$ rpki-client -vvf rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft File: qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft (raw, json) Hash identifier: iWhxsRe7XItpRv0p3hlU9H/fXWwN1QjyPJJL/Nimefo= Subject key identifier: D6:19:4C:DC:7F:8A:85:4C:A4:A9:DE:06:F8:80:5E:3C:7B:3B:CE:89 Authority key identifier: AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 Certificate issuer: /CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft Manifest number: 0C2E Signing time: Fri 22 Nov 2024 18:13:40 +0000 Manifest this update: Fri 22 Nov 2024 18:13:40 +0000 Manifest next update: Fri 29 Nov 2024 18:13:40 +0000 Files and hashes: 1: qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl (hash: WljWHOwdupNXbui16T9VFZ2fj6ekZ9Ck6ild2xBmuZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Validity Not Before: Nov 22 18:13:40 2024 GMT Not After : Nov 29 18:13:40 2024 GMT Subject: CN=6740c9d4-4657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:60:b5:87:48:cb:ae:8e:5b:5b:fb:a3:46: 28:16:0c:08:cf:9a:d9:67:34:62:b1:bf:b4:4f:e1: d7:a8:da:b2:b3:3c:5c:18:66:06:fb:d4:58:bc:85: 5f:ea:d4:75:9b:1f:e3:36:36:ad:ad:71:bd:8f:b1: a4:5c:8d:c2:d5:c9:c3:a4:66:51:0a:2c:57:69:94: 06:8d:fe:43:88:3a:c2:ea:24:c6:8d:1d:b7:95:b7: a4:cd:0e:ba:16:99:4b:5e:b9:bc:da:02:71:78:42: 19:5c:98:dd:5a:99:6e:e7:b9:01:7c:ea:50:c8:c6: 05:d8:be:f7:82:bb:7d:8d:c6:6e:17:c6:b5:26:90: d8:4a:4d:7c:3c:43:d9:69:df:5a:55:e3:20:f4:ac: 7a:2a:d4:6d:55:02:c2:ff:ed:53:20:13:71:60:13: e4:5d:a8:d0:20:c2:14:86:de:78:a6:99:38:f8:98: fa:e5:e3:1c:1f:3c:b8:18:3d:39:6f:45:d3:61:b1: 01:ba:15:02:c9:a6:e0:31:56:e3:81:04:04:f7:6d: 3b:ec:97:ac:b4:21:07:e4:d6:3d:53:7f:da:92:dc: 54:7d:cd:b3:ad:b3:29:69:0f:5d:e0:18:6c:f2:10: 45:86:4b:6b:33:83:d8:46:2b:1a:9c:f3:aa:9a:71: f3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:19:4C:DC:7F:8A:85:4C:A4:A9:DE:06:F8:80:5E:3C:7B:3B:CE:89 X509v3 Authority Key Identifier: keyid:AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ec:70:18:31:45:23:d3:c8:ba:66:6c:e4:0b:aa:59:30:e8: 17:d6:28:ab:2e:9b:18:46:99:e0:5b:4f:d0:3e:ab:1c:d7:b4: 12:4b:fa:51:c0:ec:da:dd:c6:c9:71:3c:34:a2:3a:2d:64:57: e6:8e:05:42:ce:af:b4:61:b0:a9:31:0f:03:9b:14:ea:0a:d0: 69:7b:6b:a3:09:5d:27:b8:d6:e1:f6:d9:10:a7:0f:ff:72:bd: 4e:84:0c:d4:3d:82:96:b5:a3:a8:34:ab:a4:9a:75:d1:b2:00: 2a:50:1c:51:59:8c:77:02:6b:96:51:51:8c:a8:af:2e:0d:ef: 64:b6:89:5f:e6:73:fd:fa:e2:20:6e:5d:03:80:fb:f5:59:22: 00:99:bd:1e:a7:3e:fa:90:1e:5d:8d:09:4d:77:f6:e4:2a:ae: b0:b3:5b:a5:97:2d:57:6b:3b:7a:25:ca:52:47:b5:d4:86:ec: e2:8a:16:a4:a6:a4:48:d2:e0:03:4d:cb:b4:35:c3:c8:7e:42: 9e:e4:33:18:be:32:79:b4:8e:2e:92:94:7c:1c:09:f9:5d:2a: 41:5b:3c:b3:de:0d:1d:18:15:b7:52:19:3c:3d:98:d4:8b:5c: 4f:a0:e5:4c:f5:f9:34:be:65:4e:aa:9a:2e:5f:6e:ef:30:2a: 1d:a3:0f:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMjYxMTAvBgNVBAUTKEFCMEQ4Nzk3QzU4QTgzQTVCNDlDMDc3QTMyRUY2NzMy ODcyNEU0MTIwHhcNMjQxMTIyMTgxMzQwWhcNMjQxMTI5MTgxMzQwWjAYMRYwFAYD VQQDEw02NzQwYzlkNC00NjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL1gtYdIy66OW1v7o0YoFgwIz5rZZzRisb+0T+HXqNqyszxcGGYG+9RYvIVf 6tR1mx/jNjatrXG9j7GkXI3C1cnDpGZRCixXaZQGjf5DiDrC6iTGjR23lbekzQ66 FplLXrm82gJxeEIZXJjdWplu57kBfOpQyMYF2L73grt9jcZuF8a1JpDYSk18PEPZ ad9aVeMg9Kx6KtRtVQLC/+1TIBNxYBPkXajQIMIUht54ppk4+Jj65eMcHzy4GD05 b0XTYbEBuhUCyabgMVbjgQQE92077JestCEH5NY9U3/aktxUfc2zrbMpaQ9d4Bhs 8hBFhktrM4PYRisanPOqmnHz5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYZTNx/ ioVMpKneBviAXjx7O86JMB8GA1UdIwQYMBaAFKsNh5fFioOltJwHejLvZzKHJOQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAyNi9ENkIyNjMwNEY1 NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2VzBuQWQ2TXU5bk1vY2s1 QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F3MkhsOFdLZzZXMG5BZDZNdTluTW9jazVCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAyNi9ENkIyNjMwNEY1NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2 VzBuQWQ2TXU5bk1vY2s1QkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh7HAYMUUj08i6ZmzkC6pZMOgX1iirLpsYRpngW0/QPqsc17QSS/pR wOza3cbJcTw0ojotZFfmjgVCzq+0YbCpMQ8DmxTqCtBpe2ujCV0nuNbh9tkQpw// cr1OhAzUPYKWtaOoNKukmnXRsgAqUBxRWYx3AmuWUVGMqK8uDe9ktolf5nP9+uIg bl0DgPv1WSIAmb0epz76kB5djQlNd/bkKq6ws1ully1Xazt6JcpSR7XUhuziihak pqRI0uADTcu0NcPIfkKe5DMYvjJ5tI4ukpR8HAn5XSpBWzyz3g0dGBW3Uhk8PZjU i1xPoOVM9fk0vmVOqpouX27vMCodow8l -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org