$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: gTSRS262Azi7qA/KiGmIIeHyffEJqqY8tb9QCk6Rn/E= Subject key identifier: C1:42:75:5C:97:95:0E:F9:7C:54:52:31:50:CF:3B:4E:81:E6:E2:74 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: E8 Signing time: Sat 23 Nov 2024 03:31:12 +0000 Manifest this update: Sat 23 Nov 2024 03:31:11 +0000 Manifest next update: Sat 30 Nov 2024 03:31:11 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: UPfcyibL7xdSxTh1+bvRf2EAUijB09+4bO8FDfgmnDo=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Nov 23 03:31:11 2024 GMT Not After : Nov 30 03:31:11 2024 GMT Subject: CN=67414c7f-da74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:69:a8:d8:a4:00:e1:09:d6:a3:85:a3:f1:87: b1:0f:f2:7c:0f:48:d4:d0:01:9b:ee:06:98:cf:9d: b9:51:88:bf:d0:89:84:f7:b9:cb:b8:d7:97:fa:24: 47:4d:b7:07:b1:b8:bb:39:af:e8:a4:a6:d3:90:64: 95:cd:54:b0:3f:8e:4b:c7:21:8d:2e:24:09:b8:18: 33:08:b2:6f:bc:1a:de:fc:33:09:d1:f7:f8:3d:b7: 75:fa:7c:ce:5d:fe:f5:f4:2b:82:65:7b:43:7e:aa: dc:eb:06:15:b7:32:d0:0a:48:f2:d5:e3:25:99:1f: 91:30:f3:cb:57:fd:01:e7:4e:5a:e2:9e:dd:bf:d4: 2b:ff:90:dd:1f:2a:f5:83:91:ef:a8:ec:a1:19:eb: 15:ba:fa:d7:c5:c6:e7:21:6a:77:4c:69:54:48:ff: f2:aa:5b:6b:8e:fd:0c:08:9a:07:51:5c:80:33:f7: 24:0f:91:e3:cf:b8:a3:6a:2f:80:b5:cf:15:9f:1a: d8:38:4f:b3:9f:8e:4e:93:ff:ef:2b:d2:ab:2d:de: 9d:fb:be:fc:c9:4e:52:ba:bc:e4:3a:ba:c7:43:84: 70:3a:e3:9a:a5:5d:eb:f8:76:c1:a3:3c:74:c9:c4: ca:e2:b6:1c:0c:b6:03:1b:03:39:39:42:f1:c6:dd: 85:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:42:75:5C:97:95:0E:F9:7C:54:52:31:50:CF:3B:4E:81:E6:E2:74 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:7a:92:75:a8:24:39:7d:aa:22:97:65:5f:2a:1c:fb:c6:30: 55:ee:ca:1a:d0:2d:31:a6:71:cc:23:af:e5:34:67:d1:e1:88: aa:06:11:b6:f7:5d:4c:48:81:51:8c:e1:d1:a8:88:d9:53:55: 2d:2a:21:c5:07:5e:f7:00:11:e6:44:bd:1b:f3:74:26:30:25: 31:d0:8b:4e:0e:58:34:15:a3:e9:3f:ea:55:eb:d3:64:ee:cc: a8:30:0c:a7:56:64:34:bd:1b:ee:42:ca:1b:17:61:ad:bc:db: bb:f2:35:5c:6a:a2:05:3f:aa:ab:63:f1:3c:51:b9:72:a4:ce: 1e:0a:13:4e:70:c9:79:b5:47:d6:ea:6a:08:4b:0c:bb:1a:66: d5:8a:8a:09:99:a6:7a:2b:6a:2a:ee:3d:f7:03:0e:83:e5:f2: fb:11:d1:5e:84:53:cb:40:7b:57:b4:ff:cc:c4:4e:59:f0:9a: 79:8f:4e:61:9c:5e:1c:52:c4:14:1e:d2:13:7e:3b:29:ae:2d: a6:10:42:87:cf:e4:a3:f9:59:ee:26:d7:f3:d1:3b:11:7d:d0: df:f3:4b:7c:56:4d:35:71:da:fe:7a:2f:8b:b6:77:98:b9:f6: c5:54:8b:8b:c6:31:47:b4:ef:38:a7:35:ef:e9:15:7f:18:63: 88:d5:2e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjQxMTIzMDMzMTExWhcNMjQxMTMwMDMzMTExWjAYMRYwFAYD VQQDEw02NzQxNGM3Zi1kYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmmo2KQA4QnWo4Wj8YexD/J8D0jU0AGb7gaYz525UYi/0ImE97nLuNeX+iRH TbcHsbi7Oa/opKbTkGSVzVSwP45LxyGNLiQJuBgzCLJvvBre/DMJ0ff4Pbd1+nzO Xf719CuCZXtDfqrc6wYVtzLQCkjy1eMlmR+RMPPLV/0B505a4p7dv9Qr/5DdHyr1 g5HvqOyhGesVuvrXxcbnIWp3TGlUSP/yqltrjv0MCJoHUVyAM/ckD5Hjz7ijai+A tc8VnxrYOE+zn45Ok//vK9KrLd6d+778yU5SurzkOrrHQ4RwOuOapV3r+HbBozx0 ycTK4rYcDLYDGwM5OULxxt2FcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFCdVyX lQ75fFRSMVDPO06B5uJ0MB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVepJ1qCQ5faoil2VfKhz7xjBV7soa0C0xpnHMI6/lNGfR4YiqBhG2 911MSIFRjOHRqIjZU1UtKiHFB173ABHmRL0b83QmMCUx0ItODlg0FaPpP+pV69Nk 7syoMAynVmQ0vRvuQsobF2GtvNu78jVcaqIFP6qrY/E8UblypM4eChNOcMl5tUfW 6moISwy7GmbViooJmaZ6K2oq7j33Aw6D5fL7EdFehFPLQHtXtP/MxE5Z8Jp5j05h nF4cUsQUHtITfjspri2mEEKHz+Sj+VnuJtfz0TsRfdDf80t8Vk01cdr+ei+LtneY ufbFVIuLxjFHtO84pzXv6RV/GGOI1S6H -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org