$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: JfKLMkkOGAMEh7tMR8AVjByPVHE40X8qWGCNnTHFRqo= Subject key identifier: 66:16:3F:76:71:AA:67:CC:6B:A9:9D:E6:9A:69:BB:A6:AD:1F:19:86 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0B92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0B8C Signing time: Fri 22 Nov 2024 18:45:37 +0000 Manifest this update: Fri 22 Nov 2024 18:45:36 +0000 Manifest next update: Fri 29 Nov 2024 18:45:36 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: BMMK0ejv6HO/wlp6npTM1N0hbKxUuhi8Ict4f5OfB3E=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: 2owkOPv5cf70JDjVVaT6RIFBzLMnz6Rb03IohYtEZXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2962 (0xb92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Nov 22 18:45:36 2024 GMT Not After : Nov 29 18:45:36 2024 GMT Subject: CN=6740d150-bd10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dc:e2:1f:60:c4:98:2f:5a:02:73:8e:49:ae: 5f:59:ee:4d:c2:f3:d8:6a:2a:40:a7:14:df:f3:3d: 89:fd:d1:10:dd:ea:82:89:ae:d2:ed:ee:6c:1a:69: 5b:80:a5:39:26:be:17:5f:05:3c:ba:e7:dd:11:8e: b8:5e:fe:f7:ea:69:f8:a7:37:3f:c9:f9:3a:f0:5e: 76:e0:2b:d6:20:e2:d3:80:23:f2:16:b4:60:19:f8: 45:b7:59:00:29:e6:60:6f:02:f4:16:dd:e7:07:f7: 4e:05:ed:b9:f2:12:ff:6d:80:d8:2a:8b:d3:9e:51: 1f:54:d5:c2:17:3b:70:76:da:58:be:ae:fa:19:1d: 6e:50:bb:20:ac:3e:96:e6:c7:44:f9:bb:4c:a3:b3: ce:06:16:1d:45:65:bd:6e:91:fe:60:37:52:d7:e9: b4:e2:cc:3d:48:25:68:6d:6a:34:63:6b:3a:c2:df: cf:dc:a8:1c:10:54:aa:e4:a1:1a:89:71:88:e1:8f: 49:18:98:76:86:c9:81:4f:e2:77:fc:cb:9d:36:ad: a1:7e:f7:f2:58:7f:c7:e0:f0:17:5c:ed:94:84:d1: 66:d6:08:f7:ad:f0:17:38:26:93:9c:24:a6:c2:b7: fc:a4:e6:a1:28:36:c1:92:36:18:37:85:94:9f:85: 54:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:16:3F:76:71:AA:67:CC:6B:A9:9D:E6:9A:69:BB:A6:AD:1F:19:86 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:03:7b:ef:77:cf:2f:a3:82:88:47:89:a9:18:38:4b:e1:92: 33:25:03:79:09:03:12:10:44:17:0d:e8:92:e9:ab:85:9e:29: ed:d1:49:0a:d0:c3:34:09:46:ac:aa:95:a0:b0:e8:6a:06:c9: 28:78:22:33:13:f2:46:31:ab:15:9e:a0:4f:97:e9:01:a8:f5: f7:8c:61:ce:ff:c0:3c:6f:ad:cb:18:fd:f3:5a:17:0a:8f:1c: dc:1c:82:b9:3f:54:d8:1b:aa:ff:29:94:94:f0:de:20:f8:f8: 4c:c9:43:a2:e0:3d:90:d3:f5:00:27:bd:2f:17:b8:b5:73:e4: e1:f7:96:3f:1c:39:f0:8f:00:c5:d9:ac:64:61:69:a6:3e:c6: c6:97:a9:f9:99:ea:90:e4:c4:13:cc:dc:64:87:70:33:1f:fa: 6c:cd:84:bf:47:87:0a:5c:aa:f4:58:7b:16:89:90:93:06:1f: f0:0d:81:4a:a8:40:32:03:3d:7b:c9:32:9b:9e:24:69:c6:e6: 0d:b0:95:e4:95:e7:b9:4a:28:db:c4:bf:94:3d:52:02:17:39: c9:03:9a:87:20:80:6c:41:0b:60:4b:22:f1:48:78:9f:91:28: 9e:ab:a5:b1:5c:ca:b9:f3:14:52:b3:3c:e1:b3:9b:2a:29:07: 4d:f9:80:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjQxMTIyMTg0NTM2WhcNMjQxMTI5MTg0NTM2WjAYMRYwFAYD VQQDEw02NzQwZDE1MC1iZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NziH2DEmC9aAnOOSa5fWe5NwvPYaipApxTf8z2J/dEQ3eqCia7S7e5sGmlb gKU5Jr4XXwU8uufdEY64Xv736mn4pzc/yfk68F524CvWIOLTgCPyFrRgGfhFt1kA KeZgbwL0Ft3nB/dOBe258hL/bYDYKovTnlEfVNXCFztwdtpYvq76GR1uULsgrD6W 5sdE+btMo7POBhYdRWW9bpH+YDdS1+m04sw9SCVobWo0Y2s6wt/P3KgcEFSq5KEa iXGI4Y9JGJh2hsmBT+J3/MudNq2hfvfyWH/H4PAXXO2UhNFm1gj3rfAXOCaTnCSm wrf8pOahKDbBkjYYN4WUn4VUVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYWP3Zx qmfMa6md5pppu6atHxmGMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlA3vvd88vo4KIR4mpGDhL4ZIzJQN5CQMSEEQXDeiS6auFnint0UkK 0MM0CUasqpWgsOhqBskoeCIzE/JGMasVnqBPl+kBqPX3jGHO/8A8b63LGP3zWhcK jxzcHIK5P1TYG6r/KZSU8N4g+PhMyUOi4D2Q0/UAJ70vF7i1c+Th95Y/HDnwjwDF 2axkYWmmPsbGl6n5meqQ5MQTzNxkh3AzH/pszYS/R4cKXKr0WHsWiZCTBh/wDYFK qEAyAz17yTKbniRpxuYNsJXklee5SijbxL+UPVICFznJA5qHIIBsQQtgSyLxSHif kSieq6WxXMq58xRSszzhs5sqKQdN+YA/ -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org