$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: lZhX8c4dD54KiyKWnzqjFsWnIcTUL1pyBOwr08l+dwQ= Subject key identifier: 78:6A:74:31:D5:AC:F8:EA:9E:40:23:28:89:94:D4:54:B2:9E:DD:F5 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0B69 Signing time: Fri 22 Nov 2024 18:50:32 +0000 Manifest this update: Fri 22 Nov 2024 18:50:32 +0000 Manifest next update: Fri 29 Nov 2024 18:50:32 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: xNST81GSNcYeNeBYOB640XdgpXxwQvbTKWvysZJWnMc=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Nov 22 18:50:32 2024 GMT Not After : Nov 29 18:50:32 2024 GMT Subject: CN=6740d278-aea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:2c:6f:67:a7:e0:96:d0:cf:17:83:16:d3: aa:5b:91:3d:10:af:7d:f7:3b:e9:5b:c4:16:38:e7: bd:3a:57:e6:dd:d9:d3:6c:61:21:70:db:2a:34:8a: b5:c4:65:cf:c3:cc:ec:b0:87:31:05:0e:7f:40:54: 3f:ab:6d:1a:85:23:9e:5a:16:4e:8c:a5:aa:3a:48: d9:f4:3c:12:53:7c:dc:ae:7f:56:69:66:22:20:91: f7:32:3a:fa:95:39:83:04:c2:5e:e9:02:7a:07:e3: 8a:8b:67:b2:68:c3:fd:f0:6c:2a:bc:69:cc:90:b2: b3:09:9d:ac:e6:06:9d:8c:ae:57:18:38:5a:f2:04: e6:2a:df:3e:57:d9:b4:4a:6d:dd:48:9c:d7:f5:3f: fd:cd:a8:b2:1e:9a:ef:3c:61:f7:3d:7e:81:6e:cf: 1a:00:d3:67:0b:c3:66:b1:93:f4:0a:5c:c6:2f:85: 3d:21:0b:70:26:b6:f6:73:2c:ed:61:26:6f:a5:52: ae:a1:55:ac:b5:40:9b:f4:fe:76:aa:e1:5e:85:a5: 80:6b:f8:f8:63:92:b3:c0:bb:a7:92:6e:1b:e5:25: 00:dc:27:15:ca:58:f0:d6:03:26:b6:95:46:9a:c7: d9:aa:7c:18:00:69:9b:75:37:a9:5b:2b:42:3f:14: 7c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6A:74:31:D5:AC:F8:EA:9E:40:23:28:89:94:D4:54:B2:9E:DD:F5 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:dd:2c:77:71:55:f6:e3:44:08:9a:53:be:d9:f9:cd:7d:e6: 78:c4:53:62:42:fc:71:d3:4a:8b:2b:67:93:85:fa:55:68:c9: 6e:97:0f:0b:bf:fa:bd:9c:54:c3:24:f8:eb:fc:01:79:77:b8: a2:19:95:07:a5:46:99:e9:8b:77:19:5d:e7:56:b8:cd:47:e8: 1f:2b:01:8d:bc:a9:d3:5b:33:f8:06:45:fb:df:5d:6c:a3:1c: 3b:57:d9:14:3a:40:9e:57:88:90:e3:4a:81:26:5d:68:7c:74: 12:3f:af:30:6b:72:fc:c0:b3:61:82:10:fb:17:bd:05:3e:ae: 76:c7:01:1c:60:4f:d2:b0:0f:2b:c7:9c:59:eb:74:68:09:3e: 17:bc:46:c2:69:8e:ec:58:e0:43:a4:84:f4:be:af:83:b8:ac: 0d:34:de:cc:1e:75:1d:20:36:dd:14:ac:b0:ed:d6:1c:a1:fb: 23:47:e8:66:0a:ce:3b:35:0a:3b:e4:4e:c6:8e:93:1f:a8:c3: 01:5e:ab:02:ab:4e:40:34:a8:66:59:b1:3b:a5:31:8b:02:25: e2:5d:c7:aa:55:c8:5a:64:2f:05:0f:39:a4:b5:9d:ad:bb:be: b0:e0:90:ec:96:2a:e6:9b:cc:70:a5:50:aa:78:a3:f5:96:7a: b9:8a:85:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjQxMTIyMTg1MDMyWhcNMjQxMTI5MTg1MDMyWjAYMRYwFAYD VQQDEw02NzQwZDI3OC1hZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhAsb2en4JbQzxeDFtOqW5E9EK999zvpW8QWOOe9Olfm3dnTbGEhcNsqNIq1 xGXPw8zssIcxBQ5/QFQ/q20ahSOeWhZOjKWqOkjZ9DwSU3zcrn9WaWYiIJH3Mjr6 lTmDBMJe6QJ6B+OKi2eyaMP98GwqvGnMkLKzCZ2s5gadjK5XGDha8gTmKt8+V9m0 Sm3dSJzX9T/9zaiyHprvPGH3PX6Bbs8aANNnC8NmsZP0ClzGL4U9IQtwJrb2cyzt YSZvpVKuoVWstUCb9P52quFehaWAa/j4Y5KzwLunkm4b5SUA3CcVyljw1gMmtpVG msfZqnwYAGmbdTepWytCPxR89wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhqdDHV rPjqnkAjKImU1FSynt31MB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS3Sx3cVX240QImlO+2fnNfeZ4xFNiQvxx00qLK2eThfpVaMlulw8L v/q9nFTDJPjr/AF5d7iiGZUHpUaZ6Yt3GV3nVrjNR+gfKwGNvKnTWzP4BkX7311s oxw7V9kUOkCeV4iQ40qBJl1ofHQSP68wa3L8wLNhghD7F70FPq52xwEcYE/SsA8r x5xZ63RoCT4XvEbCaY7sWOBDpIT0vq+DuKwNNN7MHnUdIDbdFKyw7dYcofsjR+hm Cs47NQo75E7GjpMfqMMBXqsCq05ANKhmWbE7pTGLAiXiXceqVchaZC8FDzmktZ2t u76w4JDslirmm8xwpVCqeKP1lnq5ioXN -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org