$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: H0UE+ydmMugKcUQPzh/k79RW5s5GRnhRKLxe3Z1J268= Subject key identifier: 34:59:FE:A6:B1:50:F2:50:17:90:99:A7:52:BA:4C:66:8D:87:22:AC Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0ABA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0AB1 Signing time: Fri 22 Nov 2024 19:14:41 +0000 Manifest this update: Fri 22 Nov 2024 19:14:40 +0000 Manifest next update: Fri 29 Nov 2024 19:14:40 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: m/rez3+OG9fbred+/+RN2v6fy4h9/EPGQiy8Ls4xUew=) 2: A94E757C9C9711EF8F00DA2BC4F9AE02.roa (hash: X7IjbhP9RtH3GOyHKIW8/UzIqpulcUq2m7b9Hg7rvzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2746 (0xaba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Nov 22 19:14:40 2024 GMT Not After : Nov 29 19:14:40 2024 GMT Subject: CN=6740d820-688f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:1c:c9:63:93:18:d3:07:37:0a:9a:8a:00: 07:a6:55:62:99:90:77:c8:b2:01:ea:dc:08:cb:cb: 1f:92:3f:b5:d9:99:b4:95:68:01:41:e2:22:a2:10: a6:be:96:53:bf:51:5a:4b:4b:8a:26:42:b3:c0:c5: b8:58:96:dc:56:5d:72:72:98:49:28:0a:be:1b:ec: 30:10:a9:cd:b0:d7:4d:27:60:5f:4a:f8:f1:8e:be: ef:79:8c:30:79:c4:9c:6e:59:4e:c2:3e:8d:c5:fe: f3:7b:1c:e2:77:54:d2:b9:db:5f:3f:81:55:41:10: 4a:ac:fc:ca:10:ce:24:ad:06:9c:45:2d:ba:f8:cc: e2:aa:2b:25:7b:e0:a7:89:79:fb:a7:c8:b0:92:15: 4d:a8:a1:f8:9b:a4:12:b8:64:09:5c:53:e3:69:9e: 4e:3d:c2:08:36:bd:46:a7:68:d0:a2:e5:34:06:ca: 68:39:71:21:e9:b3:c2:b9:fe:1c:92:62:a4:bf:7c: 52:1d:31:f5:0f:b6:3f:eb:8a:dd:55:91:a9:1a:f4: cb:d2:c1:77:16:13:f0:c0:aa:e3:04:f7:ad:25:78: f3:7c:81:5d:47:63:21:3c:62:1e:32:e5:4f:2d:21: f9:7f:8a:d0:94:37:8d:87:f5:f1:e5:f7:b9:a9:dc: 9a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:59:FE:A6:B1:50:F2:50:17:90:99:A7:52:BA:4C:66:8D:87:22:AC X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:1a:d8:ab:24:eb:e4:f9:85:a6:50:58:08:41:c5:4a:5d:40: 5f:f0:fa:92:ad:b8:26:31:bc:80:53:bc:76:26:06:28:ac:c5: 1e:64:38:4a:c2:4a:a3:14:1c:3c:9d:52:24:48:41:5b:23:b5: e3:a1:2f:43:76:1e:da:28:60:38:ca:be:5b:c8:83:12:b5:a2: 87:52:b7:94:6a:50:9b:95:c7:a6:f1:4a:de:53:7e:8d:dd:88: a6:40:8c:b5:69:0b:81:bb:e7:79:27:3d:e9:b9:cc:8a:f4:ea: 78:3a:0f:82:ed:be:08:fc:b6:c6:c5:c1:41:82:68:78:8f:b9: 1c:a2:47:03:39:bc:e7:02:64:95:d0:97:2c:df:cb:fa:74:6d: d7:e7:f0:dc:c8:69:af:d1:32:da:8c:f1:ba:9f:6c:fc:98:01: 7c:01:b5:2b:c3:2a:8a:ae:96:21:fb:ad:94:be:70:3a:8c:fa: 95:12:f0:ca:98:1e:ae:47:26:b9:35:6f:59:a0:5c:99:9a:92: d8:89:66:69:c7:f7:57:69:c6:d6:d5:44:e6:b2:c4:60:ee:1c: fa:6f:4f:13:dc:c4:af:20:f4:4e:74:f8:d9:1f:da:2b:e5:fb: c5:b3:4f:06:94:ac:ee:8f:5a:e0:65:a7:32:f5:81:0d:76:9e: 12:8c:e8:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjQxMTIyMTkxNDQwWhcNMjQxMTI5MTkxNDQwWjAYMRYwFAYD VQQDEw02NzQwZDgyMC02ODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquAcyWOTGNMHNwqaigAHplVimZB3yLIB6twIy8sfkj+12Zm0lWgBQeIiohCm vpZTv1FaS0uKJkKzwMW4WJbcVl1ycphJKAq+G+wwEKnNsNdNJ2BfSvjxjr7veYww ecScbllOwj6Nxf7zexzid1TSudtfP4FVQRBKrPzKEM4krQacRS26+Mziqisle+Cn iXn7p8iwkhVNqKH4m6QSuGQJXFPjaZ5OPcIINr1Gp2jQouU0BspoOXEh6bPCuf4c kmKkv3xSHTH1D7Y/64rdVZGpGvTL0sF3FhPwwKrjBPetJXjzfIFdR2MhPGIeMuVP LSH5f4rQlDeNh/Xx5fe5qdyaHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRZ/qax UPJQF5CZp1K6TGaNhyKsMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpGtirJOvk+YWmUFgIQcVKXUBf8PqSrbgmMbyAU7x2JgYorMUeZDhK wkqjFBw8nVIkSEFbI7XjoS9Ddh7aKGA4yr5byIMStaKHUreUalCblcem8UreU36N 3YimQIy1aQuBu+d5Jz3pucyK9Op4Og+C7b4I/LbGxcFBgmh4j7kcokcDObznAmSV 0Jcs38v6dG3X5/DcyGmv0TLajPG6n2z8mAF8AbUrwyqKrpYh+62UvnA6jPqVEvDK mB6uRya5NW9ZoFyZmpLYiWZpx/dXacbW1UTmssRg7hz6b08T3MSvIPROdPjZH9or 5fvFs08GlKzuj1rgZacy9YENdp4SjOgH -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org