$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: vvTu1DM4lCZjXgtFFErJyrXyAnTE1dl4uhABFM8qJcw= Subject key identifier: F7:6E:32:AD:D9:9D:FE:95:C8:2A:78:2F:05:06:C5:E3:F1:3F:F3:B2 Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: 14 Signing time: Wed 25 Dec 2024 06:13:26 +0000 Manifest this update: Wed 25 Dec 2024 06:13:26 +0000 Manifest next update: Wed 01 Jan 2025 06:13:26 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: gsGyBD4fGHY+KBvG0XJmvznRvqNPRUO9FWXthlHlJU4=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: nbV8I8B5L9VlcB43xVEy++6DcoJ46d11D4vQWQU9XwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Validity Not Before: Dec 25 06:13:26 2024 GMT Not After : Jan 1 06:13:26 2025 GMT Subject: CN=676ba286-3a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5c:be:39:e7:8d:b0:a2:77:c8:39:33:ab:b3: 0d:2f:23:8d:75:89:fe:99:b4:22:bb:dc:21:93:99: a6:43:cb:7b:63:ba:38:1e:55:be:2d:75:81:2e:1d: 61:54:fd:96:ce:e8:bf:42:f4:b4:c0:2d:cc:cf:16: b5:ec:7f:95:8e:b7:55:fd:5c:38:91:c0:62:82:a1: ec:4d:e0:a2:bf:8d:0f:85:71:46:e7:c0:ab:0c:39: ec:3b:0f:48:5a:e6:c2:23:68:e4:aa:1f:e5:f9:e2: 55:11:21:0e:c5:84:8d:90:e6:41:c8:17:c7:5e:14: 0f:69:d5:32:70:bf:a8:47:de:f0:f5:7e:03:c3:94: e7:3f:b4:f0:55:72:10:f0:97:fe:a5:64:94:6c:c6: 92:66:b7:b7:61:2d:7a:4e:12:cd:38:01:b1:27:65: 65:03:a6:34:8a:9f:73:e2:f3:a2:d9:c6:d2:94:8d: 24:11:b8:69:96:89:32:bd:4e:8b:7e:dd:e8:8e:e9: 75:a5:e0:31:d7:e5:f3:0b:f5:e1:01:56:cf:b9:34: f1:9c:9a:f0:fb:92:0a:3f:ab:77:c8:a7:2e:34:af: d1:46:6a:0b:6c:0b:bb:b4:07:bd:03:77:d5:f2:d2: f2:8f:90:93:8a:8a:6f:63:8f:00:5d:64:41:2c:93: 33:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6E:32:AD:D9:9D:FE:95:C8:2A:78:2F:05:06:C5:E3:F1:3F:F3:B2 X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a0:ca:52:3d:62:d7:7c:98:bb:93:81:61:ad:8b:64:08:3a: 4a:14:ae:ae:dc:80:78:17:16:3a:1b:f8:6c:10:46:2f:d2:56: fa:14:d7:b2:25:8e:b0:33:23:a6:48:14:e9:b8:f8:8d:1c:5e: c6:60:67:d1:77:6c:cd:10:20:69:22:9d:93:95:1e:11:da:0d: 47:51:27:4c:ac:d5:01:ab:9e:60:0a:3a:27:bc:16:c4:bf:b5: 85:ec:fa:c5:ac:ea:91:be:0b:dc:00:1f:8d:03:75:17:0d:ff: eb:58:56:bf:44:c6:61:93:32:87:a7:03:e0:53:1f:de:0c:f8: 72:7c:5e:09:2b:48:04:36:ae:05:7a:2c:14:24:d7:ab:cd:94: c5:65:65:35:16:f5:d9:94:db:51:1e:5f:97:a8:af:ca:17:64: ff:e0:f4:12:15:0b:8a:3a:21:18:ed:ac:fb:da:38:c4:17:d9: 17:a0:95:3b:e7:29:df:c9:78:a4:c0:b1:36:b0:ab:83:c5:93: e9:f6:cd:ef:5b:a9:b0:e8:02:1b:03:09:bb:52:4c:f2:0b:72: 07:dd:ab:90:f8:59:2d:fa:f6:ce:5b:e8:b7:b7:5b:b9:61:25: e1:68:9d:d8:14:b9:62:2b:d8:f3:f9:87:6f:91:0e:74:2d:19: cd:34:d1:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RThEQjExMC8GA1UEBRMoNDA2MTg2M0RERjQzRTdCM0IxODlFM0M5QzMyMTdCQzEy QkIzNUYyMTAeFw0yNDEyMjUwNjEzMjZaFw0yNTAxMDEwNjEzMjZaMBgxFjAUBgNV BAMTDTY3NmJhMjg2LTNhOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIXL45542wonfIOTOrsw0vI411if6ZtCK73CGTmaZDy3tjujgeVb4tdYEuHWFU /ZbO6L9C9LTALczPFrXsf5WOt1X9XDiRwGKCoexN4KK/jQ+FcUbnwKsMOew7D0ha 5sIjaOSqH+X54lURIQ7FhI2Q5kHIF8deFA9p1TJwv6hH3vD1fgPDlOc/tPBVchDw l/6lZJRsxpJmt7dhLXpOEs04AbEnZWUDpjSKn3Pi86LZxtKUjSQRuGmWiTK9Tot+ 3eiO6XWl4DHX5fML9eEBVs+5NPGcmvD7kgo/q3fIpy40r9FGagtsC7u0B70Dd9Xy 0vKPkJOKim9jjwBdZEEskzOjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU924yrdmd /pXIKngvBQbF4/E/87IwHwYDVR0jBBgwFoAUQGGGPd9D57OxiePJwyF7wSuzXyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFOERCL0I0OEUyNUY0Qjc2 MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdHR1BkOUQ1N094aWVQSnd5Rjd3U3V6WHlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlF OERCL0I0OEUyNUY0Qjc2MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdP eGllUEp3eUY3d1N1elh5RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIegylI9Ytd8mLuTgWGti2QIOkoUrq7cgHgXFjob+GwQRi/SVvoU17Il jrAzI6ZIFOm4+I0cXsZgZ9F3bM0QIGkinZOVHhHaDUdRJ0ys1QGrnmAKOie8FsS/ tYXs+sWs6pG+C9wAH40DdRcN/+tYVr9ExmGTMoenA+BTH94M+HJ8XgkrSAQ2rgV6 LBQk16vNlMVlZTUW9dmU21EeX5eor8oXZP/g9BIVC4o6IRjtrPvaOMQX2ReglTvn Kd/JeKTAsTawq4PFk+n2ze9bqbDoAhsDCbtSTPILcgfdq5D4WS369s5b6Le3W7lh JeFondgUuWIr2PP5h2+RDnQtGc000dQ= -----END CERTIFICATE-----Generated at Wed Dec 25 08:01:22 2024 by rpki-client on console-fra.rpki-client.org