$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: 1DH6qndUTRs5URU4RDwOHOGMyHvEgpSoEEzpakCFKAI= Subject key identifier: 17:32:12:97:40:3F:06:2F:54:47:82:1E:A7:3C:EE:0E:8A:3B:FB:62 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2426 Signing time: Fri 22 Nov 2024 15:48:07 +0000 Manifest this update: Fri 22 Nov 2024 15:48:07 +0000 Manifest next update: Fri 29 Nov 2024 15:48:07 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: SIzkSsMPtaMVqc679qjBv++Q12t9SfM1Lz0DUW2g8wA=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9286 (0x2446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Nov 22 15:48:07 2024 GMT Not After : Nov 29 15:48:07 2024 GMT Subject: CN=6740a7b7-5ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5f:10:4b:6f:e4:c1:75:81:9f:e2:34:d6:6f: f0:08:d6:48:bd:5a:fc:44:9e:27:56:a7:a3:fe:b1: 05:bb:82:cf:9b:3e:3d:ad:41:f8:18:cb:df:2b:1b: 97:11:90:59:8c:d5:f3:05:31:e1:dd:73:8c:a5:1f: 05:1e:26:2d:f9:b1:6d:9b:ec:6a:af:1c:ca:86:d8: 30:fd:93:bb:f3:f6:c5:50:ca:3f:62:8a:61:fb:e7: f8:72:51:2b:2a:b2:1b:96:4f:ff:96:b6:51:a7:1c: fa:a1:5d:b3:3e:ab:90:17:f4:1b:ca:3c:d5:fc:d4: a9:23:ca:da:be:3a:a1:be:70:4f:c3:38:37:1a:1c: 79:45:cc:26:ba:e2:0f:05:d3:87:68:e8:36:31:8f: df:a2:d4:ed:62:7e:cc:46:b7:f4:76:19:da:3c:67: 47:72:15:cc:db:b1:83:93:d7:6d:9b:41:93:fe:35: a9:fa:da:2d:f0:d9:f2:9c:ff:f9:70:09:e3:95:29: 06:04:4a:18:4c:1d:09:9e:6b:0e:8a:cb:4e:0e:4a: 27:d6:5b:65:99:74:1b:43:bd:6f:91:c8:15:2d:74: 27:67:d5:0c:48:3f:9a:72:b8:67:66:f4:e3:89:15: 2a:3d:46:f4:2f:69:61:60:30:b3:49:80:8c:18:3e: 49:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:32:12:97:40:3F:06:2F:54:47:82:1E:A7:3C:EE:0E:8A:3B:FB:62 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:62:e5:9f:dc:11:2e:c6:0d:3e:01:03:b2:1f:e7:63:07:54: 5a:18:c3:9c:d2:2b:cc:60:ed:dc:05:52:6a:f7:26:b0:9a:83: 1c:24:6a:e4:6f:3b:5a:f8:93:e7:90:08:20:f4:fd:0f:d2:d4: 87:e4:4d:e8:5f:0d:87:f9:a9:07:c2:fe:2e:0b:79:e4:b9:12: cc:19:bb:a9:c4:c7:b6:e4:d5:bc:03:d6:c0:22:29:39:7b:2b: d4:6b:ce:8f:bf:6a:19:f7:26:c9:3c:bc:14:30:be:97:4e:2a: ed:6f:1d:0a:c7:59:c1:40:3d:a9:d4:0d:e5:cd:d9:6e:d3:42: cc:92:f9:27:2f:6b:82:74:8b:14:d7:93:f5:91:71:54:87:93: e2:7b:f8:2d:05:4c:e7:44:07:fc:8d:37:46:ed:e4:71:61:7b: eb:0b:d0:4c:9b:ce:94:d2:ff:d1:06:00:15:4a:e0:7a:dc:01: 23:1b:cc:2b:f0:6b:08:b1:28:d4:93:8d:38:4a:9b:c2:b1:d0: 00:05:b1:76:88:75:ad:ff:e4:4f:02:b6:b2:b6:a1:a0:07:52: 0c:37:07:c5:c5:58:96:8f:d0:f1:0a:c4:ab:50:71:7a:62:2b: a0:4a:e7:f7:99:23:4d:0f:7e:74:db:c5:39:1f:b1:0f:5a:3c: 0b:07:ce:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjQxMTIyMTU0ODA3WhcNMjQxMTI5MTU0ODA3WjAYMRYwFAYD VQQDEw02NzQwYTdiNy01YWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvl8QS2/kwXWBn+I01m/wCNZIvVr8RJ4nVqej/rEFu4LPmz49rUH4GMvfKxuX EZBZjNXzBTHh3XOMpR8FHiYt+bFtm+xqrxzKhtgw/ZO78/bFUMo/Yoph++f4clEr KrIblk//lrZRpxz6oV2zPquQF/QbyjzV/NSpI8ravjqhvnBPwzg3Ghx5RcwmuuIP BdOHaOg2MY/fotTtYn7MRrf0dhnaPGdHchXM27GDk9dtm0GT/jWp+tot8NnynP/5 cAnjlSkGBEoYTB0JnmsOistODkon1ltlmXQbQ71vkcgVLXQnZ9UMSD+acrhnZvTj iRUqPUb0L2lhYDCzSYCMGD5JewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcyEpdA PwYvVEeCHqc87g6KO/tiMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdYuWf3BEuxg0+AQOyH+djB1RaGMOc0ivMYO3cBVJq9yawmoMcJGrk bzta+JPnkAgg9P0P0tSH5E3oXw2H+akHwv4uC3nkuRLMGbupxMe25NW8A9bAIik5 eyvUa86Pv2oZ9ybJPLwUML6XTirtbx0Kx1nBQD2p1A3lzdlu00LMkvknL2uCdIsU 15P1kXFUh5Pie/gtBUznRAf8jTdG7eRxYXvrC9BMm86U0v/RBgAVSuB63AEjG8wr 8GsIsSjUk404SpvCsdAABbF2iHWt/+RPAraytqGgB1IMNwfFxViWj9DxCsSrUHF6 YiugSuf3mSNND35028U5H7EPWjwLB87y -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org