$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: W8gs4o8VJh7aRsVduxj2jtE9/zQ3YRYxEqguncfRrx0= Subject key identifier: ED:B6:61:83:90:A7:2E:DB:14:D5:E7:FA:F6:67:7C:81:2C:C4:38:72 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 01D3 Signing time: Thu 21 Nov 2024 01:44:08 +0000 Manifest this update: Thu 21 Nov 2024 01:44:07 +0000 Manifest next update: Thu 28 Nov 2024 01:44:07 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: qGeaRUg7Q15luZeI5DVGIRC7qvxLYYVimuU1+xkrTHM=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: BhHsuDvF2f7620isXUel0aXspowaKrXhDpQE+ZQofDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Nov 21 01:44:07 2024 GMT Not After : Nov 28 01:44:07 2024 GMT Subject: CN=673e9067-5981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d8:55:c4:7b:34:bd:19:aa:86:b5:74:39:94: 40:17:c3:78:f5:80:af:8b:58:96:bc:92:d1:42:42: 6d:6a:02:c1:a7:62:72:5a:d6:49:e1:f8:a0:72:04: 0d:34:de:d7:b6:6b:0e:58:9a:89:76:3f:e8:37:07: d4:34:94:fb:f7:78:4d:81:ef:ac:50:50:d0:b1:d6: 75:8f:13:1c:a2:a2:32:60:23:39:ac:c3:6e:b5:9a: f5:36:f6:e5:44:a8:fd:fb:b7:a5:06:05:d9:1b:d6: ef:13:e0:c0:a0:28:93:39:97:23:f4:70:66:b0:63: 6a:91:d7:15:b0:dd:65:e9:48:f4:28:0c:89:7f:5d: f8:a2:32:92:b7:5a:1b:a0:e3:6a:32:b0:97:b5:a3: 5a:45:2d:0b:56:59:86:2e:f3:7b:8c:f4:ea:50:dd: 5c:d8:90:27:9c:27:82:5a:fb:e4:9d:e5:09:61:96: 80:53:34:ba:b1:a0:84:b6:17:ff:34:6c:4b:4a:b7: 1d:94:17:e6:28:c5:f9:07:19:7f:4a:f4:18:7f:95: fb:8a:84:36:3c:fa:7f:a9:09:2c:f0:9f:01:b6:cb: 4a:12:fc:68:fa:a1:23:6f:d0:ee:6a:86:3d:d1:92: 60:f3:0b:7c:0e:1d:c1:3a:7b:34:c6:42:87:43:a1: db:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B6:61:83:90:A7:2E:DB:14:D5:E7:FA:F6:67:7C:81:2C:C4:38:72 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:0f:7f:f9:d1:25:b3:1a:d6:57:19:1f:37:00:73:6f:bb:7d: 35:51:d6:4c:57:69:e9:89:fe:af:4f:18:bd:76:66:d1:43:a7: 24:e1:ea:7a:fb:ed:c5:1f:6a:53:97:10:b9:ea:b3:62:99:d6: 98:ba:4d:62:bd:7a:1a:49:84:2b:c6:f7:c0:9a:23:54:e3:78: ce:7d:e7:9b:30:ad:bf:ee:48:2a:27:e5:41:7e:97:3f:dc:5e: b9:8a:c3:f6:81:7d:df:34:03:8f:ce:79:21:2f:4d:6a:08:2c: 66:7e:d6:88:56:92:59:a5:a9:da:5b:92:bc:50:06:22:d9:17: aa:85:6b:ea:68:ab:9a:72:66:aa:5c:b4:39:4f:72:a6:49:0e: af:86:9a:9a:00:22:5c:1d:58:87:1a:28:97:f3:20:f7:15:be: f8:7f:4b:c9:fc:c2:49:88:1e:94:7c:59:bb:42:5e:21:9d:1b: e0:34:68:4d:bf:98:1e:b5:62:9f:6e:85:2e:41:c2:51:a7:fa: f2:e7:e9:77:8b:ff:ca:36:d9:7d:b3:65:64:b1:37:ed:8a:6a: 55:0e:88:95:ee:a2:c4:90:21:9f:b6:94:49:dd:61:dd:1a:9f: f6:b9:1c:8d:f1:fa:6a:73:f5:0d:3f:9f:a7:49:c4:b6:c1:84: e0:1b:61:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjQxMTIxMDE0NDA3WhcNMjQxMTI4MDE0NDA3WjAYMRYwFAYD VQQDEw02NzNlOTA2Ny01OTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9hVxHs0vRmqhrV0OZRAF8N49YCvi1iWvJLRQkJtagLBp2JyWtZJ4figcgQN NN7XtmsOWJqJdj/oNwfUNJT793hNge+sUFDQsdZ1jxMcoqIyYCM5rMNutZr1Nvbl RKj9+7elBgXZG9bvE+DAoCiTOZcj9HBmsGNqkdcVsN1l6Uj0KAyJf134ojKSt1ob oONqMrCXtaNaRS0LVlmGLvN7jPTqUN1c2JAnnCeCWvvkneUJYZaAUzS6saCEthf/ NGxLSrcdlBfmKMX5Bxl/SvQYf5X7ioQ2PPp/qQks8J8BtstKEvxo+qEjb9DuaoY9 0ZJg8wt8Dh3BOns0xkKHQ6HbowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO22YYOQ py7bFNXn+vZnfIEsxDhyMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChD3/50SWzGtZXGR83AHNvu301UdZMV2npif6vTxi9dmbRQ6ck4ep6 ++3FH2pTlxC56rNimdaYuk1ivXoaSYQrxvfAmiNU43jOfeebMK2/7kgqJ+VBfpc/ 3F65isP2gX3fNAOPznkhL01qCCxmftaIVpJZpanaW5K8UAYi2ReqhWvqaKuacmaq XLQ5T3KmSQ6vhpqaACJcHViHGiiX8yD3Fb74f0vJ/MJJiB6UfFm7Ql4hnRvgNGhN v5getWKfboUuQcJRp/ry5+l3i//KNtl9s2VksTftimpVDoiV7qLEkCGftpRJ3WHd Gp/2uRyN8fpqc/UNP5+nScS2wYTgG2HI -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org