$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft File: qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json) Hash identifier: PBGPsuvFcnvhgcD+n4/KB09rTiTrIbN7Z2UJ+QnoTcA= Subject key identifier: 20:CE:BA:51:FD:40:A6:5F:E2:76:9C:3F:1F:7D:26:09:13:36:DE:6B Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft Manifest number: 08BF Signing time: Fri 22 Nov 2024 20:16:24 +0000 Manifest this update: Fri 22 Nov 2024 20:16:24 +0000 Manifest next update: Fri 29 Nov 2024 20:16:24 +0000 Files and hashes: 1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: Jk7jxMNJsQgSt3gqSIeAspyUtoDidbWDvFtl7y5kR6o=) 2: 9A357E62171111EEA9C5DD2CC4F9AE02.roa (hash: ZzvPd5LHjJjhVtmj0leruUn3ZgBweBo8kJim+9/25sQ=) 3: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: 32vqSpioV/ocfZ8lNVlLrP1HBCXvPW2r4a1wVHXWwtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Nov 22 20:16:24 2024 GMT Not After : Nov 29 20:16:24 2024 GMT Subject: CN=6740e698-5bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cc:6f:f0:17:80:49:ee:de:ee:11:aa:c8:05: 82:b4:4d:1b:b1:8b:87:05:f9:e5:4a:11:28:25:7a: db:4f:2a:f0:24:e1:65:44:b9:26:8f:de:f8:84:2b: f5:2c:57:f1:f6:72:a7:0a:8b:87:1f:8c:55:18:10: ee:dd:4f:01:5b:75:56:c9:0b:33:11:e1:69:f5:2e: 77:bd:a6:fe:94:df:91:3f:90:2f:fe:7c:a7:3d:65: ac:2d:6b:48:d2:02:af:f8:d0:b4:06:aa:b7:d8:ca: 0e:9d:b4:6e:26:97:6a:8a:40:96:14:0d:0b:47:17: d5:f9:be:c5:52:4c:53:ec:e8:ae:00:79:e4:fb:7d: 8f:30:7f:3f:fc:c4:a6:fc:58:ba:e3:96:ef:b0:f8: 64:6d:f1:e4:68:dc:56:58:a0:e7:60:55:3f:36:db: e7:ac:51:32:c8:5e:ac:d2:db:a9:73:30:c6:94:83: 4c:48:21:a8:0e:9d:c9:1b:48:d0:e6:19:ac:60:d2: 9b:e0:3e:17:60:0f:2f:e6:11:b8:d3:1c:e7:87:a0: 55:2f:d9:4f:f9:cf:d3:7a:3e:49:49:35:d9:c7:92: 18:a6:18:40:fb:39:66:f1:7b:9d:95:ce:22:0b:62: f2:8e:6e:7f:93:52:b4:a8:07:fe:68:85:d5:d5:75: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CE:BA:51:FD:40:A6:5F:E2:76:9C:3F:1F:7D:26:09:13:36:DE:6B X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:be:3e:9e:3e:c3:4e:16:d9:de:a6:78:3b:8f:22:68:4b:14: b2:ad:49:51:3f:7a:86:ba:b3:e7:e1:f7:66:c5:67:87:14:a7: c3:d5:0b:39:0f:63:b8:b6:38:8e:b5:89:65:1c:5b:18:5e:69: 9a:92:65:60:35:f3:b2:35:f0:5d:19:bb:fb:49:a4:5c:ed:9f: d2:5c:a8:ef:b3:d7:40:ca:ad:db:80:1e:56:9b:6a:01:5e:f2: 5f:a7:19:ff:7f:b6:23:62:b9:fc:c3:fb:cb:6e:76:90:01:b9: bc:b1:70:38:6e:08:21:33:26:78:59:c7:de:57:76:b4:db:d9: 42:63:14:7a:0f:50:a0:ad:41:a9:97:6b:7b:1e:c8:4c:53:d0: 42:41:b5:44:83:88:6c:2d:7e:54:a5:43:65:ad:a6:4a:25:b5: 1d:51:c2:5f:21:ef:a6:b6:b1:e3:9b:26:dc:1a:6b:1e:00:fb: 8f:11:9d:ee:60:ec:15:84:29:92:09:d1:72:84:e9:cd:2f:5e: 89:b0:e4:51:48:ef:6a:99:90:6f:18:36:82:95:ad:12:2e:0b: 2d:ae:dc:ab:da:16:90:fd:36:e7:9c:94:3e:c3:9a:e2:cd:cc: 1e:cd:39:ed:e1:39:66:ed:30:44:58:6b:e0:20:d6:da:57:26: 4a:e4:31:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjQxMTIyMjAxNjI0WhcNMjQxMTI5MjAxNjI0WjAYMRYwFAYD VQQDEw02NzQwZTY5OC01YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cxv8BeASe7e7hGqyAWCtE0bsYuHBfnlShEoJXrbTyrwJOFlRLkmj974hCv1 LFfx9nKnCouHH4xVGBDu3U8BW3VWyQszEeFp9S53vab+lN+RP5Av/nynPWWsLWtI 0gKv+NC0Bqq32MoOnbRuJpdqikCWFA0LRxfV+b7FUkxT7OiuAHnk+32PMH8//MSm /Fi645bvsPhkbfHkaNxWWKDnYFU/NtvnrFEyyF6s0tupczDGlINMSCGoDp3JG0jQ 5hmsYNKb4D4XYA8v5hG40xznh6BVL9lP+c/Tej5JSTXZx5IYphhA+zlm8Xudlc4i C2Lyjm5/k1K0qAf+aIXV1XVxNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDOulH9 QKZf4nacPx99JgkTNt5rMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwOS83OUVBNTkxRUE3QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FO d3pBZ1JfdEJwOVRrZUFqdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGvj6ePsNOFtnepng7jyJoSxSyrUlRP3qGurPn4fdmxWeHFKfD1Qs5 D2O4tjiOtYllHFsYXmmakmVgNfOyNfBdGbv7SaRc7Z/SXKjvs9dAyq3bgB5Wm2oB XvJfpxn/f7YjYrn8w/vLbnaQAbm8sXA4bgghMyZ4WcfeV3a029lCYxR6D1CgrUGp l2t7HshMU9BCQbVEg4hsLX5UpUNlraZKJbUdUcJfIe+mtrHjmybcGmseAPuPEZ3u YOwVhCmSCdFyhOnNL16JsORRSO9qmZBvGDaCla0SLgstrtyr2haQ/TbnnJQ+w5ri zcwezTnt4Tlm7TBEWGvgINbaVyZK5DHr -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org