$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: wyM3K19etNlePd7swozlYIIXpLS0XmR6Q/0NQ3HaaAw= Subject key identifier: 74:CB:22:00:DB:55:07:82:85:59:42:53:BF:E9:B1:28:2D:33:6A:75 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 54 Signing time: Thu 21 Nov 2024 05:16:16 +0000 Manifest this update: Thu 21 Nov 2024 05:16:16 +0000 Manifest next update: Thu 28 Nov 2024 05:16:16 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: xH0/13TG/0NkmIXErRhapksCdxySLoczWpEHpzSD1Uk=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Nov 21 05:16:16 2024 GMT Not After : Nov 28 05:16:16 2024 GMT Subject: CN=673ec220-c4ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:00:26:75:c6:7c:81:f7:14:16:42:94:65: 32:b4:fe:6e:c3:26:02:fa:a5:c3:a3:16:97:08:89: d5:ed:30:b0:f8:3c:06:f7:ba:a8:68:87:b2:91:e7: 69:e9:d5:46:f7:42:e5:74:b3:6c:02:03:e0:8a:89: 60:10:73:3e:67:5a:6e:2c:6e:a6:e3:d1:7c:d4:43: 49:03:9a:de:52:62:2a:eb:ff:95:d7:ec:46:eb:2d: 73:73:ad:06:97:cf:c7:65:2f:61:43:cf:cc:02:02: 14:33:bf:e0:01:c0:a3:03:b2:1a:1c:6f:fd:be:7b: 36:88:c7:dc:83:1e:19:33:bb:ab:eb:05:29:c7:94: 50:32:28:f0:b1:11:9b:56:7d:a3:68:15:de:fc:84: d9:41:a8:fb:b5:68:5b:2e:a1:2b:90:de:af:e0:be: ff:e0:42:96:78:ad:4c:d4:71:6f:b2:30:91:a3:84: 0e:37:b3:4f:5f:3f:de:f0:34:f5:5c:4b:ab:75:81: 11:0a:6d:db:6c:d8:0d:6a:9c:f2:9f:b5:2c:32:dd: b7:9d:2e:d9:3f:f4:1e:3d:c0:40:3f:6f:15:9e:c0: 0d:07:2e:56:69:cc:67:58:21:1d:af:d7:6a:39:eb: ac:e4:c6:57:ca:37:b8:6b:43:15:47:a0:15:df:cd: 14:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CB:22:00:DB:55:07:82:85:59:42:53:BF:E9:B1:28:2D:33:6A:75 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6a:63:71:b7:27:4f:f6:11:d3:48:40:a4:e9:77:42:05:8a: a9:7f:a1:19:54:b5:ec:1d:05:7a:97:77:0c:b3:db:1f:16:b4: 04:54:97:ac:75:8c:ee:0e:ab:5a:14:0f:ea:86:53:e4:4b:6c: be:ef:22:2e:2f:7c:ae:1c:c5:9f:b1:06:12:a7:4b:1d:57:7e: 80:70:be:e1:e1:e3:af:3f:59:03:a2:01:81:26:df:d3:9d:0e: e0:1f:40:58:eb:49:ce:47:bc:e5:74:8e:b5:15:e6:3f:3b:6a: 10:92:82:f2:b9:e5:f5:93:86:2d:a2:63:f8:38:f6:81:db:5e: 4b:a1:41:ba:e8:e9:58:2f:bd:59:29:5f:2e:90:6e:1f:a3:c9: 23:29:1b:3c:f3:2e:a2:69:24:ae:90:90:f5:17:54:63:1f:c0: ea:bc:a6:df:7e:99:f8:31:d3:cb:47:a3:5f:e9:e4:eb:22:cd: 23:f9:93:eb:0f:31:80:70:2d:c2:5f:a3:38:bd:c0:b0:4f:89: 96:9b:60:45:5c:d5:9e:c8:99:8e:26:9a:81:d3:de:30:eb:a5: 20:4d:6a:55:a5:8b:24:dd:3c:53:c1:bf:ff:61:6e:3c:15:f5: 2b:56:c0:1a:43:11:4a:f2:a5:1a:d5:e1:f4:e2:e6:b7:22:2d: 6e:7c:9e:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUUyMzExMC8GA1UEBRMoNDFFMUVDMTdERTdCQTcwRjhDMTI0MTc3Njk2Mzc3MDIz NzI1MTlERTAeFw0yNDExMjEwNTE2MTZaFw0yNDExMjgwNTE2MTZaMBgxFjAUBgNV BAMTDTY3M2VjMjIwLWM0YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCPwAmdcZ8gfcUFkKUZTK0/m7DJgL6pcOjFpcIidXtMLD4PAb3uqhoh7KR52np 1Ub3QuV0s2wCA+CKiWAQcz5nWm4sbqbj0XzUQ0kDmt5SYirr/5XX7EbrLXNzrQaX z8dlL2FDz8wCAhQzv+ABwKMDshocb/2+ezaIx9yDHhkzu6vrBSnHlFAyKPCxEZtW faNoFd78hNlBqPu1aFsuoSuQ3q/gvv/gQpZ4rUzUcW+yMJGjhA43s09fP97wNPVc S6t1gREKbdts2A1qnPKftSwy3bedLtk/9B49wEA/bxWewA0HLlZpzGdYIR2v12o5 66zkxlfKN7hrQxVHoBXfzRQDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdMsiANtV B4KFWUJTv+mxKC0zanUwHwYDVR0jBBgwFoAUQeHsF957pw+MEkF3aWN3AjclGd4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRTIzLzMwMUExRTRBMkM2 QzExRUZBMzQ2OTQyREM0RjlBRTAyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdk NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWVIc0Y5NTdwdy1NRWtGM2FXTjNBamNsR2Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNB RTIzLzMwMUExRTRBMkM2QzExRUZBMzQ2OTQyREM0RjlBRTAyL1FlSHNGOTU3cHct TUVrRjNhV04zQWpjbEdkNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFqY3G3J0/2EdNIQKTpd0IFiql/oRlUtewdBXqXdwyz2x8WtARUl6x1 jO4Oq1oUD+qGU+RLbL7vIi4vfK4cxZ+xBhKnSx1XfoBwvuHh468/WQOiAYEm39Od DuAfQFjrSc5HvOV0jrUV5j87ahCSgvK55fWThi2iY/g49oHbXkuhQbro6VgvvVkp Xy6Qbh+jySMpGzzzLqJpJK6QkPUXVGMfwOq8pt9+mfgx08tHo1/p5OsizSP5k+sP MYBwLcJfozi9wLBPiZabYEVc1Z7ImY4mmoHT3jDrpSBNalWliyTdPFPBv/9hbjwV 9StWwBpDEUrypRrV4fTi5rciLW58nsk= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org