$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft File: QxsKSDX89paz7NM1klqOE2EM0Tc.mft (raw, json) Hash identifier: icUwDSu19Lg+oMLb2aEFV2+lZCwjKdsuVs1Wn6FCp3M= Subject key identifier: B0:84:42:9A:DB:68:04:10:83:60:9C:3F:78:6E:78:0E:69:07:74:6A Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft Manifest number: 29 Signing time: Sat 23 Nov 2024 05:41:24 +0000 Manifest this update: Sat 23 Nov 2024 05:41:23 +0000 Manifest next update: Sat 30 Nov 2024 05:41:23 +0000 Files and hashes: 1: QxsKSDX89paz7NM1klqOE2EM0Tc.crl (hash: iU/DxxeGYJKSGFwq6MUM2InujWmbV8MqEvlT+MclXDw=) 2: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (hash: vZeR0lcw46VwexcvwfLFeQsC9FFvQP0E+PgN5RwjHko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Nov 23 05:41:23 2024 GMT Not After : Nov 30 05:41:23 2024 GMT Subject: CN=67416b04-39fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:87:1a:f3:5e:48:17:6e:41:50:61:a2:a0: 05:d6:b3:90:a5:76:ed:3f:a4:63:5c:59:e3:99:50: 85:f2:83:5b:f8:50:82:6e:26:14:e9:41:95:76:eb: 2c:d2:03:6e:39:2b:ff:d5:1d:c7:dc:0e:d1:5a:64: d8:db:35:75:22:e1:4d:5f:95:87:d4:3c:3d:70:55: 63:62:20:74:c2:0d:0d:46:15:f2:94:c2:63:c5:60: 73:0b:87:85:cb:24:59:0c:3a:fa:fb:b9:8b:c6:69: a4:9c:7a:64:66:9e:8f:d3:78:82:70:49:20:c7:23: da:1c:3e:7d:3a:ff:18:f9:eb:88:be:8d:8e:93:4d: f4:5b:37:f2:26:b2:d0:72:32:4e:5d:00:1f:3e:1f: 2d:b7:6d:89:7c:3e:19:d2:59:0b:ff:bd:fb:99:b1: 2e:2e:ae:55:b2:5d:e0:bf:aa:f2:b7:51:75:7c:93: d3:2b:70:48:67:51:87:c4:19:07:6a:f4:2f:ce:59: d4:0c:25:74:cd:0c:a8:d2:16:1f:14:33:05:18:4a: 42:38:bf:75:29:4e:4d:d7:e8:df:8e:f9:1e:f8:70: bb:4e:e7:7e:f8:d5:ef:6d:ed:65:dc:25:cc:2d:4b: 29:69:eb:26:3a:4b:5d:01:f9:be:57:95:07:34:9b: d6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:84:42:9A:DB:68:04:10:83:60:9C:3F:78:6E:78:0E:69:07:74:6A X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:5c:e4:a0:1d:c1:5c:c0:52:27:07:23:e0:94:bf:f1:f4:2e: 31:35:40:53:85:ce:c4:98:86:51:08:f1:07:d1:d4:6e:c1:64: 45:bb:11:9b:c7:75:0f:b4:27:22:b9:a2:50:58:76:4d:b6:95: 26:fd:6f:69:03:fc:7b:27:80:a4:b8:e0:d0:80:7f:a3:b0:ce: 90:ff:25:ab:fd:4c:25:62:a1:45:1e:87:4d:c8:32:36:ce:49: bf:38:24:94:74:7c:1d:1a:67:33:4e:8e:07:8b:f4:3d:0c:0d: 48:8f:cd:07:f9:62:3d:6b:71:00:af:cb:20:63:7a:2f:92:fd: 39:83:23:f3:25:12:34:5f:a7:78:5a:c4:b2:10:31:c5:33:49: a8:c8:34:97:d7:3a:fb:0c:c6:6c:09:28:6e:2b:c2:73:43:e9: 73:ec:fa:22:f9:a9:c7:91:8a:4a:c4:19:7e:02:15:44:37:8a: 91:34:fc:a5:4f:8a:72:38:bb:b0:41:06:30:c2:26:cf:3e:6b: cc:8c:c5:bc:30:60:11:45:34:fe:d7:14:09:51:09:6e:38:86: f2:64:e3:fe:1f:09:4a:4b:7e:36:69:d9:0b:8d:1b:f5:a6:e2: 90:87:a1:3f:10:ec:85:f2:df:4f:c8:7d:15:e9:15:a8:f7:1f: 2b:50:53:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTg5RjExMC8GA1UEBRMoNDMxQjBBNDgzNUZDRjY5NkIzRUNEMzM1OTI1QThFMTM2 MTBDRDEzNzAeFw0yNDExMjMwNTQxMjNaFw0yNDExMzAwNTQxMjNaMBgxFjAUBgNV BAMTDTY3NDE2YjA0LTM5ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtj4ca815IF25BUGGioAXWs5Cldu0/pGNcWeOZUIXyg1v4UIJuJhTpQZV26yzS A245K//VHcfcDtFaZNjbNXUi4U1flYfUPD1wVWNiIHTCDQ1GFfKUwmPFYHMLh4XL JFkMOvr7uYvGaaScemRmno/TeIJwSSDHI9ocPn06/xj564i+jY6TTfRbN/ImstBy Mk5dAB8+Hy23bYl8PhnSWQv/vfuZsS4urlWyXeC/qvK3UXV8k9MrcEhnUYfEGQdq 9C/OWdQMJXTNDKjSFh8UMwUYSkI4v3UpTk3X6N+O+R74cLtO53741e9t7WXcJcwt Sylp6yY6S10B+b5XlQc0m9bVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsIRCmtto BBCDYJw/eG54DmkHdGowHwYDVR0jBBgwFoAUQxsKSDX89paz7NM1klqOE2EM0Tcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFODlGL0FGRkQyMTcwNkRD QjExRUY5QjM5Qjg2NUM0RjlBRTAyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBU Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXhzS1NEWDg5cGF6N05NMWtscU9FMkVNMFRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF ODlGL0FGRkQyMTcwNkRDQjExRUY5QjM5Qjg2NUM0RjlBRTAyL1F4c0tTRFg4OXBh ejdOTTFrbHFPRTJFTTBUYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlc5KAdwVzAUicHI+CUv/H0LjE1QFOFzsSYhlEI8QfR1G7BZEW7EZvH dQ+0JyK5olBYdk22lSb9b2kD/HsngKS44NCAf6OwzpD/Jav9TCVioUUeh03IMjbO Sb84JJR0fB0aZzNOjgeL9D0MDUiPzQf5Yj1rcQCvyyBjei+S/TmDI/MlEjRfp3ha xLIQMcUzSajINJfXOvsMxmwJKG4rwnND6XPs+iL5qceRikrEGX4CFUQ3ipE0/KVP inI4u7BBBjDCJs8+a8yMxbwwYBFFNP7XFAlRCW44hvJk4/4fCUpLfjZp2QuNG/Wm 4pCHoT8Q7IXy30/IfRXpFaj3HytQU0A= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org