMTLRIsE8Z7cuDwVVTTZQFF3MHjcfTkZnS9wWxUbrSVCL1aDt71/XD FJ1CfA7NEZRonUPqSBl/jYgWTaqHZ64s4zT5kKw97ZY+Dijw0ktImBC8ykxPY5mf KDVWOnY9yeMeuAM16+GPf7gdpcilV/p+55g/YUozWvEQOPilBXqLemw8d3IuP+E1 D8RjUTuRhubKjk7OVMuFdvMjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa5cMLcxm loAgFvrdKjkrfBstHy8wHwYDVR0jBBgwFoAUQN3u8Bjq3N5NG/eNFUhR+Ni8JqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQjA1L0YwQjY2Q0Y4OEE5 QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUU4zdThCanEzTjVOR19lTkZVaFItTmk4SnFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QjA1L0YwQjY2Q0Y4OEE5QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041 TkdfZU5GVWhSLU5pOEpxVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADOCTlqSojPpzQdSisBdLAm4Gqr5qGyGPV0vw1ynan5veJDMEa9Eq0Ya T8VtkzePlo/H5oURrhvvtPw310v454xUyx++a2cNgYDpl6D/mAUhCG/Br4x5wS2J PsJ0zwl7rur/zpEniS2Gbvg9HJznayWnTXy5LNJw07zUcsxgSj9qOJREZjAjQF9R rh+gS9PP8/GXNTijFlDaXefLbAU5Pq0DLrdhfe4fdQ+7MPeZKO6+8+5ylQj5VKYj xdaDmWC8JZEX2R26wjSZ33VDSNp3Y2Uz9WBZWrQ6xLUmY8RcoDawQu5DpdZSXXIp ODP5VcxeTJjPGrmNvHnv1ePhVHPa8CA= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:48 2024 by rpki-client on console-ams.rpki-client.org