$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: M4sdpn9cfYDoaIWvH4Kwl7CEq37IPxiZZO1r+iFAoRY= Subject key identifier: 25:1B:17:45:16:97:9E:E1:B0:C7:A9:42:53:35:1F:2A:21:8B:FA:3E Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 18 Signing time: Thu 21 Nov 2024 05:59:43 +0000 Manifest this update: Thu 21 Nov 2024 05:59:42 +0000 Manifest next update: Thu 28 Nov 2024 05:59:42 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: A8Z5MeZ7blg1CY7BaIITVx9d9Rd3kDmovLG0kbsXJmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Nov 21 05:59:42 2024 GMT Not After : Nov 28 05:59:42 2024 GMT Subject: CN=673ecc4e-7803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:37:67:f1:d1:83:da:e0:91:39:de:92:21: c2:b1:16:b5:b1:0f:93:ff:9b:65:9d:04:3c:24:10: 82:38:6c:af:7d:c8:2a:45:3c:52:f2:1a:06:a4:4a: 45:85:82:6f:81:bc:4f:aa:f3:1c:eb:46:e3:a8:b0: 29:a9:75:65:87:75:61:2a:56:ea:3d:2f:36:1c:52: 8c:66:a3:5d:35:0e:f5:6c:a8:d1:0e:cc:d7:55:43: 34:3e:98:e5:bd:11:88:7d:af:7e:6b:b6:8c:ba:8f: ea:fc:de:a0:9c:09:ed:06:8e:36:65:ef:6b:89:8b: 59:8b:36:cc:26:ee:45:ef:01:00:a5:ec:58:ce:22: 0a:99:7a:5a:f1:fc:63:08:66:40:3f:b1:23:29:b2: b7:e3:96:5e:25:15:65:b2:63:c3:1e:b4:ef:df:f7: 81:7f:2f:57:c3:76:46:2b:34:c9:a2:21:9e:7e:fe: 97:ac:b1:0b:fa:d2:b4:ea:d0:89:a4:0b:4b:fa:0c: 4e:9e:c4:1c:cf:89:f1:36:85:d1:59:0c:00:a1:8b: 03:b2:87:29:9c:ff:4d:43:fa:54:04:a2:a0:8d:9b: 5f:a1:91:71:85:b7:b0:ff:19:e0:81:26:27:1f:ab: 16:24:3a:77:1f:59:1a:35:57:6c:6f:c6:b4:5e:ce: a8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1B:17:45:16:97:9E:E1:B0:C7:A9:42:53:35:1F:2A:21:8B:FA:3E X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3f:05:a3:d1:e0:97:f1:77:c3:a2:12:5e:cd:ab:47:6a:ae: e9:98:11:fb:7c:74:2d:e8:ad:84:8d:c4:cd:77:58:6d:3e:73: f1:fe:37:0b:a4:84:1d:5b:60:24:e0:ab:40:85:f4:7b:07:2a: 90:ba:ff:ad:2a:25:c1:4a:29:1e:5f:47:7a:fa:56:d5:f2:66: 2d:7a:4d:3d:49:bf:3f:15:96:59:63:b6:88:8b:21:a5:a5:02: dc:d9:b1:fc:cd:6b:d4:44:72:10:cf:4a:85:d1:2b:e6:5d:1e: 97:c6:08:a6:f6:13:0e:3a:70:c7:3e:27:d3:18:81:6e:7b:88: 68:20:bb:59:c7:22:6c:66:65:96:cd:86:e6:e2:2f:17:52:8c: 6e:04:95:b4:26:bf:47:5d:cf:9c:c5:fd:ff:ae:7c:ba:d0:5f: 53:e4:b1:d1:e7:74:bd:41:e4:37:df:ce:7f:4b:8f:55:51:c5: ad:17:78:67:95:7e:72:8a:fc:0a:69:20:d4:f2:c0:24:86:d4: 43:e4:81:ed:c2:b4:dd:31:d5:b5:e4:dd:9e:c2:1b:0b:bc:9a: c1:22:a3:08:e0:d0:00:73:bc:98:5f:af:3a:96:6a:40:ea:a6: 40:8f:b8:55:9f:4f:8b:12:6b:37:95:42:44:eb:76:f0:4a:4f: 05:91:21:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjhBRDExMC8GA1UEBRMoRDEwQzIwOTZGQjVEQjMwNEFCRDJGOTlGNDVBMjk0ODgy OTJEMzcyMTAeFw0yNDExMjEwNTU5NDJaFw0yNDExMjgwNTU5NDJaMBgxFjAUBgNV BAMTDTY3M2VjYzRlLTc4MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC16zdn8dGD2uCROd6SIcKxFrWxD5P/m2WdBDwkEII4bK99yCpFPFLyGgakSkWF gm+BvE+q8xzrRuOosCmpdWWHdWEqVuo9LzYcUoxmo101DvVsqNEOzNdVQzQ+mOW9 EYh9r35rtoy6j+r83qCcCe0GjjZl72uJi1mLNswm7kXvAQCl7FjOIgqZelrx/GMI ZkA/sSMpsrfjll4lFWWyY8MetO/f94F/L1fDdkYrNMmiIZ5+/pessQv60rTq0Imk C0v6DE6exBzPifE2hdFZDAChiwOyhymc/01D+lQEoqCNm1+hkXGFt7D/GeCBJicf qxYkOncfWRo1V2xvxrRezqiXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJRsXRRaX nuGwx6lCUzUfKiGL+j4wHwYDVR0jBBgwFoAU0QwglvtdswSr0vmfRaKUiCktNyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2OEFEL0RFQkEyMzgwODZB MDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF3Z2x2dGRzd1NyMHZtZlJhS1VpQ2t0TnlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 OEFEL0RFQkEyMzgwODZBMDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dT cjB2bWZSYUtVaUNrdE55RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIo/BaPR4Jfxd8OiEl7Nq0dqrumYEft8dC3orYSNxM13WG0+c/H+Nwuk hB1bYCTgq0CF9HsHKpC6/60qJcFKKR5fR3r6VtXyZi16TT1Jvz8VllljtoiLIaWl AtzZsfzNa9REchDPSoXRK+ZdHpfGCKb2Ew46cMc+J9MYgW57iGggu1nHImxmZZbN hubiLxdSjG4ElbQmv0ddz5zF/f+ufLrQX1PksdHndL1B5Dffzn9Lj1VRxa0XeGeV fnKK/AppINTywCSG1EPkge3CtN0x1bXk3Z7CGwu8msEiowjg0ABzvJhfrzqWakDq pkCPuFWfT4sSazeVQkTrdvBKTwWRIZ4= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org