$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: hNzV3ehZTSqa7r0JGpAoI5ZVw2aEjKEXKMQSVMivZ5E= Subject key identifier: 23:3A:A4:1A:D2:41:19:97:68:CA:51:FE:6C:27:ED:FF:8B:FE:61:D1 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 01D3 Signing time: Sat 23 Nov 2024 01:44:16 +0000 Manifest this update: Sat 23 Nov 2024 01:44:15 +0000 Manifest next update: Sat 30 Nov 2024 01:44:15 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: CWG1sKcPEFgpctkHtCKcSaG35HhpI5zGgZjcaU57CVM=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: h0fnCGAOQUeiPHljhB1IRW0HYQzSPeOqHRhSNrIf9GY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Nov 23 01:44:15 2024 GMT Not After : Nov 30 01:44:15 2024 GMT Subject: CN=6741336f-d753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:85:24:35:d9:d5:21:58:8b:22:0c:b7:fe:cd: e0:2a:be:9b:6d:1e:d6:a8:5b:be:63:77:48:63:eb: ee:12:07:6f:3d:22:20:aa:4f:67:79:7c:a0:66:85: 70:ce:1e:3f:76:69:26:80:00:04:06:3c:22:e2:75: da:0e:77:42:96:ae:e6:72:ff:6b:9a:4d:5a:42:22: bb:d3:ac:2d:d3:1d:33:e4:81:04:59:24:f3:c6:d4: c3:ee:e0:eb:b2:58:15:42:f2:70:e8:06:b7:5e:bb: 5d:d8:db:d7:e4:31:3f:e7:d6:da:05:f8:8f:82:a4: 7a:03:f3:2d:9f:fd:78:08:4e:5a:5a:f6:89:d6:04: 72:81:ee:1f:97:07:7d:ff:f2:23:8e:53:39:ad:a2: 1c:8c:4b:34:b6:2f:d6:f0:45:35:87:55:38:c9:13: d0:b4:b2:9b:f8:80:47:d1:3e:a8:d0:df:49:ce:95: 08:1b:cb:d2:9d:ea:c8:77:cc:e5:b1:49:16:2b:16: c7:13:b6:38:38:13:2d:be:b9:d0:d9:ee:f9:b6:20: e7:8b:17:f9:7e:20:70:23:cf:3a:5f:a1:ac:8f:09: 32:f4:ee:dd:1f:2f:d3:ef:04:49:6b:76:fa:a3:12: f2:2b:f8:91:4f:46:f9:9c:ce:3c:b8:7b:fa:c2:02: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3A:A4:1A:D2:41:19:97:68:CA:51:FE:6C:27:ED:FF:8B:FE:61:D1 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:8b:ed:99:27:95:8f:cf:5e:0f:0f:33:10:20:69:43:36:4f: b5:9b:6e:fa:ca:65:01:35:6f:74:92:35:2e:75:fe:6c:a5:3c: 05:1e:76:60:a9:e9:bd:07:37:6b:9d:e2:f4:18:91:39:35:41: fc:1f:48:13:42:57:68:a3:30:26:ee:ce:67:54:30:59:72:0c: 5e:73:35:70:cb:45:90:fa:c3:88:60:4b:4f:47:b6:86:b8:c6: 06:ca:f4:b5:5d:3c:e8:39:f9:fb:f8:d7:16:6a:e7:70:e2:c5: 73:d1:6a:38:5b:c1:e8:91:f1:5a:45:ca:4c:5b:58:95:2f:ca: 73:3d:82:1d:3e:42:26:65:a9:02:0f:9b:22:89:8e:70:9c:28: 10:4e:60:2d:4b:31:2b:b6:8d:9c:80:00:6d:b5:e8:bb:76:0e: 11:d0:a8:3e:a0:3b:6d:eb:84:39:80:e9:62:2f:ec:04:ec:9d: 35:01:ee:89:d3:09:25:8a:3d:40:be:a2:4d:5b:a7:3f:19:bb: 94:82:15:36:3d:03:1c:2b:b5:1a:da:e6:76:5f:ed:96:00:54: c3:34:41:ec:72:10:c7:db:2b:4f:00:63:aa:db:d2:dc:e9:d3: 29:ac:3b:89:96:22:5c:73:71:38:2c:36:4c:e3:92:94:fb:a5: 1e:f1:da:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjQxMTIzMDE0NDE1WhcNMjQxMTMwMDE0NDE1WjAYMRYwFAYD VQQDEw02NzQxMzM2Zi1kNzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIUkNdnVIViLIgy3/s3gKr6bbR7WqFu+Y3dIY+vuEgdvPSIgqk9neXygZoVw zh4/dmkmgAAEBjwi4nXaDndClq7mcv9rmk1aQiK706wt0x0z5IEEWSTzxtTD7uDr slgVQvJw6Aa3Xrtd2NvX5DE/59baBfiPgqR6A/Mtn/14CE5aWvaJ1gRyge4flwd9 //IjjlM5raIcjEs0ti/W8EU1h1U4yRPQtLKb+IBH0T6o0N9JzpUIG8vSnerId8zl sUkWKxbHE7Y4OBMtvrnQ2e75tiDnixf5fiBwI886X6Gsjwky9O7dHy/T7wRJa3b6 oxLyK/iRT0b5nM48uHv6wgJPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM6pBrS QRmXaMpR/mwn7f+L/mHRMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAni+2ZJ5WPz14PDzMQIGlDNk+1m276ymUBNW90kjUudf5spTwFHnZg qem9BzdrneL0GJE5NUH8H0gTQldoozAm7s5nVDBZcgxeczVwy0WQ+sOIYEtPR7aG uMYGyvS1XTzoOfn7+NcWaudw4sVz0Wo4W8HokfFaRcpMW1iVL8pzPYIdPkImZakC D5siiY5wnCgQTmAtSzErto2cgABttei7dg4R0Kg+oDtt64Q5gOliL+wE7J01Ae6J 0wklij1AvqJNW6c/GbuUghU2PQMcK7Ua2uZ2X+2WAFTDNEHschDH2ytPAGOq29Lc 6dMprDuJliJcc3E4LDZM45KU+6Ue8dqm -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org