$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: L6LiBnXbENfzOcj+3rCF0RWMg8RIgYwMjtoUDilCtTg= Subject key identifier: E8:7C:C0:33:9E:0E:57:EE:98:95:C1:44:A3:E9:3B:DC:9E:89:29:E9 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 038D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0388 Signing time: Sat 23 Nov 2024 00:22:56 +0000 Manifest this update: Sat 23 Nov 2024 00:22:56 +0000 Manifest next update: Sat 30 Nov 2024 00:22:56 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: MgL+qlA0iaMU7/uJkxQBfJC3px/0V0V/RaBqJzDIr+M=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: OijvdKYC8DjMphaEyFQ4TM5tLnVnkQ/IOeHSMr/fpgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Nov 23 00:22:56 2024 GMT Not After : Nov 30 00:22:56 2024 GMT Subject: CN=67412060-847b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6c:12:f3:e0:44:d8:30:52:13:ca:fb:f6:1f: a8:90:8e:de:d0:a5:ac:99:ec:c3:7e:45:e5:99:99: cf:1c:b5:b6:52:84:76:9f:69:f4:cc:5b:01:44:b3: 3c:41:2e:19:6a:c2:39:69:03:a6:ce:00:ab:90:72: 62:8a:5d:ef:ec:de:ef:59:18:4b:b6:51:dc:45:9b: 65:ba:6a:55:0b:6e:2c:32:97:29:00:e6:70:1e:3a: ef:6a:89:d4:7a:3d:2b:c7:8c:a6:13:5b:55:79:10: bb:e0:e1:37:84:1a:e3:2d:0a:1e:40:4b:12:94:aa: 59:05:f4:59:bb:a3:4e:93:75:d0:70:e9:9a:13:f3: e1:52:53:2e:d2:ca:8a:5a:6e:dd:b2:f7:57:2a:2f: ed:bd:37:bd:cc:bb:68:20:56:27:9e:2e:a1:2f:7e: e8:0a:04:47:ce:df:78:72:f8:2c:dd:17:0a:e5:a6: ee:ea:56:12:88:e8:f2:1f:c8:37:d0:e6:30:05:38: 32:a0:67:19:8c:d9:20:05:e3:4e:7b:89:24:8f:9e: 1a:d8:1c:b0:ea:95:b4:fa:e8:4e:a7:6e:85:48:31: 2d:d0:8b:c1:b2:08:2e:98:8a:41:0a:00:51:43:ca: 15:88:2e:7a:84:db:39:4f:f1:76:3a:1a:ab:3b:05: 30:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7C:C0:33:9E:0E:57:EE:98:95:C1:44:A3:E9:3B:DC:9E:89:29:E9 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e3:60:a4:2f:ac:3c:d7:a2:e8:e1:d0:53:11:c7:db:52:d1: 07:86:1f:ba:5b:93:63:47:2a:94:76:4a:1f:4f:c9:08:7a:65: b0:06:c3:6b:53:24:a1:e6:4d:d6:25:12:17:58:28:1c:64:c3: 38:2c:29:d2:f4:73:35:bc:cb:24:27:c4:f1:6e:02:b4:5a:ca: 9f:a2:02:db:d4:bd:73:a9:fe:77:26:5a:3c:b2:0f:50:ec:bc: df:4e:d0:9f:07:d7:bf:3e:01:a6:49:06:77:3d:e8:19:9a:79: 1a:77:4b:95:04:8f:9f:96:96:7f:70:9c:e7:84:b4:5c:58:d8: f0:f2:c1:98:bb:ff:97:b4:87:32:5f:3a:f6:74:2f:55:79:c5: 9e:1e:9c:df:74:c9:69:5a:c4:91:af:75:30:02:a9:b6:68:67: 71:fb:56:cc:99:86:55:22:e0:4c:a2:af:ef:73:bd:32:57:1f: bb:ae:94:b2:69:68:98:b6:e8:8a:0f:97:44:38:48:c5:72:78: 1c:c0:f7:0a:89:69:48:92:fb:47:10:4b:c8:7d:6e:e0:64:0a: 5c:a6:2b:16:85:00:eb:c3:82:cb:35:c9:ce:23:5e:2a:83:e9: 7f:cb:9b:b5:7c:9f:8b:ed:a2:b2:a7:bc:74:2d:c6:2f:2c:4b: a2:a5:78:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjQxMTIzMDAyMjU2WhcNMjQxMTMwMDAyMjU2WjAYMRYwFAYD VQQDEw02NzQxMjA2MC04NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mwS8+BE2DBSE8r79h+okI7e0KWsmezDfkXlmZnPHLW2UoR2n2n0zFsBRLM8 QS4ZasI5aQOmzgCrkHJiil3v7N7vWRhLtlHcRZtlumpVC24sMpcpAOZwHjrvaonU ej0rx4ymE1tVeRC74OE3hBrjLQoeQEsSlKpZBfRZu6NOk3XQcOmaE/PhUlMu0sqK Wm7dsvdXKi/tvTe9zLtoIFYnni6hL37oCgRHzt94cvgs3RcK5abu6lYSiOjyH8g3 0OYwBTgyoGcZjNkgBeNOe4kkj54a2Byw6pW0+uhOp26FSDEt0IvBsggumIpBCgBR Q8oViC56hNs5T/F2OhqrOwUwBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOh8wDOe DlfumJXBRKPpO9yeiSnpMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU42CkL6w816Lo4dBTEcfbUtEHhh+6W5NjRyqUdkofT8kIemWwBsNr UySh5k3WJRIXWCgcZMM4LCnS9HM1vMskJ8TxbgK0WsqfogLb1L1zqf53Jlo8sg9Q 7LzfTtCfB9e/PgGmSQZ3PegZmnkad0uVBI+flpZ/cJznhLRcWNjw8sGYu/+XtIcy Xzr2dC9VecWeHpzfdMlpWsSRr3UwAqm2aGdx+1bMmYZVIuBMoq/vc70yVx+7rpSy aWiYtuiKD5dEOEjFcngcwPcKiWlIkvtHEEvIfW7gZApcpisWhQDrw4LLNcnOI14q g+l/y5u1fJ+L7aKyp7x0LcYvLEuipXia -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org