$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft File: qkjQtX4IXNlA26F5HapYc8wZx_4.mft (raw, json) Hash identifier: S4wiqRDV87hlbWZolIpcsZKLX/YjtJsCWJN0LO3kVE4= Subject key identifier: 68:3B:5E:53:84:16:5C:87:AD:57:D9:7A:65:80:B2:6F:F1:43:BB:21 Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 0330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft Manifest number: 032B Signing time: Sat 23 Nov 2024 00:42:25 +0000 Manifest this update: Sat 23 Nov 2024 00:42:25 +0000 Manifest next update: Sat 30 Nov 2024 00:42:25 +0000 Files and hashes: 1: qkjQtX4IXNlA26F5HapYc8wZx_4.crl (hash: if1z1rLMgndHKbxC+CHcGxnB5f2FO1/2w+1rAhyfPQA=) 2: 9924B750A1AF11EC9A73D814C4F9AE02.roa (hash: IHCx8iKwFaHNBcD68Fjdjf74kAkM54IECqYXNmF+PP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: Nov 23 00:42:25 2024 GMT Not After : Nov 30 00:42:25 2024 GMT Subject: CN=674124f1-dd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:52:57:44:06:bd:23:f5:f3:06:e4:6b:a5: e5:3c:c5:c0:47:a7:f2:0e:bc:ec:54:dd:1e:e2:93: f4:27:9e:a7:f5:6b:53:92:3c:2f:46:8c:bf:34:cc: 39:f1:3a:cd:a8:96:70:a3:2d:3b:7d:11:65:b3:ff: ec:bb:da:24:04:83:69:e5:50:9f:dd:cf:a3:ae:0c: f4:bd:46:24:38:e7:1c:c9:7c:4e:1b:4d:fa:a7:ac: ae:2f:b5:3e:f5:14:b6:c5:52:0e:1e:c3:bb:27:ad: 7e:c1:f9:fa:6d:2b:5f:2c:f9:0f:d8:b7:d6:ed:a1: c7:b6:86:7b:a3:8b:d4:04:8d:03:57:5d:ab:54:72: 54:18:78:83:75:a7:f0:1d:03:a0:e0:77:9d:a8:69: 22:bd:8f:c4:f8:bd:21:0b:68:2c:37:9b:ad:5d:1a: 2b:fe:a3:66:e6:d2:ff:bb:18:5b:06:c1:06:1d:4e: b3:1e:46:25:7f:1b:eb:53:a5:1f:08:0a:47:4b:1c: 90:04:8b:94:b8:56:8c:9a:2c:58:3b:f3:7b:2f:08: 79:eb:43:23:bf:b3:d2:52:cc:81:23:12:1f:87:b9: e6:77:5a:d1:b6:d6:dd:71:13:3d:32:40:1d:12:a7: 3a:4b:94:2f:a6:28:59:3f:aa:04:ed:c2:cb:0d:a2: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3B:5E:53:84:16:5C:87:AD:57:D9:7A:65:80:B2:6F:F1:43:BB:21 X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:02:f1:fd:ab:f1:3c:f6:f1:c1:65:ca:9a:4d:cc:1d:53:2a: b3:d2:2d:72:d0:44:9d:c9:be:48:c8:ec:dc:29:47:5a:c0:d1: 09:08:d4:29:f3:5f:65:47:93:68:f5:92:be:ac:8a:38:62:6e: 32:48:14:06:bd:af:97:55:33:72:db:f1:56:94:32:0f:a2:9d: 48:fe:22:5d:b2:02:2e:3b:f3:71:70:9d:51:0f:ca:1c:42:7b: fc:d9:18:d3:c5:9b:f7:14:1c:9c:6c:f3:44:1c:93:b5:a6:8e: c5:21:0e:94:d2:5a:76:dc:89:d3:8f:0a:dc:d1:0a:52:de:6e: 8f:95:f5:8f:7f:d7:b4:ce:d2:d0:43:0a:7b:47:63:80:eb:ea: fc:67:b2:67:d9:f7:39:0c:9e:e1:ad:a3:f7:65:11:78:7b:7f: 58:ba:99:e6:a0:d4:03:87:a1:07:dc:9f:00:56:5e:f1:f5:59: d8:d0:05:a6:98:a3:61:e6:77:14:4a:3c:36:3f:89:e0:bd:e4: 00:13:2e:a8:f8:e9:e4:32:2b:0c:51:13:ed:ed:6b:52:06:04: e4:5d:61:b0:a3:ad:8d:b5:cb:26:35:f3:b2:1d:70:04:37:f8: 8b:a7:dd:10:6f:bf:f2:b7:25:ee:ea:ef:bf:17:77:fe:aa:7b: 11:7a:9f:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjQxMTIzMDA0MjI1WhcNMjQxMTMwMDA0MjI1WjAYMRYwFAYD VQQDEw02NzQxMjRmMS1kZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI5SV0QGvSP18wbka6XlPMXAR6fyDrzsVN0e4pP0J56n9WtTkjwvRoy/NMw5 8TrNqJZwoy07fRFls//su9okBINp5VCf3c+jrgz0vUYkOOccyXxOG036p6yuL7U+ 9RS2xVIOHsO7J61+wfn6bStfLPkP2LfW7aHHtoZ7o4vUBI0DV12rVHJUGHiDdafw HQOg4HedqGkivY/E+L0hC2gsN5utXRor/qNm5tL/uxhbBsEGHU6zHkYlfxvrU6Uf CApHSxyQBIuUuFaMmixYO/N7Lwh560Mjv7PSUsyBIxIfh7nmd1rRttbdcRM9MkAd Eqc6S5QvpihZP6oE7cLLDaJKjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGg7XlOE FlyHrVfZemWAsm/xQ7shMB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU4Mi85NzRGQ0FBMEExMTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhO bEEyNkY1SGFwWWM4d1p4XzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiAvH9q/E89vHBZcqaTcwdUyqz0i1y0ESdyb5IyOzcKUdawNEJCNQp 819lR5No9ZK+rIo4Ym4ySBQGva+XVTNy2/FWlDIPop1I/iJdsgIuO/NxcJ1RD8oc Qnv82RjTxZv3FBycbPNEHJO1po7FIQ6U0lp23InTjwrc0QpS3m6PlfWPf9e0ztLQ Qwp7R2OA6+r8Z7Jn2fc5DJ7hraP3ZRF4e39YupnmoNQDh6EH3J8AVl7x9VnY0AWm mKNh5ncUSjw2P4ngveQAEy6o+OnkMisMURPt7WtSBgTkXWGwo62NtcsmNfOyHXAE N/iLp90Qb7/ytyXu6u+/F3f+qnsRep+T -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org