$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: yxiuP4F43mgvW2dZTRf8PAgZru2cImKZJmnKM/Q6288= Subject key identifier: 6A:F6:01:E2:D4:B6:C0:53:AB:5E:86:96:92:AD:57:56:5C:54:7A:06 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 07 Signing time: Wed 20 Nov 2024 23:39:45 +0000 Manifest this update: Wed 20 Nov 2024 23:39:45 +0000 Manifest next update: Wed 27 Nov 2024 23:39:45 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: 0AQGkeg9ooAEaCYqqonVNFQL5YdwlorA0fU701urjlw=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: 5qMiml17n0aAMu6NxqqQLl6qWh0DlQeNtw4FHHKAtek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Nov 20 23:39:45 2024 GMT Not After : Nov 27 23:39:45 2024 GMT Subject: CN=673e7341-16dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4c:5e:8a:f1:71:2c:d5:fb:41:4d:7d:f0:31: dd:3a:ef:8b:6a:99:27:5d:6f:c3:29:97:34:26:00: 1c:79:1d:27:22:8c:38:bd:f7:29:2e:36:36:03:48: 7a:98:5a:0a:35:9d:e0:6d:f2:8a:20:dd:b0:b6:7a: a5:e7:ae:33:b3:0e:04:ec:70:bf:76:fc:52:e3:ce: 17:0c:94:05:14:30:84:38:0f:bd:94:1c:5b:3c:8c: c9:e7:6a:8f:14:0a:97:18:b3:88:53:76:ff:7d:9d: f3:f9:49:42:35:ed:30:7a:04:c4:27:7a:8b:c9:c0: 75:1c:07:cc:7e:62:a2:ec:75:1c:20:e7:f5:1d:53: d0:d0:1e:6e:9d:f5:53:41:01:95:eb:63:85:80:ca: 86:65:81:2c:0c:eb:b5:f0:45:53:b7:5f:9e:a1:ed: 38:05:16:19:84:5c:32:e8:16:42:bc:22:a8:41:a0: 72:34:d6:2b:9c:03:7e:90:8f:49:0d:f8:5c:9b:2b: dc:bd:fd:08:7d:76:56:da:d0:7f:fc:23:3e:04:3b: 34:af:fa:91:3d:bc:fd:21:cf:6d:65:5a:08:39:74: 3d:b0:65:9c:00:25:64:3e:f7:02:2f:d5:d5:81:ee: 4a:ee:6a:29:08:57:9a:e1:be:89:c6:ab:a1:f3:fd: d1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F6:01:E2:D4:B6:C0:53:AB:5E:86:96:92:AD:57:56:5C:54:7A:06 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:25:0f:f4:d0:76:f0:af:f1:bb:05:40:53:1a:dc:62:5f:e4: 9d:fe:7c:6b:d8:d5:f0:60:9d:92:94:db:5c:1b:93:1f:2e:d3: 80:96:11:c9:a1:42:8e:cb:fd:09:8d:c8:94:74:e0:6c:f5:a4: 1c:98:63:67:67:a2:02:ca:68:d5:73:38:2b:8e:e9:a2:e0:f7: 32:9b:69:07:04:92:6d:48:ce:a6:58:3e:bf:db:7f:da:f8:26: 08:f4:a3:39:2b:70:67:0e:6e:26:97:3b:fb:db:50:c4:f2:07: ff:df:af:4a:dc:bb:4a:44:79:d0:53:41:f6:a4:0f:09:a2:22: 05:bb:cb:7f:0a:fd:94:19:07:87:cd:99:fd:62:1e:38:55:bf: b0:ac:41:89:b8:99:52:7a:a7:50:62:bb:51:13:1d:f4:cd:67: 16:ea:ca:c9:7d:ec:2f:01:24:d1:27:9b:ae:5d:3e:82:d6:24: 6d:3a:e2:da:ea:2e:5b:3a:b5:5b:37:d3:0d:0b:41:02:81:22: 56:5c:48:b7:5a:19:fe:68:d4:78:a2:92:2e:58:98:0a:9d:56: 8e:bd:ee:ba:55:b7:79:ff:bc:0f:93:d5:03:da:78:e2:97:4f: fe:4a:f9:4a:67:33:ae:dd:6a:e1:8a:c3:3e:f7:50:33:83:83: 43:f2:92:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNDExMjAyMzM5NDVaFw0yNDExMjcyMzM5NDVaMBgxFjAUBgNV BAMTDTY3M2U3MzQxLTE2ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2TF6K8XEs1ftBTX3wMd0674tqmSddb8MplzQmABx5HScijDi99ykuNjYDSHqY Wgo1neBt8oog3bC2eqXnrjOzDgTscL92/FLjzhcMlAUUMIQ4D72UHFs8jMnnao8U CpcYs4hTdv99nfP5SUI17TB6BMQneovJwHUcB8x+YqLsdRwg5/UdU9DQHm6d9VNB AZXrY4WAyoZlgSwM67XwRVO3X56h7TgFFhmEXDLoFkK8IqhBoHI01iucA36Qj0kN +FybK9y9/Qh9dlba0H/8Iz4EOzSv+pE9vP0hz21lWgg5dD2wZZwAJWQ+9wIv1dWB 7kruaikIV5rhvonGq6Hz/dE7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUavYB4tS2 wFOrXoaWkq1XVlxUegYwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACglD/TQdvCv8bsFQFMa3GJf5J3+fGvY1fBgnZKU21wbkx8u04CWEcmh Qo7L/QmNyJR04Gz1pByYY2dnogLKaNVzOCuO6aLg9zKbaQcEkm1IzqZYPr/bf9r4 Jgj0ozkrcGcObiaXO/vbUMTyB//fr0rcu0pEedBTQfakDwmiIgW7y38K/ZQZB4fN mf1iHjhVv7CsQYm4mVJ6p1Biu1ETHfTNZxbqysl97C8BJNEnm65dPoLWJG064trq Lls6tVs30w0LQQKBIlZcSLdaGf5o1Hiiki5YmAqdVo697rpVt3n/vA+T1QPaeOKX T/5K+UpnM67dauGKwz73UDODg0Pykok= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:04 2024 by rpki-client on console-ams.rpki-client.org