$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: JyQcFZvQJzzZMgoD2Gl05sPa+PIL3gXNjNdadgBrDX8= Subject key identifier: A7:42:1C:F4:EB:70:00:D2:15:73:2A:EE:3A:63:73:77:50:A0:C3:45 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 204D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 5464 Signing time: Fri 22 Nov 2024 14:55:00 +0000 Manifest this update: Fri 22 Nov 2024 14:54:59 +0000 Manifest next update: Fri 29 Nov 2024 14:54:59 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: IQGGKlaXz18gm2pTyCr6yK/8ZBP7NM32nlX8TFH7mbk=) 2: 40D6370E09EA11EA95045455C4F9AE02.roa (hash: wZRNUd2fCyBuoTSJ470WFsMEQypHqEO+4iPnq7zf5og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8269 (0x204d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Nov 22 14:54:59 2024 GMT Not After : Nov 29 14:54:59 2024 GMT Subject: CN=67409b43-be16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:15:7b:ba:b8:c6:78:72:c8:b4:e8:1e:9a: 91:29:7c:bf:51:86:c9:02:d6:04:d9:fe:25:72:be: b4:66:b1:e9:18:cd:30:78:76:bc:1d:f2:18:b3:13: 77:bd:09:d9:14:f8:85:a3:b8:41:04:a3:62:bf:7a: 96:71:54:31:3d:ae:65:c4:3a:86:2a:2d:57:e3:4f: ff:79:4c:97:23:06:fe:df:dd:7f:b7:87:73:50:cb: 26:5f:bf:45:06:6e:b9:17:57:c2:34:f7:c5:7a:f6: c2:1c:d4:6b:4f:46:0c:28:8c:d3:f2:e0:1d:ac:32: 29:a8:d9:c1:dd:f8:f8:4e:7e:c5:92:94:55:f6:d0: a7:4a:66:98:d4:20:39:d2:c8:58:5d:4e:86:2a:cc: f3:86:40:d8:25:63:35:b6:5f:52:29:af:a9:14:d9: 8b:a6:b5:ab:9d:65:fd:d0:5d:cf:09:e7:2d:a1:71: af:75:b5:8d:1f:47:1b:8b:64:55:f5:87:f1:b3:b4: c9:cf:a4:64:c0:32:36:78:93:b6:e0:97:d2:d3:ae: 66:e8:c2:71:21:26:0d:66:ee:26:6e:ea:97:77:80: 21:5d:56:86:ac:e1:b4:58:06:d5:91:03:6b:76:91: d6:81:95:5d:7c:af:6e:1e:bb:a1:7c:2c:31:3b:57: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:42:1C:F4:EB:70:00:D2:15:73:2A:EE:3A:63:73:77:50:A0:C3:45 X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:0d:46:40:48:4a:77:74:54:b3:51:25:64:b9:5c:4e:76:4d: 19:ae:cb:c2:47:df:36:3a:8e:fc:4d:57:38:82:42:a0:95:c1: 77:bf:ec:07:ac:0f:3e:5b:8b:a0:ba:d2:c6:2b:0f:17:84:59: 78:08:fd:12:d7:55:45:0a:4c:81:80:4c:a3:7a:72:f9:24:35: cd:3e:2b:2b:5c:b8:ea:2a:17:34:d3:cf:ab:79:c2:03:c4:53: a9:06:3c:86:55:83:cb:5d:78:2a:46:c3:5c:fa:d2:86:90:1c: 2f:5c:ef:8f:57:31:64:8d:c1:6b:d2:e3:13:b3:24:18:ce:52: 8e:bc:5e:d3:43:ab:21:db:cd:30:17:53:25:3b:8d:5b:10:c0: aa:2b:86:29:39:c3:70:c0:80:b8:d5:1d:7a:02:29:35:71:b3: 0a:d0:75:1c:a8:ac:fd:0c:bd:fb:93:cb:28:04:1c:81:cb:64: f3:8a:67:ff:d9:4a:87:fa:a7:84:d5:65:30:da:99:21:ac:f7: 9f:01:82:26:bd:60:8b:9c:4a:e7:ed:a3:ef:0b:f8:cc:05:b5: 9f:7a:dd:43:be:83:83:c0:85:49:18:d3:46:77:b1:de:3b:5c: 38:16:14:6a:82:fe:35:29:3a:4f:23:73:66:22:36:e9:14:17: be:3b:f0:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjQxMTIyMTQ1NDU5WhcNMjQxMTI5MTQ1NDU5WjAYMRYwFAYD VQQDEw02NzQwOWI0My1iZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OwVe7q4xnhyyLToHpqRKXy/UYbJAtYE2f4lcr60ZrHpGM0weHa8HfIYsxN3 vQnZFPiFo7hBBKNiv3qWcVQxPa5lxDqGKi1X40//eUyXIwb+391/t4dzUMsmX79F Bm65F1fCNPfFevbCHNRrT0YMKIzT8uAdrDIpqNnB3fj4Tn7FkpRV9tCnSmaY1CA5 0shYXU6GKszzhkDYJWM1tl9SKa+pFNmLprWrnWX90F3PCectoXGvdbWNH0cbi2RV 9Yfxs7TJz6RkwDI2eJO24JfS065m6MJxISYNZu4mbuqXd4AhXVaGrOG0WAbVkQNr dpHWgZVdfK9uHruhfCwxO1cWOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdCHPTr cADSFXMq7jpjc3dQoMNFMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByDUZASEp3dFSzUSVkuVxOdk0ZrsvCR982Oo78TVc4gkKglcF3v+wH rA8+W4ugutLGKw8XhFl4CP0S11VFCkyBgEyjenL5JDXNPisrXLjqKhc008+recID xFOpBjyGVYPLXXgqRsNc+tKGkBwvXO+PVzFkjcFr0uMTsyQYzlKOvF7TQ6sh280w F1MlO41bEMCqK4YpOcNwwIC41R16Aik1cbMK0HUcqKz9DL37k8soBByBy2Tzimf/ 2UqH+qeE1WUw2pkhrPefAYImvWCLnErn7aPvC/jMBbWfet1DvoODwIVJGNNGd7He O1w4FhRqgv41KTpPI3NmIjbpFBe+O/Dm -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org