$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: pr+adPLvU6TRytqxVhaiY4kIO6RLynFkUrVYjr5+Cjw= Subject key identifier: C2:43:85:A4:61:FB:00:CD:8C:EA:88:36:43:47:62:EC:C0:B0:AB:19 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 60 Signing time: Sat 23 Nov 2024 05:04:07 +0000 Manifest this update: Sat 23 Nov 2024 05:04:06 +0000 Manifest next update: Sat 30 Nov 2024 05:04:06 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: lPemFmXBsQsmcHl29LXa/hPh2uJIUAap9e0gHN5JpA4=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Nov 23 05:04:06 2024 GMT Not After : Nov 30 05:04:06 2024 GMT Subject: CN=67416246-a519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1f:34:18:47:8e:26:9a:73:0d:9f:27:e9:c0: 69:6a:6b:ee:52:d9:25:3e:ad:2d:3f:3f:5b:33:ce: 20:ce:3b:cb:0c:5e:a7:08:dc:a3:47:09:ec:c0:55: 8e:93:ad:8f:97:cc:42:f5:e8:83:96:1c:1e:04:c0: 0a:73:83:4b:4e:ee:90:e8:b8:b9:4b:2a:6e:0f:e3: 41:fb:ba:29:d4:44:da:03:51:4e:34:d2:62:51:57: e0:86:f9:41:a1:10:89:61:7e:d9:66:74:6c:71:12: a3:ba:d4:dd:a8:48:4e:1d:c2:20:ba:b0:25:d2:93: ec:5b:0c:a4:a5:82:b1:a6:85:75:05:56:be:ee:f2: ab:44:9b:1e:c7:c6:c4:fb:34:1c:ff:cf:2e:6a:49: 3b:94:0e:9f:93:c8:7d:96:9b:46:a7:71:b9:9f:e9: e2:a1:88:a4:d7:6b:d7:e0:35:42:c2:fb:1c:03:9e: 25:9b:b9:03:a1:0d:7b:20:fa:91:c7:0a:7b:18:53: 22:47:a0:fb:ac:42:c5:62:b8:f8:3c:67:e8:44:32: 87:df:11:10:dd:00:8a:80:0b:8c:06:f1:f7:60:60: 3f:6d:12:b1:63:82:a8:cd:4f:a7:bb:9f:da:d4:2f: 4a:92:51:21:bf:59:7f:36:b4:41:df:9f:d9:4a:09: 2b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:43:85:A4:61:FB:00:CD:8C:EA:88:36:43:47:62:EC:C0:B0:AB:19 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:82:99:64:3b:f6:a8:9b:cf:e0:fe:86:9e:70:22:e5:95:ab: 0e:9e:53:41:2a:63:e8:f1:06:0d:44:52:5d:1f:30:16:34:0d: fd:a2:5d:47:c2:28:6f:b5:b8:ac:30:57:9c:df:45:e4:fa:41: d2:ca:14:84:b9:a5:b8:bb:ca:c6:65:0a:96:60:c1:74:c4:f4: a6:ab:ef:1a:1c:a0:bd:c5:c3:87:c3:18:08:e4:c9:b3:6a:90: 67:d2:3a:04:08:33:05:b7:51:3b:6b:69:c9:41:f6:d4:6c:b1: a8:89:36:ec:86:99:09:d3:ba:2a:57:b7:37:98:73:04:8d:b4: f0:be:b1:5c:d0:fd:a0:5d:ed:dd:92:0a:1d:cf:b1:3b:2f:8a: 05:c5:73:96:27:80:b6:09:11:ac:9b:bf:c3:53:43:f1:a3:14: 74:43:06:62:1f:04:69:b2:79:b5:e2:14:c9:ba:27:cd:c2:b6: 51:66:55:78:eb:66:ec:91:af:6a:30:14:2e:2e:cd:ae:3f:31: 74:10:d4:2b:43:03:3b:7e:53:80:b4:c6:37:9e:06:75:e4:99: 49:96:0b:14:84:52:91:c8:f4:a2:a7:96:17:7d:dc:04:d6:a5: 5d:56:08:01:a8:3a:4a:86:2c:e7:ed:5e:55:fa:5e:52:84:08: 87:c0:42:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MEJFRDExMC8GA1UEBRMoNDE5RjI3QTRDRkVDRjQ2MURCODJGNkY5MDY3NjRGQjZE NjVGMjNDRjAeFw0yNDExMjMwNTA0MDZaFw0yNDExMzAwNTA0MDZaMBgxFjAUBgNV BAMTDTY3NDE2MjQ2LWE1MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdHzQYR44mmnMNnyfpwGlqa+5S2SU+rS0/P1szziDOO8sMXqcI3KNHCezAVY6T rY+XzEL16IOWHB4EwApzg0tO7pDouLlLKm4P40H7uinURNoDUU400mJRV+CG+UGh EIlhftlmdGxxEqO61N2oSE4dwiC6sCXSk+xbDKSlgrGmhXUFVr7u8qtEmx7HxsT7 NBz/zy5qSTuUDp+TyH2Wm0ancbmf6eKhiKTXa9fgNULC+xwDniWbuQOhDXsg+pHH CnsYUyJHoPusQsViuPg8Z+hEMoffERDdAIqAC4wG8fdgYD9tErFjgqjNT6e7n9rU L0qSUSG/WX82tEHfn9lKCSsJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwkOFpGH7 AM2M6og2Q0di7MCwqxkwHwYDVR0jBBgwFoAUQZ8npM/s9GHbgvb5BnZPttZfI88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwQkVELzA4RTBFMDY2MUYz ODExRUZCMDU5QjY2NUM0RjlBRTAyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVo4bnBNX3M5R0hiZ3ZiNUJuWlB0dFpmSTg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQw QkVELzA4RTBFMDY2MUYzODExRUZCMDU5QjY2NUM0RjlBRTAyL1FaOG5wTV9zOUdI Ymd2YjVCblpQdHRaZkk4OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAKCmWQ79qibz+D+hp5wIuWVqw6eU0EqY+jxBg1EUl0fMBY0Df2iXUfC KG+1uKwwV5zfReT6QdLKFIS5pbi7ysZlCpZgwXTE9Kar7xocoL3Fw4fDGAjkybNq kGfSOgQIMwW3UTtraclB9tRssaiJNuyGmQnTuipXtzeYcwSNtPC+sVzQ/aBd7d2S Ch3PsTsvigXFc5YngLYJEaybv8NTQ/GjFHRDBmIfBGmyebXiFMm6J83CtlFmVXjr ZuyRr2owFC4uza4/MXQQ1CtDAzt+U4C0xjeeBnXkmUmWCxSEUpHI9KKnlhd93ATW pV1WCAGoOkqGLOftXlX6XlKECIfAQqo= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org