$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: iiElbsbegRE1Zns1omlEp3u9Woueo2yUMiRgb1edza0= Subject key identifier: 93:82:72:19:7D:DB:F1:B6:EA:8B:69:D0:A7:C2:D9:10:F9:13:1A:ED Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 342C Signing time: Fri 22 Nov 2024 15:09:22 +0000 Manifest this update: Fri 22 Nov 2024 15:09:21 +0000 Manifest next update: Fri 29 Nov 2024 15:09:21 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: kVI215sNhftlM3ZD/+ls1KFV5ECM7pmUO1syqXxHL+o=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: 9LTH0YNpJSoOIQpkw88J8KChbFMDLdSzcK4sN/Oo+iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13366 (0x3436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Nov 22 15:09:21 2024 GMT Not After : Nov 29 15:09:21 2024 GMT Subject: CN=67409ea1-2ca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:86:8d:fc:77:77:67:a1:e8:5e:b3:1d:d5: b7:17:d4:e1:19:1f:a3:7a:45:88:9e:96:3c:64:fe: cb:65:0b:51:59:b4:b4:16:a9:9d:f9:9a:0d:10:59: 10:94:ce:b5:5f:52:78:e5:60:dd:bf:7c:d8:14:46: a0:50:49:aa:e7:49:9a:aa:5e:e1:6e:2b:d6:e4:b3: cf:a7:69:0a:bf:95:b3:79:5b:d2:43:12:99:6b:83: 0e:4c:41:ab:58:a9:ac:00:c9:28:e2:a7:58:9f:7d: 8e:9a:d0:03:46:67:7b:dd:99:3c:33:b7:72:dc:1e: c0:6e:da:a6:fd:4d:44:b9:1d:40:8f:a6:0c:7a:fb: 05:8f:e4:ab:cc:52:d9:7d:38:c5:11:65:61:0f:a6: 1e:5b:f6:2c:97:6e:df:30:9c:22:70:86:0f:d0:00: 7c:71:4f:8f:39:32:63:47:6f:44:90:c0:5a:8c:4e: 1e:db:5d:9a:b6:58:68:e6:ab:56:88:ec:53:ed:fb: a7:4f:9e:89:be:d3:d1:97:8f:68:14:80:86:33:e1: 49:82:c9:c7:a8:7c:ea:1e:22:62:45:82:e3:cc:ec: 29:9b:3b:d1:02:37:8a:5a:ae:87:59:72:7b:25:6b: ea:72:f7:59:43:b2:e9:99:2b:32:6d:20:99:f4:20: 24:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:82:72:19:7D:DB:F1:B6:EA:8B:69:D0:A7:C2:D9:10:F9:13:1A:ED X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:94:e2:8c:6e:4d:92:d1:f0:b6:8c:dd:7e:c0:97:eb:31:86: be:a1:1b:85:3c:2a:00:b4:ae:10:35:13:3a:21:ec:30:96:a6: 1b:36:17:18:d5:3b:c1:b2:12:d5:50:86:49:ac:69:9e:8f:74: c1:cf:b2:a2:45:5f:35:00:62:72:4c:89:73:92:b9:63:ff:d2: 01:24:1f:de:e9:f6:cb:e6:07:42:1f:0e:4e:4c:31:f0:6f:90: 5c:2d:94:c5:92:76:89:7e:73:2b:60:38:c9:5c:72:ac:2e:41: 37:31:ab:75:45:2b:2a:3c:47:8a:94:9b:00:e7:09:1a:28:83: 52:17:f3:b2:29:37:1d:cd:e2:e1:db:3f:5e:42:b1:6e:6f:2b: ee:ab:12:c0:ab:d5:eb:4d:23:f0:58:e5:8f:c3:3c:f6:b8:9a: 90:af:16:62:22:ca:8e:a3:e8:52:ad:10:ec:c9:a0:ae:b9:fa: 80:33:78:8d:60:cd:1b:37:ed:85:db:38:5f:ae:84:0c:a1:8d: ad:92:e6:2f:0e:aa:53:f5:89:28:c1:4a:03:90:b9:aa:e9:64: 70:28:8a:83:80:d0:33:63:e3:4f:ed:ae:fb:4c:ad:07:49:bc: 06:ff:54:02:d2:8e:6e:36:52:32:1f:a5:ca:84:ef:47:87:1c: eb:43:ea:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjQxMTIyMTUwOTIxWhcNMjQxMTI5MTUwOTIxWjAYMRYwFAYD VQQDEw02NzQwOWVhMS0yY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvSGjfx3d2eh6F6zHdW3F9ThGR+jekWInpY8ZP7LZQtRWbS0Fqmd+ZoNEFkQ lM61X1J45WDdv3zYFEagUEmq50maql7hbivW5LPPp2kKv5WzeVvSQxKZa4MOTEGr WKmsAMko4qdYn32OmtADRmd73Zk8M7dy3B7Abtqm/U1EuR1Aj6YMevsFj+SrzFLZ fTjFEWVhD6YeW/Ysl27fMJwicIYP0AB8cU+POTJjR29EkMBajE4e212atlho5qtW iOxT7funT56JvtPRl49oFICGM+FJgsnHqHzqHiJiRYLjzOwpmzvRAjeKWq6HWXJ7 JWvqcvdZQ7LpmSsybSCZ9CAkkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOCchl9 2/G26otp0KfC2RD5ExrtMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDlOKMbk2S0fC2jN1+wJfrMYa+oRuFPCoAtK4QNRM6IewwlqYbNhcY 1TvBshLVUIZJrGmej3TBz7KiRV81AGJyTIlzkrlj/9IBJB/e6fbL5gdCHw5OTDHw b5BcLZTFknaJfnMrYDjJXHKsLkE3Mat1RSsqPEeKlJsA5wkaKINSF/OyKTcdzeLh 2z9eQrFubyvuqxLAq9XrTSPwWOWPwzz2uJqQrxZiIsqOo+hSrRDsyaCuufqAM3iN YM0bN+2F2zhfroQMoY2tkuYvDqpT9YkowUoDkLmq6WRwKIqDgNAzY+NP7a77TK0H SbwG/1QC0o5uNlIyH6XKhO9HhxzrQ+qn -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org