$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: 0B5XNQr3JCM6OjxBdJjJdGuPYEXW4u6fx4HP3h3S8Lg= Subject key identifier: 88:7B:BC:CA:EB:D4:DB:43:F9:5B:46:66:57:1E:6D:0E:1A:C5:C2:A7 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 015F Signing time: Sat 23 Nov 2024 02:25:41 +0000 Manifest this update: Sat 23 Nov 2024 02:25:40 +0000 Manifest next update: Sat 30 Nov 2024 02:25:40 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 8IpkGQDQYkQR3MN+EGn2fJe2qMN+2l/80fDMVuQVKAI=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: oyJ8pYc57E6anvBg+OfGz7YjmNkraWU0j/Nep9q9F5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Nov 23 02:25:40 2024 GMT Not After : Nov 30 02:25:40 2024 GMT Subject: CN=67413d24-a7e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:8a:b6:8f:11:df:e3:1c:22:56:0e:7f:3f: f4:f6:df:86:6b:5d:7c:f5:cc:46:88:0a:f6:a8:a4: fc:96:70:5e:d4:52:29:57:d0:68:51:a2:5d:f2:18: 09:2d:45:8a:7d:9d:ea:bd:db:97:18:f4:28:85:83: 8d:41:b8:8e:79:3b:14:29:8d:90:c6:55:bd:1f:f3: af:9f:c5:e2:82:49:10:be:0b:be:32:8a:1f:1c:fe: 2a:e6:dd:7f:a3:e7:6e:5c:4f:80:52:36:08:c0:1c: 5e:4b:ed:ac:2f:f0:0f:5e:b5:2d:da:c9:62:7c:e0: 2f:69:23:43:66:6c:bd:fc:8a:5b:61:35:7c:d5:aa: 3f:9d:ca:ce:c8:73:bd:ea:76:f7:de:2f:52:10:83: 13:bd:15:9b:62:24:70:93:d5:2b:96:3e:f1:29:07: 17:53:38:56:13:6c:af:26:13:d9:d5:c4:9c:bd:88: 98:a8:9c:33:d6:5c:ce:77:8e:a7:69:69:aa:ad:09: 60:3e:8f:f0:e4:68:22:e0:73:99:c0:eb:4b:7f:b7: bd:f2:4d:87:8a:45:dd:36:4a:57:76:ca:10:95:a2: 69:76:83:17:91:c2:e4:b6:69:4e:c9:a7:7e:88:cc: 64:d4:b2:e3:c1:f8:dc:a5:72:20:95:94:53:88:e5: fc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7B:BC:CA:EB:D4:DB:43:F9:5B:46:66:57:1E:6D:0E:1A:C5:C2:A7 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:53:2e:60:d4:37:13:08:3c:8d:b8:82:1d:b6:ba:40:97:de: 11:ab:5f:5f:56:a2:1f:94:5d:3a:b3:3c:45:49:8c:69:fd:50: ce:c2:d0:c3:c4:45:d1:de:fd:ea:8c:4d:77:58:c5:37:a2:ab: ab:4b:fd:4c:eb:a4:5d:46:ba:a2:7e:bf:39:23:2a:48:6d:16: 0c:23:da:79:82:87:b6:c1:57:dd:e6:da:54:91:ce:1b:35:73: 1e:cb:2f:6b:64:20:ed:cb:cd:15:69:03:87:c9:5b:bd:f2:8b: 96:28:0a:d6:11:4a:20:13:fe:4a:c8:13:ea:2c:57:e0:9c:f8: 0f:89:eb:8a:1f:ec:03:6d:75:6f:6c:d0:be:5c:6c:4d:60:fe: 15:fd:ad:75:42:dd:ef:ec:2f:04:dd:d0:0d:56:bc:72:92:ad: 9e:fd:4b:cd:f6:e6:41:50:55:26:4a:14:d9:50:a3:2f:08:4d: 51:9d:e9:b5:7d:c7:04:60:74:b6:86:cf:91:58:f8:f6:87:7c: 2b:3b:3d:30:5b:0f:c1:21:54:90:b0:ed:f6:ab:37:9d:f1:e4: f4:fc:e2:07:e4:c2:21:55:41:94:ea:c8:89:f6:b8:6a:1e:9c: e1:fc:d9:2e:2c:e3:dc:4e:73:37:ec:79:32:cd:aa:eb:55:12: 6e:8c:e2:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjQxMTIzMDIyNTQwWhcNMjQxMTMwMDIyNTQwWjAYMRYwFAYD VQQDEw02NzQxM2QyNC1hN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnqKto8R3+McIlYOfz/09t+Ga1189cxGiAr2qKT8lnBe1FIpV9BoUaJd8hgJ LUWKfZ3qvduXGPQohYONQbiOeTsUKY2QxlW9H/Ovn8XigkkQvgu+MoofHP4q5t1/ o+duXE+AUjYIwBxeS+2sL/APXrUt2slifOAvaSNDZmy9/IpbYTV81ao/ncrOyHO9 6nb33i9SEIMTvRWbYiRwk9Urlj7xKQcXUzhWE2yvJhPZ1cScvYiYqJwz1lzOd46n aWmqrQlgPo/w5Ggi4HOZwOtLf7e98k2HikXdNkpXdsoQlaJpdoMXkcLktmlOyad+ iMxk1LLjwfjcpXIglZRTiOX8vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIh7vMrr 1NtD+VtGZlcebQ4axcKnMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLUy5g1DcTCDyNuIIdtrpAl94Rq19fVqIflF06szxFSYxp/VDOwtDD xEXR3v3qjE13WMU3oqurS/1M66RdRrqifr85IypIbRYMI9p5goe2wVfd5tpUkc4b NXMeyy9rZCDty80VaQOHyVu98ouWKArWEUogE/5KyBPqLFfgnPgPieuKH+wDbXVv bNC+XGxNYP4V/a11Qt3v7C8E3dANVrxykq2e/UvN9uZBUFUmShTZUKMvCE1Rnem1 fccEYHS2hs+RWPj2h3wrOz0wWw/BIVSQsO32qzed8eT0/OIH5MIhVUGU6siJ9rhq Hpzh/NkuLOPcTnM37HkyzarrVRJujOIJ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org