$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: ZzxCRvYIule23QVuPT9F2SiQr2imY6lf9knNmbomdXo= Subject key identifier: 92:C7:D7:59:51:6B:0D:DC:54:78:1D:A5:8C:0C:91:E3:0F:03:49:FF Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 3426 Signing time: Fri 22 Nov 2024 14:45:39 +0000 Manifest this update: Fri 22 Nov 2024 14:45:38 +0000 Manifest next update: Fri 29 Nov 2024 14:45:38 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: HS2J6V8HQLzUHS75Z7GW/+ncJMaondr4RKqbBdhD3Hw=) 2: 362219222CA111ED86813324C4F9AE02.roa (hash: GSkj+FjbpSWazTQM86dN8iHsP6D58CYPSX2/HEL/jx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Nov 22 14:45:38 2024 GMT Not After : Nov 29 14:45:38 2024 GMT Subject: CN=67409912-4fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f7:e7:82:04:b9:db:13:d4:b3:ca:e1:be:5a: 4c:d8:b9:69:3b:2f:40:9f:05:8e:8b:2d:b8:53:49: 8f:ca:7b:b9:43:dc:14:db:a8:40:f6:6d:c6:95:05: 4c:83:42:a7:9e:95:74:10:4b:39:90:fd:0e:73:97: 12:d1:75:88:c0:36:7e:e9:8e:a4:ed:8d:75:c5:4a: 36:f7:11:ce:34:f1:1c:e5:27:83:ba:19:fc:b4:8a: 2b:7e:5a:b1:54:70:39:e2:46:1f:90:f4:ef:35:11: 1d:49:f7:f1:e5:3d:a0:95:3a:21:f9:7a:c7:bc:05: 09:17:28:b1:1a:68:3a:c9:ec:04:1b:76:c1:af:43: 32:d4:7a:c3:01:a9:dd:74:52:79:99:87:f0:05:9f: 36:04:09:3e:3a:a0:cf:f2:5f:92:b8:6a:80:5f:44: b0:4b:21:45:86:68:0e:ca:ab:aa:63:19:40:f8:3a: 10:0c:11:4f:89:f3:f9:31:13:80:ff:36:73:8a:61: 8a:5d:70:f2:f1:2e:bd:ae:28:35:37:d0:a7:38:11: 73:86:81:72:83:ab:00:59:97:8e:49:37:d5:79:39: 18:7a:16:bf:18:3f:40:6a:47:ba:d5:87:11:ce:08: 3d:94:8d:b2:5e:4e:7f:fe:78:85:56:ad:56:5b:95: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C7:D7:59:51:6B:0D:DC:54:78:1D:A5:8C:0C:91:E3:0F:03:49:FF X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:9e:21:34:7d:8a:b3:d5:96:ef:a3:8a:c3:70:d3:25:74:ac: 17:b7:6f:8a:84:47:f9:8a:40:ec:96:5e:fb:11:fd:c3:5b:9f: a5:8f:e3:d2:10:a3:6a:07:ed:dc:c1:67:49:aa:41:a0:07:e1: 3f:8a:bb:64:f4:66:d4:65:08:82:79:8a:a3:55:4f:73:c0:5a: 60:26:51:14:d9:26:a7:a2:f8:97:d0:93:a8:cc:f2:bc:40:41: 71:84:a7:aa:4f:20:2d:6d:a7:d8:1e:1a:7e:b7:6c:63:b3:8e: f9:1d:38:37:18:52:2c:e3:29:2e:2f:89:ac:ae:84:90:ab:53: 73:87:7f:ab:36:b9:c8:b3:ae:02:b4:98:56:49:16:62:67:ff: 55:b6:65:9c:c2:a0:53:d6:8a:32:0e:95:55:76:9e:71:9a:46: 95:d2:69:ef:15:14:2a:96:03:43:01:4a:7d:31:df:89:03:a2: 62:6a:6c:53:6b:1e:20:9c:c8:75:19:06:2c:38:c1:af:76:52: b6:80:54:5e:58:76:16:f3:6d:eb:93:fe:c1:4d:81:8b:62:60: 48:27:99:77:f3:6d:eb:58:10:30:b1:84:f1:29:c1:3d:2a:db: 38:88:0e:3a:10:4a:9b:c2:73:92:1f:ec:9b:ad:8b:96:14:66: 36:36:d7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjQxMTIyMTQ0NTM4WhcNMjQxMTI5MTQ0NTM4WjAYMRYwFAYD VQQDEw02NzQwOTkxMi00ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vfnggS52xPUs8rhvlpM2LlpOy9AnwWOiy24U0mPynu5Q9wU26hA9m3GlQVM g0KnnpV0EEs5kP0Oc5cS0XWIwDZ+6Y6k7Y11xUo29xHONPEc5SeDuhn8tIorflqx VHA54kYfkPTvNREdSffx5T2glToh+XrHvAUJFyixGmg6yewEG3bBr0My1HrDAand dFJ5mYfwBZ82BAk+OqDP8l+SuGqAX0SwSyFFhmgOyquqYxlA+DoQDBFPifP5MROA /zZzimGKXXDy8S69rig1N9CnOBFzhoFyg6sAWZeOSTfVeTkYeha/GD9Aake61YcR zgg9lI2yXk5//niFVq1WW5UU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLH11lR aw3cVHgdpYwMkeMPA0n/MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVniE0fYqz1Zbvo4rDcNMldKwXt2+KhEf5ikDsll77Ef3DW5+lj+PS EKNqB+3cwWdJqkGgB+E/irtk9GbUZQiCeYqjVU9zwFpgJlEU2SanoviX0JOozPK8 QEFxhKeqTyAtbafYHhp+t2xjs475HTg3GFIs4ykuL4msroSQq1Nzh3+rNrnIs64C tJhWSRZiZ/9VtmWcwqBT1ooyDpVVdp5xmkaV0mnvFRQqlgNDAUp9Md+JA6JiamxT ax4gnMh1GQYsOMGvdlK2gFReWHYW823rk/7BTYGLYmBIJ5l3823rWBAwsYTxKcE9 Kts4iA46EEqbwnOSH+ybrYuWFGY2Ntcl -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org