$ rpki-client -vvf rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft File: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft (raw, json) Hash identifier: Lcl6MvpKKbB/rKgT0NeMgEqv467SiclHGvyoWqm09pU= Subject key identifier: 8D:A6:92:2E:BB:5E:A2:1A:C7:2F:ED:BF:BE:C9:B8:6F:88:B3:7D:E1 Authority key identifier: E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 Certificate issuer: /CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft Manifest number: 083E Signing time: Fri 22 Nov 2024 20:28:08 +0000 Manifest this update: Fri 22 Nov 2024 20:28:07 +0000 Manifest next update: Fri 29 Nov 2024 20:28:07 +0000 Files and hashes: 1: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl (hash: 4i2n+3PawraRXLiqj4Nhp5wQ8jAdbq1EB2cJGUEb2bI=) 2: A12DD18E2F1C11EDA3E29B09C4F9AE02.roa (hash: JY394gUy9qqM6BqtEt3A+TeeEC3ZSaP+KRzIxp12INs=) 3: A29A66FE2F1C11EDA3E29B09C4F9AE02.roa (hash: pwrQo06SW1WaZHmpSMN3Di6drTMadsg0IhrZWaRW7r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Validity Not Before: Nov 22 20:28:07 2024 GMT Not After : Nov 29 20:28:07 2024 GMT Subject: CN=6740e957-f7c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:18:54:14:19:6a:3a:4a:57:32:2d:a7:bd:01: 23:63:19:e2:a1:2f:84:ce:96:83:fb:bc:e6:a6:5e: 62:0d:bb:0f:5e:81:85:c5:73:40:d5:16:f5:36:05: 2c:1e:3c:ab:f2:b3:e1:12:e7:15:7e:03:6e:cb:8e: 16:10:bb:dd:45:5c:b1:a7:00:7a:8d:93:a7:6d:3a: 2f:d1:a5:a4:77:5d:b3:2a:d2:6e:3d:78:e0:00:79: 9e:99:88:45:e1:63:be:61:ef:37:d1:50:e7:61:5b: 90:78:fb:fd:14:87:92:f4:b4:58:e8:89:a0:1c:ef: 7b:5a:ea:e7:07:bd:2f:88:65:3a:40:38:fe:e1:d4: a1:a7:f1:3e:3b:a0:9e:e3:ad:d8:6c:cb:0f:03:4a: dd:f8:b2:ab:0c:16:ce:6f:22:36:e3:d4:44:ab:f1: 18:02:71:70:65:23:a8:81:76:df:fa:d3:94:04:cb: 0e:a3:53:b3:59:77:3b:bd:21:2f:c7:00:7a:4b:4f: 82:1f:10:48:16:1c:75:eb:5f:a2:de:97:f7:b7:b4: a8:05:f0:34:87:83:8d:13:c6:87:56:e7:59:ca:e2: f0:75:54:49:f3:70:37:31:44:b2:02:4a:20:2b:dc: 21:19:a3:4c:fb:fe:f1:0b:59:e0:cd:eb:77:09:cb: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A6:92:2E:BB:5E:A2:1A:C7:2F:ED:BF:BE:C9:B8:6F:88:B3:7D:E1 X509v3 Authority Key Identifier: keyid:E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:8d:c1:25:b4:70:d5:32:83:e5:4b:5d:7f:33:5d:1b:3e:53: c6:a9:ca:53:15:58:49:0c:74:29:0e:08:02:9c:4b:d3:3f:fa: bb:d9:79:fe:45:a2:dc:65:d4:98:7c:95:c3:63:4e:73:58:c3: da:bc:70:5f:bb:1e:94:3c:02:6c:e3:88:b3:3b:cd:b6:a0:50: 4b:5b:2a:3f:0d:69:18:d1:15:43:06:f6:88:da:b9:fc:4c:aa: 48:88:86:dd:76:25:56:1b:9c:ad:c0:b6:85:0a:ae:7b:2b:c4: 58:9a:01:2c:a2:12:20:2a:ba:a3:61:d5:34:48:af:49:68:b5: 74:ca:ac:3c:95:2e:3f:54:ac:4f:67:4a:e9:8a:38:44:8e:26: 2b:05:cd:0e:60:01:83:bf:53:26:56:8d:04:04:69:45:4e:c2: 58:e7:e8:a8:ab:a3:1a:dc:39:81:07:5e:3d:2d:10:24:b0:4b: 15:69:ef:40:2a:de:ff:12:b1:22:7a:35:7c:9b:7d:1f:f5:4c: 0c:5e:0f:2f:50:55:e1:f1:9c:33:70:6c:b3:b1:c1:f7:d6:d9: 49:b0:89:6d:9d:19:e2:a2:f5:b4:4e:36:0f:26:15:fd:4c:fc: 7b:b7:f3:8d:ab:a0:30:9c:75:09:15:1e:8c:77:aa:3f:c9:d6: d8:53:b0:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyRjcxMTAvBgNVBAUTKEU1MDI3NTdDNjE3QzIxRDQ3QjFCMzU1OUMwOUQ2RUE3 QzNBRkU0MDMwHhcNMjQxMTIyMjAyODA3WhcNMjQxMTI5MjAyODA3WjAYMRYwFAYD VQQDEw02NzQwZTk1Ny1mN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhhUFBlqOkpXMi2nvQEjYxnioS+EzpaD+7zmpl5iDbsPXoGFxXNA1Rb1NgUs Hjyr8rPhEucVfgNuy44WELvdRVyxpwB6jZOnbTov0aWkd12zKtJuPXjgAHmemYhF 4WO+Ye830VDnYVuQePv9FIeS9LRY6ImgHO97WurnB70viGU6QDj+4dShp/E+O6Ce 463YbMsPA0rd+LKrDBbObyI249REq/EYAnFwZSOogXbf+tOUBMsOo1OzWXc7vSEv xwB6S0+CHxBIFhx161+i3pf3t7SoBfA0h4ONE8aHVudZyuLwdVRJ83A3MUSyAkog K9whGaNM+/7xC1ngzet3CcuJYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2mki67 XqIaxy/tv77JuG+Is33hMB8GA1UdIwQYMBaAFOUCdXxhfCHUexs1WcCdbqfDr+QD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTJGNy83Q0M0NUZBRUJB QUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElkUjdHelZad0oxdXA4T3Y1 QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRSjFmR0Y4SWRSN0d6Vlp3SjF1cDhPdjVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJGNy83Q0M0NUZBRUJBQUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElk UjdHelZad0oxdXA4T3Y1QU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGjcEltHDVMoPlS11/M10bPlPGqcpTFVhJDHQpDggCnEvTP/q72Xn+ RaLcZdSYfJXDY05zWMPavHBfux6UPAJs44izO822oFBLWyo/DWkY0RVDBvaI2rn8 TKpIiIbddiVWG5ytwLaFCq57K8RYmgEsohIgKrqjYdU0SK9JaLV0yqw8lS4/VKxP Z0rpijhEjiYrBc0OYAGDv1MmVo0EBGlFTsJY5+ioq6Ma3DmBB149LRAksEsVae9A Kt7/ErEiejV8m30f9UwMXg8vUFXh8ZwzcGyzscH31tlJsIltnRniovW0TjYPJhX9 TPx7t/ONq6AwnHUJFR6Md6o/ydbYU7Ae -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org