$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: HBnJ5ca3Ejx++CIxlkpYjkiFKy7sWEusntGTaw9PHFU= Subject key identifier: F9:2E:E4:49:BF:3B:04:A0:70:5C:79:D2:AC:C2:8F:5D:DE:7A:D5:B1 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 023A Signing time: Sat 23 Nov 2024 01:23:27 +0000 Manifest this update: Sat 23 Nov 2024 01:23:27 +0000 Manifest next update: Sat 30 Nov 2024 01:23:27 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: Sg3+0ioW8lp9e8pSbOP/98QOBTRDYLxRhSyL3tO2/Qg=) 2: 3522CF4E168811EF8040817EC4F9AE02.roa (hash: bEx+57BQwSmXNBcGQeSfgjX5vb+zZEaNP/mDVmKg8PE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Nov 23 01:23:27 2024 GMT Not After : Nov 30 01:23:27 2024 GMT Subject: CN=67412e8f-b7b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:c8:38:97:18:53:28:dd:24:d7:d9:a5:88: f2:77:cc:c4:44:58:23:e3:10:ea:c2:02:60:ea:57: ec:f7:3d:2f:0b:41:27:b9:45:3f:d2:b8:b6:d2:36: 07:41:11:7c:fe:e2:5e:90:f5:74:ed:84:4e:1d:10: e6:7f:20:1e:b9:b1:17:32:1b:14:9b:f6:06:9a:a0: 94:d3:ed:fd:c4:88:7c:92:26:9d:a2:5d:28:e5:fc: 2e:06:3a:59:09:2a:fd:47:d5:a5:21:2f:ab:0a:af: e3:c0:79:47:b6:fc:e8:c5:d4:a8:6f:b1:9f:b1:e5: c8:fd:ab:2e:a4:3b:f9:da:28:da:78:a8:fe:32:ef: 82:0e:f3:fa:3e:6d:3d:c9:a4:f8:23:c2:a7:64:70: 1f:13:49:a8:31:20:0c:b8:3b:8c:b1:b4:de:56:65: 3b:3b:9b:4c:c8:60:a4:04:14:0d:d1:ec:0e:d2:d9: 18:cd:4b:e7:a3:3d:98:e3:b3:38:a1:82:b3:34:60: 50:be:a5:ce:0e:fd:74:60:c4:44:5e:42:5a:f8:fe: f0:81:93:c9:9f:34:4e:82:29:c9:45:bc:3e:56:84: ae:f4:56:1a:cd:8d:a3:1b:d7:dd:11:e5:73:64:8a: be:2c:d2:07:c0:8b:73:e8:ae:2b:fa:0d:41:43:23: d0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2E:E4:49:BF:3B:04:A0:70:5C:79:D2:AC:C2:8F:5D:DE:7A:D5:B1 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:87:bc:cf:4f:ae:69:e3:b3:0a:38:53:5c:fe:0e:33:1c:3a: 0a:17:d1:cf:d2:3f:9e:d6:26:a5:61:7e:fd:35:cf:69:b2:e8: ef:d9:33:82:20:b1:1e:a0:f0:87:97:a1:d9:4c:c4:83:38:99: 0b:6e:a5:6c:ef:d8:3c:0f:02:0c:23:1a:3b:d5:23:f9:c7:8a: 74:b6:25:1c:fe:a9:2e:a1:5d:e4:7f:e5:a1:be:e6:7b:61:dd: 06:19:7f:c7:49:1b:33:0e:6b:3e:fb:67:88:ba:06:9c:fd:3c: 2f:b8:ce:1e:04:51:93:4c:c7:2e:92:7e:b8:0f:f7:1c:b9:6b: 86:a9:b2:32:48:9b:91:53:13:6f:11:5c:a3:ab:82:af:60:08: 1c:d0:21:84:fe:3e:96:bd:34:83:ad:54:2c:4d:4f:0f:65:0f: 32:5b:b2:67:d7:1a:ad:02:df:ca:7e:2c:40:78:44:cc:00:fd: e2:97:55:b7:50:87:02:20:43:16:d0:ec:f6:74:1f:ac:69:8a: 1b:7e:5f:8b:c4:b1:9c:d8:d6:55:5b:b6:c1:b6:f6:83:8c:d5: 1f:00:1c:ee:a9:d1:b0:4f:37:1b:00:e8:aa:ce:2d:1e:43:83: b7:41:80:0b:f0:77:eb:e5:f3:97:16:94:4c:e5:61:84:06:42: 5f:76:5f:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjQxMTIzMDEyMzI3WhcNMjQxMTMwMDEyMzI3WjAYMRYwFAYD VQQDEw02NzQxMmU4Zi1iN2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SrIOJcYUyjdJNfZpYjyd8zERFgj4xDqwgJg6lfs9z0vC0EnuUU/0ri20jYH QRF8/uJekPV07YROHRDmfyAeubEXMhsUm/YGmqCU0+39xIh8kiadol0o5fwuBjpZ CSr9R9WlIS+rCq/jwHlHtvzoxdSob7GfseXI/asupDv52ijaeKj+Mu+CDvP6Pm09 yaT4I8KnZHAfE0moMSAMuDuMsbTeVmU7O5tMyGCkBBQN0ewO0tkYzUvnoz2Y47M4 oYKzNGBQvqXODv10YMREXkJa+P7wgZPJnzROginJRbw+VoSu9FYazY2jG9fdEeVz ZIq+LNIHwItz6K4r+g1BQyPQIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPku5Em/ OwSgcFx50qzCj13eetWxMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCph7zPT65p47MKOFNc/g4zHDoKF9HP0j+e1ialYX79Nc9psujv2TOC ILEeoPCHl6HZTMSDOJkLbqVs79g8DwIMIxo71SP5x4p0tiUc/qkuoV3kf+WhvuZ7 Yd0GGX/HSRszDms++2eIugac/TwvuM4eBFGTTMcukn64D/ccuWuGqbIySJuRUxNv EVyjq4KvYAgc0CGE/j6WvTSDrVQsTU8PZQ8yW7Jn1xqtAt/KfixAeETMAP3il1W3 UIcCIEMW0Oz2dB+saYobfl+LxLGc2NZVW7bBtvaDjNUfABzuqdGwTzcbAOiqzi0e Q4O3QYAL8Hfr5fOXFpRM5WGEBkJfdl9s -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org