$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: YxrVFVTH+JP9DUvnfuIAlL4wFRVTh5UbiwStr4GDT9M= Subject key identifier: 67:3C:59:E0:14:8D:10:D5:50:7B:3C:E9:9B:7F:39:03:95:69:22:24 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 34C8 Signing time: Fri 22 Nov 2024 14:28:30 +0000 Manifest this update: Fri 22 Nov 2024 14:28:29 +0000 Manifest next update: Fri 29 Nov 2024 14:28:29 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: ErsvjLqOPWOlWTim/q0qVx7RLiHJgZCAYzKjFAWETAo=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: RZ0C9YYnh8QbXqgqtPsPNLAyin0VjmTVQMvXuKLH1Cg=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: tQqDan24vaXVZ/JHfmO5h2VgPFM+vGEwPOlOViAHg/U=) 4: A7F526A0C9E711ED8C3F1522C4F9AE02.roa (hash: niPLGqATRQGnPgn3igMCWv9t8a+CsnDy92qFS/GKs7M=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: K7Nj7n/i6tjKO0doM6XNQ63Jlt3J6xLH5CMscSm9Z5g=) 6: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: 6C31VW1wAP88v4um75J1DZnDG+WPIUaSY7f4Z3u9JGY=) 7: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: 9n8pt4kX+PtaR3/LW1Yxlup2XWliy6SYO39Frte/ZAk=) 8: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: BSMjWbafIqq8yLgIrzC661RluMtE07f15/2lXA/YQYE=) 9: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: qJyPntIEz/4gHNPJ1UvQwCvzPZ1Sc1npCHePSECjEec=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: vV5Yr/BkXALl7LzgLGethZCdonSKacfw4uRlE5AN9Mc=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: 9qCo4gewXoo4/qYQLpJ3mS2E+hjvvsdSgOLjxvHk+D4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13703 (0x3587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Nov 22 14:28:29 2024 GMT Not After : Nov 29 14:28:29 2024 GMT Subject: CN=6740950d-13a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:75:09:1e:f9:d5:60:88:e3:4a:c7:79:f8:ec: c1:ca:1c:ed:25:6c:bc:3a:f9:a3:2e:bd:ae:8b:93: c7:d1:45:6a:02:f5:d0:06:4a:0d:76:4d:e4:cf:96: 91:50:45:cf:86:a2:7b:62:d1:f3:78:d4:a7:25:cc: 6f:4b:2b:78:82:ea:ce:70:df:56:83:65:e2:b9:8c: 00:b1:4c:2a:0d:00:19:16:5e:6e:e1:b5:4f:ea:76: 08:6e:7f:0a:b5:b1:f7:c8:d6:db:be:2d:24:ad:b3: 59:de:22:74:14:6f:ee:b1:64:0e:22:e5:d0:5c:d7: ae:36:3d:6b:a6:4a:42:67:d8:db:dc:4d:65:b2:5c: b9:0e:6a:49:11:d7:c0:da:09:68:f7:fa:7e:cd:25: 67:67:67:02:4e:e2:09:8b:66:8a:3d:b4:56:35:de: 82:15:da:80:e5:36:59:89:d6:be:1d:94:c3:0f:a1: 36:e4:81:bc:23:90:3f:57:b3:4f:da:9c:87:d8:bc: 3d:17:4e:04:c9:a9:c3:9f:c1:90:22:7d:02:28:c3: 21:5f:b1:2f:f5:be:41:bd:a5:77:d1:88:a5:23:15: 15:7a:96:db:31:95:cc:77:01:b6:fc:c7:9e:bb:4a: c5:85:86:fe:2d:e4:0e:f3:b2:98:05:02:5e:df:35: 8e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3C:59:E0:14:8D:10:D5:50:7B:3C:E9:9B:7F:39:03:95:69:22:24 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7f:97:ae:d2:9a:9e:00:df:20:c2:08:39:fd:82:21:de:a5: 52:04:87:2e:33:fe:d1:4a:bf:d2:a5:56:12:35:e5:69:50:02: b8:59:31:53:84:4e:5d:99:7c:3b:90:f0:4e:86:e3:eb:12:e0: f5:08:51:cd:58:c9:40:7a:9f:a0:0d:6f:06:e3:15:d5:c2:c4: fa:32:ef:c0:3c:2b:7d:0f:6e:c6:87:51:64:92:64:84:1f:bb: 83:65:00:61:63:3a:91:bd:1c:05:a8:21:14:19:9c:c0:42:a8: d0:de:e4:8c:36:5c:5e:3c:08:25:26:cf:86:0a:2c:0e:41:66: 77:b9:c4:e0:3f:71:18:51:b3:c5:34:73:c5:0f:e3:7a:48:b0: 3c:3b:87:9d:b8:89:d6:ff:ed:42:08:ae:d6:53:bf:7d:0e:38: ff:00:50:b4:bd:61:89:72:92:8b:e7:22:46:61:70:61:31:ca: 64:ee:55:b6:21:4e:fb:6e:46:e1:91:ac:a2:b6:c7:b9:95:21: 7b:7a:c6:0f:95:49:0f:3f:c7:17:bb:4f:78:46:21:4d:f1:1c: 6b:96:bc:9c:5c:69:9f:48:b9:12:61:e7:40:4c:16:3e:a0:6e: c9:87:0c:04:39:a7:a7:bc:7b:1b:2d:9e:b4:58:af:65:16:e3: 15:f9:a8:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjQxMTIyMTQyODI5WhcNMjQxMTI5MTQyODI5WjAYMRYwFAYD VQQDEw02NzQwOTUwZC0xM2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHUJHvnVYIjjSsd5+OzByhztJWy8OvmjLr2ui5PH0UVqAvXQBkoNdk3kz5aR UEXPhqJ7YtHzeNSnJcxvSyt4gurOcN9Wg2XiuYwAsUwqDQAZFl5u4bVP6nYIbn8K tbH3yNbbvi0krbNZ3iJ0FG/usWQOIuXQXNeuNj1rpkpCZ9jb3E1lsly5DmpJEdfA 2glo9/p+zSVnZ2cCTuIJi2aKPbRWNd6CFdqA5TZZida+HZTDD6E25IG8I5A/V7NP 2pyH2Lw9F04EyanDn8GQIn0CKMMhX7Ev9b5BvaV30YilIxUVepbbMZXMdwG2/Mee u0rFhYb+LeQO87KYBQJe3zWOsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGc8WeAU jRDVUHs86Zt/OQOVaSIkMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzf5eu0pqeAN8gwgg5/YIh3qVSBIcuM/7RSr/SpVYSNeVpUAK4WTFT hE5dmXw7kPBOhuPrEuD1CFHNWMlAep+gDW8G4xXVwsT6Mu/APCt9D27Gh1FkkmSE H7uDZQBhYzqRvRwFqCEUGZzAQqjQ3uSMNlxePAglJs+GCiwOQWZ3ucTgP3EYUbPF NHPFD+N6SLA8O4eduInW/+1CCK7WU799Djj/AFC0vWGJcpKL5yJGYXBhMcpk7lW2 IU77bkbhkayitse5lSF7esYPlUkPP8cXu094RiFN8RxrlrycXGmfSLkSYedATBY+ oG7JhwwEOaenvHsbLZ60WK9lFuMV+ahD -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:44 2024 by rpki-client on console-fra.rpki-client.org