$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: UxwpIFpwqvFkWXpkWYfeedEAqg8TFuNb0qA8ACRvo1o= Subject key identifier: 86:87:C9:0C:DA:AF:87:9D:71:F3:36:04:F0:50:A3:01:51:BA:2E:7B Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 34 Signing time: Thu 19 Sep 2024 05:53:48 +0000 Manifest this update: Thu 19 Sep 2024 05:53:47 +0000 Manifest next update: Thu 26 Sep 2024 05:53:47 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: ckGSpcUAXN/DAnlqfBYTQdSLIeXtOrHQFprRQGCRxFw=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Sep 19 05:53:47 2024 GMT Not After : Sep 26 05:53:47 2024 GMT Subject: CN=66ebbc6c-483c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b8:5b:ba:cc:ab:09:d2:84:32:4b:f1:33:73: 03:14:eb:86:b3:ff:a1:b4:5d:6c:04:22:61:8f:a7: 1e:4b:44:0f:4f:4d:5b:16:e7:06:a4:8f:f0:b7:98: 35:7c:5a:ca:58:2f:e3:3a:02:50:e4:9b:5e:75:71: 97:16:8c:0b:db:d4:03:bb:9f:e6:8a:91:ee:c8:e7: 22:11:90:0e:41:ca:06:08:a2:2e:13:c6:8f:36:45: d3:89:c6:c5:b8:1d:7f:21:36:25:d8:39:fa:69:bb: a7:55:99:b5:cc:a5:da:0f:a6:ac:a4:b3:05:e1:33: 50:ae:00:26:6c:11:68:3b:92:6a:db:58:0c:86:a5: 91:a5:06:f2:a0:aa:3c:60:7a:8f:02:2d:00:76:6c: 08:1d:07:56:5c:45:04:7b:0f:77:e6:4a:7a:92:be: 81:c0:97:59:cd:c0:4e:3d:cf:cf:f5:20:91:b4:64: 63:82:53:b3:0a:3a:4e:59:b5:83:dc:62:a4:74:63: 82:55:0d:20:14:79:14:ba:9a:72:71:ca:95:e8:f2: b4:50:88:b9:4d:3b:6b:aa:a9:cf:9e:56:23:91:81: dc:6e:c3:a0:64:0e:a8:06:04:0b:e7:52:13:ef:e7: ea:c5:89:a3:77:59:88:c7:46:87:4d:a7:bb:bc:6b: 2d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:87:C9:0C:DA:AF:87:9D:71:F3:36:04:F0:50:A3:01:51:BA:2E:7B X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ea:dd:7d:d8:96:9b:ce:f8:41:b9:c4:69:d8:aa:e0:74:de: 82:32:e6:49:bf:9c:e6:03:e5:45:d6:07:4b:fb:78:68:d5:51: 32:b6:09:6a:9c:78:e4:6d:91:a9:43:c9:a0:4a:09:a6:47:e2: 28:7a:65:81:75:2c:1f:9e:c5:5b:e1:22:5c:66:61:8a:42:ce: 5e:89:0a:d0:03:61:2c:63:91:ba:c0:cf:ed:b1:3b:61:9a:b2: 7c:74:a7:77:93:db:67:02:b6:a5:96:91:48:73:58:4b:90:8b: 28:d0:c1:69:1a:53:76:e2:31:54:cf:2a:e4:60:2b:5d:30:43: 64:88:be:93:f5:cd:d3:c3:72:3e:74:03:1c:b5:a8:a2:95:ce: cb:15:41:4b:dc:1c:60:3a:58:b5:38:f6:54:5e:14:0e:b1:fc: 80:69:97:1b:19:c6:3f:38:3e:84:6a:63:5d:6a:18:54:57:f0: b8:eb:7b:c8:f0:47:29:f8:74:e3:10:5e:23:1f:94:d7:f9:1f: f9:c5:da:0b:b0:7e:d3:d1:9f:1f:a8:a4:a2:77:f8:23:86:19: 1c:c6:c7:c1:86:5e:14:34:7a:f7:b0:25:2a:ac:40:41:58:e1: da:ba:93:cd:4d:3a:b6:c5:e0:27:f2:bb:64:69:21:6e:36:97: 8d:58:f1:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUUyMzExMC8GA1UEBRMoNDFFMUVDMTdERTdCQTcwRjhDMTI0MTc3Njk2Mzc3MDIz NzI1MTlERTAeFw0yNDA5MTkwNTUzNDdaFw0yNDA5MjYwNTUzNDdaMBgxFjAUBgNV BAMTDTY2ZWJiYzZjLTQ4M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTuFu6zKsJ0oQyS/EzcwMU64az/6G0XWwEImGPpx5LRA9PTVsW5wakj/C3mDV8 WspYL+M6AlDkm151cZcWjAvb1AO7n+aKke7I5yIRkA5BygYIoi4Txo82RdOJxsW4 HX8hNiXYOfppu6dVmbXMpdoPpqykswXhM1CuACZsEWg7kmrbWAyGpZGlBvKgqjxg eo8CLQB2bAgdB1ZcRQR7D3fmSnqSvoHAl1nNwE49z8/1IJG0ZGOCU7MKOk5ZtYPc YqR0Y4JVDSAUeRS6mnJxypXo8rRQiLlNO2uqqc+eViORgdxuw6BkDqgGBAvnUhPv 5+rFiaN3WYjHRodNp7u8ay2LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhofJDNqv h51x8zYE8FCjAVG6LnswHwYDVR0jBBgwFoAUQeHsF957pw+MEkF3aWN3AjclGd4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRTIzLzMwMUExRTRBMkM2 QzExRUZBMzQ2OTQyREM0RjlBRTAyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdk NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWVIc0Y5NTdwdy1NRWtGM2FXTjNBamNsR2Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNB RTIzLzMwMUExRTRBMkM2QzExRUZBMzQ2OTQyREM0RjlBRTAyL1FlSHNGOTU3cHct TUVrRjNhV04zQWpjbEdkNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJLq3X3YlpvO+EG5xGnYquB03oIy5km/nOYD5UXWB0v7eGjVUTK2CWqc eORtkalDyaBKCaZH4ih6ZYF1LB+exVvhIlxmYYpCzl6JCtADYSxjkbrAz+2xO2Ga snx0p3eT22cCtqWWkUhzWEuQiyjQwWkaU3biMVTPKuRgK10wQ2SIvpP1zdPDcj50 Axy1qKKVzssVQUvcHGA6WLU49lReFA6x/IBplxsZxj84PoRqY11qGFRX8Ljre8jw Ryn4dOMQXiMflNf5H/nF2guwftPRnx+opKJ3+COGGRzGx8GGXhQ0evewJSqsQEFY 4dq6k81NOrbF4Cfyu2RpIW42l41Y8RE= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:05 2024 by rpki-client on console-ams.rpki-client.org