$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: uarQIvialQBFYFcE0x48u9EFKFGHieXGU4A4COVBiFQ= Subject key identifier: AC:60:5C:1B:4A:1D:72:CB:34:77:23:2E:46:D3:30:FA:9C:FD:10:53 Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 094B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 093D Signing time: Fri 22 Nov 2024 20:02:13 +0000 Manifest this update: Fri 22 Nov 2024 20:02:12 +0000 Manifest next update: Fri 29 Nov 2024 20:02:12 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: 0ZL03PZYhrwYgORdsb4YB2JZJqgplAy0liDn7bFXHEQ=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: tLBsV4g2bMzhVFiX/6V4C27n2kArFIEOkUcBuZutWVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2379 (0x94b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Nov 22 20:02:12 2024 GMT Not After : Nov 29 20:02:12 2024 GMT Subject: CN=6740e345-ff76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:db:ff:7d:4a:71:aa:59:8f:78:32:95:e4: dd:81:68:50:ed:d3:af:3f:48:04:b4:2d:2f:63:89: 9c:e2:7f:e7:69:97:10:69:8e:4a:cf:90:42:fb:f0: ae:b6:1e:be:74:65:77:02:5e:f9:ee:a0:89:05:d8: 97:18:2a:17:b6:57:53:55:1e:ce:8e:1d:84:97:20: 25:a9:a3:bc:57:62:75:bc:5a:6e:0e:64:e4:c6:58: ad:e7:11:19:a7:e9:92:eb:31:5c:8a:8a:23:46:1f: 11:96:64:06:3b:55:32:55:47:47:3a:36:0a:70:96: 1d:5a:e6:d2:45:70:ba:31:a4:70:d3:5f:68:2b:b6: f3:98:0a:18:a6:9f:33:5d:d0:a5:17:1a:f6:47:92: a6:4c:12:a8:8b:80:1e:b5:3f:4c:e5:dc:63:fb:a0: 69:d1:cb:08:27:60:ee:40:ed:5b:6f:1a:f7:51:8e: 09:f6:89:64:f8:f2:10:45:3b:87:fa:d6:ae:35:a4: 51:3f:59:49:fe:09:12:55:f6:a7:70:d9:a9:6f:70: ba:87:e3:9e:d3:f6:d2:b9:1a:e6:9a:79:3e:8b:36: 21:8f:9b:65:ac:66:e8:18:9d:9a:b9:ab:96:f4:66: 55:b4:05:5b:62:fa:a6:ee:8a:3d:be:f2:c5:fe:dd: ce:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:60:5C:1B:4A:1D:72:CB:34:77:23:2E:46:D3:30:FA:9C:FD:10:53 X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:61:e8:d7:8b:42:84:57:b6:ef:6e:6b:d8:d0:e6:fd:6c:5c: 24:e7:28:81:c4:fb:6a:ff:13:56:ad:2c:e7:ac:e6:c4:20:54: b9:af:39:ec:d2:7f:7e:08:11:a4:84:c1:1b:83:d7:a6:a2:ea: dc:ae:85:8c:74:b6:dc:1f:48:d0:36:2c:70:3c:ec:5b:8d:10: 78:25:db:12:82:60:0c:5f:c2:a4:9c:d1:ef:f1:71:6e:0f:84: af:39:44:d2:f5:52:60:64:1a:f9:65:e6:4f:56:da:f0:d8:22: 76:87:1c:c1:39:c9:c5:e4:8c:9d:07:21:1d:e6:60:95:2d:15: df:66:47:21:9e:bd:ff:f1:7e:72:2c:90:e1:55:13:9d:78:1f: 4b:0c:df:39:4a:09:4a:6c:41:c2:b4:01:23:f5:71:55:f4:04: 96:49:f4:50:01:03:60:34:48:e0:c7:c9:13:8b:91:61:17:92: 73:82:78:62:2a:6a:03:bd:e3:40:cc:a5:53:65:38:8a:3e:d0: c9:d3:a8:24:e7:24:c3:08:d6:56:2e:eb:6f:62:a9:55:0a:4e: e6:ef:cd:ff:f2:2c:72:c9:21:24:7c:36:a8:c7:b8:2a:18:a3: 2e:b2:4d:0d:ea:da:bc:0f:4e:cb:f7:01:65:3b:5d:32:ac:ad: 4f:7c:a2:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjQxMTIyMjAwMjEyWhcNMjQxMTI5MjAwMjEyWjAYMRYwFAYD VQQDEw02NzQwZTM0NS1mZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgnb/31KcapZj3gyleTdgWhQ7dOvP0gEtC0vY4mc4n/naZcQaY5Kz5BC+/Cu th6+dGV3Al757qCJBdiXGCoXtldTVR7Ojh2ElyAlqaO8V2J1vFpuDmTkxlit5xEZ p+mS6zFcioojRh8RlmQGO1UyVUdHOjYKcJYdWubSRXC6MaRw019oK7bzmAoYpp8z XdClFxr2R5KmTBKoi4AetT9M5dxj+6Bp0csIJ2DuQO1bbxr3UY4J9olk+PIQRTuH +tauNaRRP1lJ/gkSVfancNmpb3C6h+Oe0/bSuRrmmnk+izYhj5tlrGboGJ2auauW 9GZVtAVbYvqm7oo9vvLF/t3O+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxgXBtK HXLLNHcjLkbTMPqc/RBTMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLYejXi0KEV7bvbmvY0Ob9bFwk5yiBxPtq/xNWrSznrObEIFS5rzns 0n9+CBGkhMEbg9emourcroWMdLbcH0jQNixwPOxbjRB4JdsSgmAMX8KknNHv8XFu D4SvOUTS9VJgZBr5ZeZPVtrw2CJ2hxzBOcnF5IydByEd5mCVLRXfZkchnr3/8X5y LJDhVROdeB9LDN85SglKbEHCtAEj9XFV9ASWSfRQAQNgNEjgx8kTi5FhF5Jzgnhi KmoDveNAzKVTZTiKPtDJ06gk5yTDCNZWLutvYqlVCk7m783/8ixyySEkfDaox7gq GKMusk0N6tq8D07L9wFlO10yrK1PfKKz -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org