$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft File: QP0nMwGov44nCXYsZPSuom0q4LQ.mft (raw, json) Hash identifier: Z5cbkPSDTUrvHuRRHJ3fon/CCMGrcDYtZxhZIhsl3ok= Subject key identifier: 61:ED:54:28:31:F3:BB:30:FD:04:1E:35:0C:48:8B:F1:FA:33:34:54 Authority key identifier: 40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 Certificate issuer: /CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft Manifest number: C9 Signing time: Wed 20 Nov 2024 17:10:11 +0000 Manifest this update: Wed 20 Nov 2024 17:10:11 +0000 Manifest next update: Wed 27 Nov 2024 17:10:11 +0000 Files and hashes: 1: QP0nMwGov44nCXYsZPSuom0q4LQ.crl (hash: T2uBolHXs8jpP69L8BfK4yyzY/1E1nyKUAhN7ARzUt4=) 2: 26BFE5FE841611EEB980955AC4F9AE02.roa (hash: t1X6x7kpD3zFa0n1CC+WgLqz+qw3+Q3hFxhOF5F7z6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Validity Not Before: Nov 20 17:10:11 2024 GMT Not After : Nov 27 17:10:11 2024 GMT Subject: CN=673e17f3-9b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:02:9f:25:4f:05:d0:c8:6f:ef:d0:a3:d2: e5:2b:e6:a1:1a:6d:35:4c:18:84:81:04:9d:db:49: 89:ef:d9:24:6c:af:22:c0:db:96:d7:b5:91:4c:93: 20:2c:24:94:33:af:4b:91:e9:8f:21:cd:1b:51:0e: 60:d0:41:4e:6f:71:aa:94:9c:b6:63:70:e3:fb:31: de:f8:2c:c8:90:ff:ab:a7:78:7d:6e:5f:99:6c:04: 46:d3:6e:70:59:0b:44:11:0b:7a:97:f9:5d:99:98: 74:73:4d:5b:58:3a:a0:66:34:6e:55:ff:90:88:12: 36:29:46:8a:8a:d0:f6:2a:28:11:b6:d8:d4:81:02: 61:1e:e0:60:b1:d0:93:59:b1:ea:9a:e6:99:df:cb: 34:8e:02:fe:1f:98:b0:df:b4:f2:3c:1a:44:a9:52: c3:14:dd:a8:fb:44:77:fa:66:dd:79:74:73:71:dc: ca:d3:f4:e3:c7:c1:09:b6:30:21:e0:ce:74:c1:fa: 96:99:9d:b8:0c:80:44:3b:ca:b5:92:87:c3:55:a6: bb:9c:ed:74:94:6a:41:d1:dd:4a:20:d1:0f:e3:86: 11:01:3c:17:b3:d1:76:0a:e2:5a:f6:ae:3c:7f:ea: ad:3f:2f:09:e8:73:72:02:e5:03:0c:c3:c2:75:6e: 41:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:ED:54:28:31:F3:BB:30:FD:04:1E:35:0C:48:8B:F1:FA:33:34:54 X509v3 Authority Key Identifier: keyid:40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ba:9d:0f:ab:ca:d1:34:7f:23:00:5a:7c:be:a2:5c:a8:f5: aa:31:51:3f:fa:38:09:9c:26:33:79:d5:4c:ab:b5:fe:0d:92: b5:95:d4:63:09:d4:3a:f8:92:c4:b5:7c:15:ee:de:14:92:07: 52:5c:71:9e:5e:80:ea:c7:2a:27:dd:0f:2e:2a:0c:77:2e:f6: 2d:c0:8d:4b:db:ec:ab:5e:58:22:ce:5f:86:fa:26:bc:57:cf: 6b:8f:82:db:17:8e:a4:91:9a:da:01:56:eb:11:16:0a:ee:ba: 00:db:e9:55:de:c2:80:63:f0:ad:cc:3c:d1:7b:9a:f8:ee:b3: cb:76:0a:54:97:42:3f:3c:f2:c5:b9:e9:90:aa:42:74:cd:8b: 23:c4:5f:12:97:dd:80:2f:69:de:69:2a:be:10:96:89:bc:67: e2:88:b6:ab:a7:6d:54:50:46:dc:fe:78:93:78:b8:ba:75:c4: 1b:4b:75:7a:5e:9e:ee:e3:62:5a:f8:29:2a:f7:81:aa:5a:c3: ca:ae:78:46:cd:91:ef:0f:57:8a:39:b0:6f:09:f2:82:07:68: 92:37:f0:ed:9c:66:1b:91:95:7c:49:6b:32:0b:f9:7b:3e:fa: 1d:7b:24:ee:b2:f3:c0:ec:ff:c2:65:82:f6:0a:22:51:d7:89: 08:f9:87:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKDQwRkQyNzMzMDFBOEJGOEUyNzA5NzYyQzY0RjRBRUEy NkQyQUUwQjQwHhcNMjQxMTIwMTcxMDExWhcNMjQxMTI3MTcxMDExWjAYMRYwFAYD VQQDEw02NzNlMTdmMy05YjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunECnyVPBdDIb+/Qo9LlK+ahGm01TBiEgQSd20mJ79kkbK8iwNuW17WRTJMg LCSUM69LkemPIc0bUQ5g0EFOb3GqlJy2Y3Dj+zHe+CzIkP+rp3h9bl+ZbARG025w WQtEEQt6l/ldmZh0c01bWDqgZjRuVf+QiBI2KUaKitD2KigRttjUgQJhHuBgsdCT WbHqmuaZ38s0jgL+H5iw37TyPBpEqVLDFN2o+0R3+mbdeXRzcdzK0/Tjx8EJtjAh 4M50wfqWmZ24DIBEO8q1kofDVaa7nO10lGpB0d1KINEP44YRATwXs9F2CuJa9q48 f+qtPy8J6HNyAuUDDMPCdW5B9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHtVCgx 87sw/QQeNQxIi/H6MzRUMB8GA1UdIwQYMBaAFED9JzMBqL+OJwl2LGT0rqJtKuC0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC82QkVBRTA4ODdC MzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0NG5DWFlzWlBTdW9tMHE0 TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FQMG5Nd0dvdjQ0bkNYWXNaUFN1b20wcTRMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDg2MC82QkVBRTA4ODdCMzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0 NG5DWFlzWlBTdW9tMHE0TFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5up0Pq8rRNH8jAFp8vqJcqPWqMVE/+jgJnCYzedVMq7X+DZK1ldRj CdQ6+JLEtXwV7t4UkgdSXHGeXoDqxyon3Q8uKgx3LvYtwI1L2+yrXlgizl+G+ia8 V89rj4LbF46kkZraAVbrERYK7roA2+lV3sKAY/CtzDzRe5r47rPLdgpUl0I/PPLF uemQqkJ0zYsjxF8Sl92AL2neaSq+EJaJvGfiiLarp21UUEbc/niTeLi6dcQbS3V6 Xp7u42Ja+Ckq94GqWsPKrnhGzZHvD1eKObBvCfKCB2iSN/DtnGYbkZV8SWsyC/l7 PvodeyTusvPA7P/CZYL2CiJR14kI+YfX -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:19 2024 by rpki-client on console-ams.rpki-client.org