$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: jaO68eDAlGQ2q4h41mCC/Sywk+2oFQzLyEEpG3hJ+NY= Subject key identifier: 46:F8:05:9C:88:EC:08:83:25:58:B6:BF:BA:9C:98:A0:9F:66:DC:56 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0A63 Signing time: Wed 20 Nov 2024 19:25:47 +0000 Manifest this update: Wed 20 Nov 2024 19:25:46 +0000 Manifest next update: Wed 27 Nov 2024 19:25:46 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: TA4oYoOTDnsBHfw/cVV0ctg1vKYTkYoRW498J3s10vI=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: /Y6lIt9MMjzPd7oqbEM3bpWnNkzrAJqUKj5To40fFxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Nov 20 19:25:46 2024 GMT Not After : Nov 27 19:25:46 2024 GMT Subject: CN=673e37bb-f92b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f0:11:e4:ce:fb:6d:b5:df:d3:53:5a:e8:6d: 15:e3:02:3c:11:99:2c:9d:2f:4c:ff:3b:04:89:92: c2:cc:86:1e:68:6f:3f:2e:f4:1d:c9:d5:a6:fe:bc: b0:30:af:d4:f6:2e:b6:70:8f:fb:23:31:6e:49:eb: 3d:61:70:d4:1f:fc:16:79:aa:97:97:c4:f6:60:5e: d5:88:84:30:99:2b:5e:b3:03:b4:2e:e3:a6:29:15: 8d:62:1c:4f:c6:b1:7e:6f:34:8c:fa:6d:17:58:29: 65:fd:b6:cd:33:e7:ae:a2:c7:6a:04:d7:f2:7f:d4: 12:21:f0:4e:cd:1f:0f:f3:99:dd:e6:64:eb:34:60: 43:94:3b:2e:57:62:a9:cc:63:d7:4b:0d:d0:14:ef: 3b:d5:ee:6f:49:aa:79:2d:8c:6c:5e:06:6d:cf:4c: 6a:95:18:84:4f:2e:46:9c:ee:57:cd:c8:6b:f0:0b: 1e:e3:53:7e:03:50:d6:8f:09:6d:77:5f:e5:43:dd: a4:8e:cf:0c:b9:61:b6:98:d4:c6:7a:4b:f7:d7:5d: 84:ee:7e:53:47:82:32:c6:97:b8:3e:de:73:3e:70: 4e:0e:da:06:2a:c0:0d:a8:4b:da:a6:84:0c:bb:d1: 55:66:24:aa:d5:6c:b2:0e:84:98:a2:0e:78:ae:c1: aa:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F8:05:9C:88:EC:08:83:25:58:B6:BF:BA:9C:98:A0:9F:66:DC:56 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:08:34:b7:1f:88:c6:e9:1f:11:6c:bb:8f:d7:1f:83:5c:7b: f5:8f:ad:c6:a3:b3:10:e2:cb:24:c3:a8:e6:00:55:d2:df:1c: 73:72:3c:72:e7:07:2f:35:83:7e:a9:c4:09:bc:8f:a3:9d:0f: 2c:b0:12:f9:27:c4:e8:93:6c:1a:6d:f1:b3:bf:6d:31:09:31: e9:35:ca:76:ee:c1:d6:7b:e1:58:89:2e:5d:42:40:a8:b0:80: 04:d0:7a:e8:4f:a3:63:da:e3:0e:e8:e7:b5:fd:a9:c0:77:1c: bb:e6:dc:a7:72:5b:7b:15:b3:f1:2a:38:be:89:7e:98:86:2c: ef:fa:e1:dd:56:7a:fb:6b:f2:c6:f6:ae:b9:f2:d6:36:69:ac: 4b:44:cd:1e:76:c6:bd:c3:11:bd:71:98:de:f3:f5:30:56:c2: e1:85:27:3c:72:30:e0:be:a7:36:e6:2d:a7:8d:98:73:19:1c: 03:6f:4b:92:b7:28:eb:4d:af:37:77:06:36:cd:0b:e5:3e:14: 61:5b:89:9f:20:d1:a0:b0:18:40:e7:82:31:08:56:bc:6d:7e: 8c:fb:7b:11:6b:51:be:eb:65:9c:03:4f:4c:8c:3e:81:ba:66: 7e:f3:ed:57:62:ce:d3:5a:f0:f7:de:7f:c7:c7:57:eb:37:7d: b8:e6:dd:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjQxMTIwMTkyNTQ2WhcNMjQxMTI3MTkyNTQ2WjAYMRYwFAYD VQQDEw02NzNlMzdiYi1mOTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfAR5M77bbXf01Na6G0V4wI8EZksnS9M/zsEiZLCzIYeaG8/LvQdydWm/ryw MK/U9i62cI/7IzFuSes9YXDUH/wWeaqXl8T2YF7ViIQwmSteswO0LuOmKRWNYhxP xrF+bzSM+m0XWCll/bbNM+euosdqBNfyf9QSIfBOzR8P85nd5mTrNGBDlDsuV2Kp zGPXSw3QFO871e5vSap5LYxsXgZtz0xqlRiETy5GnO5Xzchr8Ase41N+A1DWjwlt d1/lQ92kjs8MuWG2mNTGekv3112E7n5TR4Iyxpe4Pt5zPnBODtoGKsANqEvapoQM u9FVZiSq1WyyDoSYog54rsGqSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEb4BZyI 7AiDJVi2v7qcmKCfZtxWMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQCDS3H4jG6R8RbLuP1x+DXHv1j63Go7MQ4sskw6jmAFXS3xxzcjxy 5wcvNYN+qcQJvI+jnQ8ssBL5J8Tok2wabfGzv20xCTHpNcp27sHWe+FYiS5dQkCo sIAE0HroT6Nj2uMO6Oe1/anAdxy75tynclt7FbPxKji+iX6Yhizv+uHdVnr7a/LG 9q658tY2aaxLRM0edsa9wxG9cZje8/UwVsLhhSc8cjDgvqc25i2njZhzGRwDb0uS tyjrTa83dwY2zQvlPhRhW4mfINGgsBhA54IxCFa8bX6M+3sRa1G+62WcA09MjD6B umZ+8+1XYs7TWvD33n/Hx1frN3245t2w -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org