$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: ZA8nyCvr5Co8SRtUW55lFuK6e1DBrJ/ivVz1Hw0qZf8= Subject key identifier: 83:3E:22:AB:DF:91:7C:B2:B3:E2:0A:6A:3F:E8:5B:BD:8D:B9:BE:35 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 4D Signing time: Thu 17 Oct 2024 05:43:48 +0000 Manifest this update: Thu 17 Oct 2024 05:43:48 +0000 Manifest next update: Thu 24 Oct 2024 05:43:48 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: HHDRJNTbZ9fUl7NOpOCTwAPWZqnObpb36sPhUHqKX7E=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Oct 17 05:43:48 2024 GMT Not After : Oct 24 05:43:48 2024 GMT Subject: CN=6710a414-3597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:05:48:21:84:22:1a:08:e0:b6:43:50:fa:37: 7c:c2:87:6a:2a:fb:ba:66:7f:ac:2b:99:9a:10:8e: f5:9c:a4:c3:73:72:a9:7d:38:4d:3f:f5:95:c4:b8: 81:20:9e:29:02:cf:8c:72:d3:81:ab:c7:45:8e:d4: 20:bf:96:ed:50:d8:75:99:1b:ef:a2:63:35:5e:5c: 75:14:59:27:ee:70:79:45:4c:c8:2b:2b:36:98:5f: a3:7a:e5:f9:ed:d7:a7:6d:54:7e:4e:1b:4a:8c:e9: 98:e7:40:6a:87:52:26:ae:38:f5:f6:ea:52:04:88: 56:49:5c:76:38:a6:4c:f6:7c:31:f7:83:11:e7:72: 30:31:70:95:0e:ba:de:9a:15:a3:f0:b3:17:90:3d: ac:11:43:12:6f:05:44:c0:ca:bd:03:5c:1d:71:c3: 92:62:fc:a3:18:d0:93:6f:7f:33:a8:81:3b:92:ca: e9:b7:86:80:c1:45:bf:82:1c:c5:e5:f1:4f:da:7d: f2:a1:86:29:6f:28:ec:39:8f:88:ee:f4:41:17:53: 18:9a:d8:0c:e7:03:90:93:fc:6f:c9:29:1a:2d:49: 4e:a8:7e:bf:23:0d:6e:2c:28:8e:4a:87:38:69:a6: 55:f6:58:77:76:33:d7:27:bb:0e:7d:b9:44:e9:f2: 38:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3E:22:AB:DF:91:7C:B2:B3:E2:0A:6A:3F:E8:5B:BD:8D:B9:BE:35 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:27:9b:f9:e7:59:63:fb:10:cf:87:b6:c2:02:d2:f0:97:db: df:78:d8:b9:a2:b5:1d:58:37:4a:eb:b0:37:f9:3d:6f:09:d7: 97:41:28:e3:9d:91:9e:bc:1d:47:ab:30:2b:86:67:4e:10:d5: b8:33:45:f6:69:23:8e:dc:a6:eb:12:97:b3:45:95:06:83:ef: 4c:e6:2f:1e:47:1a:4d:cc:a7:4b:a7:c7:2c:6c:a4:63:52:32: 33:b7:65:0f:83:01:9a:39:74:66:3e:a6:fa:96:f1:96:e8:bf: ae:6d:7f:b2:d3:15:17:6c:fd:f8:df:8e:16:04:d1:8e:c2:18: 0d:5b:9f:4e:ad:51:cc:c3:8d:c5:bf:21:f4:25:e0:95:71:00: da:dd:d6:03:41:22:fe:25:34:1a:1b:d5:fb:48:5a:94:4a:f0: 2d:bd:67:fa:18:93:5d:a3:35:3a:7b:3d:52:e3:3f:f2:23:8b: a7:3c:a2:72:16:54:8c:5c:ab:1d:14:ed:10:64:4a:64:92:5e: cc:37:34:b9:4b:05:a8:3f:cd:e2:cf:8a:eb:62:97:8f:7d:13: b2:f2:58:e1:be:57:76:a2:b0:d3:4f:9b:a3:d2:5f:4e:31:40: 3e:59:9e:35:56:d7:85:70:3a:94:7e:1c:06:f1:f7:99:a2:24: c5:81:a5:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MEJFRDExMC8GA1UEBRMoNDE5RjI3QTRDRkVDRjQ2MURCODJGNkY5MDY3NjRGQjZE NjVGMjNDRjAeFw0yNDEwMTcwNTQzNDhaFw0yNDEwMjQwNTQzNDhaMBgxFjAUBgNV BAMTDTY3MTBhNDE0LTM1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMBUghhCIaCOC2Q1D6N3zCh2oq+7pmf6wrmZoQjvWcpMNzcql9OE0/9ZXEuIEg nikCz4xy04Grx0WO1CC/lu1Q2HWZG++iYzVeXHUUWSfucHlFTMgrKzaYX6N65fnt 16dtVH5OG0qM6ZjnQGqHUiauOPX26lIEiFZJXHY4pkz2fDH3gxHncjAxcJUOut6a FaPwsxeQPawRQxJvBUTAyr0DXB1xw5Ji/KMY0JNvfzOogTuSyum3hoDBRb+CHMXl 8U/affKhhilvKOw5j4ju9EEXUxia2AznA5CT/G/JKRotSU6ofr8jDW4sKI5Khzhp plX2WHd2M9cnuw59uUTp8ji9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgz4iq9+R fLKz4gpqP+hbvY25vjUwHwYDVR0jBBgwFoAUQZ8npM/s9GHbgvb5BnZPttZfI88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwQkVELzA4RTBFMDY2MUYz ODExRUZCMDU5QjY2NUM0RjlBRTAyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVo4bnBNX3M5R0hiZ3ZiNUJuWlB0dFpmSTg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQw QkVELzA4RTBFMDY2MUYzODExRUZCMDU5QjY2NUM0RjlBRTAyL1FaOG5wTV9zOUdI Ymd2YjVCblpQdHRaZkk4OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEAnm/nnWWP7EM+HtsIC0vCX29942LmitR1YN0rrsDf5PW8J15dBKOOd kZ68HUerMCuGZ04Q1bgzRfZpI47cpusSl7NFlQaD70zmLx5HGk3Mp0unxyxspGNS MjO3ZQ+DAZo5dGY+pvqW8Zbov65tf7LTFRds/fjfjhYE0Y7CGA1bn06tUczDjcW/ IfQl4JVxANrd1gNBIv4lNBob1ftIWpRK8C29Z/oYk12jNTp7PVLjP/Iji6c8onIW VIxcqx0U7RBkSmSSXsw3NLlLBag/zeLPiutil499E7LyWOG+V3aisNNPm6PSX04x QD5ZnjVW14VwOpR+HAbx95miJMWBpUo= -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:45 2024 by rpki-client on console-ams.rpki-client.org