$ rpki-client -vvf rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft File: q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft (raw, json) Hash identifier: fihBv0SA4xB+KK64tX7RftQZhAb0I2omaELxUBaTRrw= Subject key identifier: 22:35:FB:23:DE:63:FF:3D:96:2F:AF:8D:C9:22:96:13:D4:C0:89:E1 Authority key identifier: AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 Certificate issuer: /CN=A9182A08/serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft Manifest number: 0827 Signing time: Fri 22 Nov 2024 20:31:40 +0000 Manifest this update: Fri 22 Nov 2024 20:31:40 +0000 Manifest next update: Fri 29 Nov 2024 20:31:40 +0000 Files and hashes: 1: q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl (hash: i4GUOD5jGmbA+jeapVOMNwpY573s4FU+CsTz88HMHZE=) 2: AAA8232C123411ED90E8CA59C4F9AE02.roa (hash: +d1wvy8yQ3YoFLntNLyk9Fck1IbhN/uojUrTCK6EF5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182A08/serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Validity Not Before: Nov 22 20:31:40 2024 GMT Not After : Nov 29 20:31:40 2024 GMT Subject: CN=6740ea2c-72cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:aa:48:56:00:c0:e3:4c:b7:a9:f2:4b:48:d1: b4:96:e2:e5:54:e3:17:fb:f0:ff:72:26:03:d5:ca: 58:41:89:d2:43:7b:bd:f0:75:97:b8:e9:b5:78:03: 74:42:0b:54:46:1a:26:de:80:2b:b7:4e:53:9d:c2: 23:a1:fb:85:8d:9f:b4:ea:3e:ce:17:e3:09:13:63: f0:b1:a7:21:fd:05:5a:e4:09:48:54:a6:87:51:9b: 56:e7:f0:87:50:1f:e8:0e:65:1c:00:bb:26:92:ec: b3:16:d4:6a:1b:28:c9:26:13:c3:27:9f:30:37:9c: 99:f5:c5:b5:e0:7c:00:81:21:b1:c4:cc:21:ee:1d: 19:95:58:0a:13:43:c2:5b:ac:d6:0c:d0:c6:79:9a: 7b:cf:9f:b0:3e:c5:b6:b7:24:b5:fa:5c:be:a6:fd: aa:d0:d1:a9:36:ff:79:1f:b8:eb:19:0b:a5:6f:a9: 9f:b5:90:6d:4e:de:a0:8a:01:11:8b:e3:f1:d2:47: 28:40:74:ef:c5:c9:f5:1b:bc:9f:a2:cb:67:6c:d9: b7:d9:5a:05:9f:b7:22:be:2e:ff:42:ff:0d:64:d3: 3d:88:f4:9a:59:08:9b:96:e0:6b:48:9c:66:4e:43: 07:78:a7:c8:e9:24:fb:0f:e1:91:ef:80:e7:39:f0: dc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:FB:23:DE:63:FF:3D:96:2F:AF:8D:C9:22:96:13:D4:C0:89:E1 X509v3 Authority Key Identifier: keyid:AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:db:54:84:b6:7d:42:c5:45:8d:a0:67:2a:e0:9c:ee:52:e4: e5:74:45:47:95:df:3d:bf:27:d4:0b:28:f7:c7:7c:e0:1f:d2: 14:30:ce:58:2b:75:79:1b:23:04:c8:87:5e:d2:70:99:96:e4: ee:93:e7:88:2f:62:5b:44:a2:c0:45:e2:2d:c5:bc:57:63:10: f9:61:f6:13:57:87:07:8b:42:c6:6d:c5:c7:b4:68:22:be:f7: e9:50:57:92:a6:fc:df:9b:48:46:ec:5d:44:96:d2:d0:94:0a: 8e:08:0b:3b:30:39:0d:21:f1:5d:44:07:fb:ca:02:b6:25:7e: 88:85:b2:33:1f:2d:af:1f:30:fc:62:16:dd:d7:2e:69:ad:62: 79:ac:bd:cc:d6:f9:11:14:ba:ea:7e:3f:3b:34:a1:bb:04:21: 77:0c:f3:97:b6:b6:b0:f4:6f:aa:30:ef:f5:a8:da:7b:28:cc: ac:b4:2a:ba:46:58:9b:03:0a:0f:52:d5:ac:50:f8:40:ab:4c: d2:9c:cc:0b:45:5f:98:3d:7c:d1:25:d1:37:5a:88:03:d6:67: 75:48:4a:5a:0c:14:4d:cd:7f:e2:76:0a:0c:7e:2a:81:d5:84: 25:3f:fc:2e:a7:17:9d:6b:7e:8d:7e:bd:f5:a9:60:93:f3:c0: 17:87:90:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJBMDgxMTAvBgNVBAUTKEFCRUE5MTk0ODg4Njc3OTI3QzUwOTAzRkJCRjFEREUz NzREMDYyQzkwHhcNMjQxMTIyMjAzMTQwWhcNMjQxMTI5MjAzMTQwWjAYMRYwFAYD VQQDEw02NzQwZWEyYy03MmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6pIVgDA40y3qfJLSNG0luLlVOMX+/D/ciYD1cpYQYnSQ3u98HWXuOm1eAN0 QgtURhom3oArt05TncIjofuFjZ+06j7OF+MJE2Pwsach/QVa5AlIVKaHUZtW5/CH UB/oDmUcALsmkuyzFtRqGyjJJhPDJ58wN5yZ9cW14HwAgSGxxMwh7h0ZlVgKE0PC W6zWDNDGeZp7z5+wPsW2tyS1+ly+pv2q0NGpNv95H7jrGQulb6mftZBtTt6gigER i+Px0kcoQHTvxcn1G7yfostnbNm32VoFn7civi7/Qv8NZNM9iPSaWQibluBrSJxm TkMHeKfI6ST7D+GR74DnOfDcMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI1+yPe Y/89li+vjckilhPUwInhMB8GA1UdIwQYMBaAFKvqkZSIhneSfFCQP7vx3eN00GLJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkEwOC9EMTlENThGMEJG NTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1SjhVSkFfdV9IZDQzVFFZ c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtcVJsSWlHZDVKOFVKQV91X0hkNDNUUVlzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkEwOC9EMTlENThGMEJGNTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1 SjhVSkFfdV9IZDQzVFFZc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ21SEtn1CxUWNoGcq4JzuUuTldEVHld89vyfUCyj3x3zgH9IUMM5Y K3V5GyMEyIde0nCZluTuk+eIL2JbRKLAReItxbxXYxD5YfYTV4cHi0LGbcXHtGgi vvfpUFeSpvzfm0hG7F1EltLQlAqOCAs7MDkNIfFdRAf7ygK2JX6IhbIzHy2vHzD8 Yhbd1y5prWJ5rL3M1vkRFLrqfj87NKG7BCF3DPOXtraw9G+qMO/1qNp7KMystCq6 RlibAwoPUtWsUPhAq0zSnMwLRV+YPXzRJdE3WogD1md1SEpaDBRNzX/idgoMfiqB 1YQlP/wupxeda36Nfr31qWCT88AXh5DD -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org