$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: R+YpFcY3HCy617A5zZMuxaQjUTfK7huIpUh2cdnBjgE= Subject key identifier: D7:2B:A7:2C:1E:99:E7:7F:5C:1F:CB:F4:E9:73:18:91:E9:27:7B:3F Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 07B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 1281 Signing time: Tue 26 Nov 2024 19:06:40 +0000 Manifest this update: Tue 26 Nov 2024 19:06:40 +0000 Manifest next update: Tue 03 Dec 2024 19:06:40 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: aqoMZ07l4AXaJgSi1wFAz477Gl7LRD1mUCHDXHdFVlQ=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: s2bmpBz0naXj5vRKeck0pYMUDs3OEcZzFMeGwcgEGxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 19:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Nov 26 19:06:40 2024 GMT Not After : Dec 3 19:06:40 2024 GMT Subject: CN=67461c40-b2cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:55:68:a5:c8:23:25:ff:c7:88:56:98:13: e2:d1:b1:01:69:40:57:8b:55:87:b9:1b:c4:27:4f: 77:18:7e:51:44:7b:11:1c:23:79:52:dd:76:62:e5: ea:c6:d3:dc:6f:2c:23:82:10:12:10:6a:6c:bc:9d: f4:b0:8b:2b:5f:a7:22:c4:13:f4:d4:79:db:2e:8f: 03:40:63:12:e9:03:72:07:8a:30:c4:fc:c4:99:83: f2:22:c9:06:d0:e9:7d:2a:00:35:49:cd:c3:1c:1f: bb:d1:27:26:04:37:fc:78:83:ea:47:27:e8:32:8f: 4e:6b:45:99:ee:29:74:29:ca:8c:15:d9:64:9a:e4: 25:c2:99:c8:5f:e9:37:da:3c:80:15:d5:50:9e:ff: 60:93:be:22:91:7a:50:74:1e:9c:af:49:bd:d0:38: a5:66:53:df:f5:94:66:24:9e:18:35:f3:39:2e:8f: bb:73:0f:63:23:c1:a3:87:23:c9:0c:bb:51:c7:6a: 34:a8:ac:fd:d0:35:7c:0d:c9:e1:6e:d3:e8:57:09: 63:6c:32:78:de:bf:d7:98:24:d5:27:b3:b5:9b:ea: 77:72:1d:78:e8:5b:ea:6f:7e:82:ea:b3:74:5c:17: 10:d3:dd:80:ed:4e:05:41:44:56:5b:03:e7:bd:6e: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2B:A7:2C:1E:99:E7:7F:5C:1F:CB:F4:E9:73:18:91:E9:27:7B:3F X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c4:7e:c6:f9:0d:31:38:43:d8:a2:ea:6d:db:db:2a:9e:b5: ac:5a:5d:e9:5e:07:22:9d:df:15:6e:66:f2:ed:eb:8e:b6:dc: 7a:b7:9c:18:1a:14:a6:41:df:61:34:83:6d:37:87:9c:72:98: f0:a0:f1:bf:33:9c:bb:3d:05:76:3a:8f:cd:c5:43:60:a8:23: 60:fa:e9:ce:68:9c:04:1e:73:f2:88:3d:1c:cf:6a:d5:cd:d3: 4f:e6:68:37:88:9d:ad:b8:f9:3d:f5:bb:7f:b8:68:b8:8d:f3: 30:8b:18:dc:7a:a0:8e:f8:b1:ad:dd:d8:e4:b3:9f:bd:a4:bc: 6c:c2:43:d6:55:0c:63:bc:fc:08:db:fd:b8:ec:9f:4b:5c:11: f3:9c:7b:91:f3:51:47:c7:bf:8e:22:28:8c:0c:74:52:7a:71: 74:b2:b4:f6:30:28:e3:41:44:1a:a8:b4:20:99:64:3f:97:c6: 59:a1:34:24:56:a6:1e:3a:d9:54:5d:23:e3:3d:c9:33:4f:e9: ab:a8:3b:85:95:b7:10:30:72:a8:ea:db:69:61:ad:0a:9f:56: 4f:76:74:6b:bd:29:7f:69:85:dd:57:57:db:17:dc:6a:c1:75: 83:30:f7:f2:aa:6b:4a:d2:bc:8e:9d:06:0f:78:df:13:db:be: ac:ce:9f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjQxMTI2MTkwNjQwWhcNMjQxMjAzMTkwNjQwWjAYMRYwFAYD VQQDEw02NzQ2MWM0MC1iMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw61VaKXIIyX/x4hWmBPi0bEBaUBXi1WHuRvEJ093GH5RRHsRHCN5Ut12YuXq xtPcbywjghASEGpsvJ30sIsrX6cixBP01HnbLo8DQGMS6QNyB4owxPzEmYPyIskG 0Ol9KgA1Sc3DHB+70ScmBDf8eIPqRyfoMo9Oa0WZ7il0KcqMFdlkmuQlwpnIX+k3 2jyAFdVQnv9gk74ikXpQdB6cr0m90DilZlPf9ZRmJJ4YNfM5Lo+7cw9jI8GjhyPJ DLtRx2o0qKz90DV8DcnhbtPoVwljbDJ43r/XmCTVJ7O1m+p3ch146Fvqb36C6rN0 XBcQ092A7U4FQURWWwPnvW5Y5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcrpywe med/XB/L9OlzGJHpJ3s/MB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaxH7G+Q0xOEPYoupt29sqnrWsWl3pXgcind8Vbmby7euOttx6t5wY GhSmQd9hNINtN4eccpjwoPG/M5y7PQV2Oo/NxUNgqCNg+unOaJwEHnPyiD0cz2rV zdNP5mg3iJ2tuPk99bt/uGi4jfMwixjceqCO+LGt3djks5+9pLxswkPWVQxjvPwI 2/247J9LXBHznHuR81FHx7+OIiiMDHRSenF0srT2MCjjQUQaqLQgmWQ/l8ZZoTQk VqYeOtlUXSPjPckzT+mrqDuFlbcQMHKo6ttpYa0Kn1ZPdnRrvSl/aYXdV1fbF9xq wXWDMPfyqmtK0ryOnQYPeN8T276szp/8 -----END CERTIFICATE-----Generated at Tue Nov 26 21:52:50 2024 by rpki-client on console-ams.rpki-client.org