$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: FR7QWkXpAatCddQoqZJ80tmGFCdxWD0tYBvQn1ov1HY= Subject key identifier: 66:CB:FD:52:CB:F4:C3:C6:09:5C:C6:9F:38:46:05:25:48:1E:D4:DF Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 029C Signing time: Thu 21 Nov 2024 01:07:41 +0000 Manifest this update: Thu 21 Nov 2024 01:07:40 +0000 Manifest next update: Thu 28 Nov 2024 01:07:40 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: fYsQjRRK0WO4cLt1DFeL19krlIRWGW9XLtmNkYFaAd4=) 2: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: 9rL5P9zHSC/zuIwV8jLjeMHlPXI3Jer8IGE3VjIcIMA=) 3: EC6483F2A21011ED850DD13CC4F9AE02.roa (hash: 9J81V7sPRRPbYZnOce0KioGOSMZ+23mscJn2CxGQLpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Nov 21 01:07:40 2024 GMT Not After : Nov 28 01:07:40 2024 GMT Subject: CN=673e87dd-ea6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:56:15:8e:6b:24:16:21:bc:15:69:dc:0a:a4: 18:c8:46:a0:56:40:f8:65:84:e6:fd:5e:b7:0f:86: f7:f6:ea:40:0a:88:2b:34:be:4f:58:f9:37:4a:b7: 2b:0c:b6:23:72:fc:01:cc:85:f1:6e:2e:6e:ff:cb: 24:e6:ba:53:af:2f:da:4b:44:40:93:3a:9f:82:68: 79:2b:4a:51:3f:0e:d7:04:6e:e0:15:07:5f:7a:bc: a4:40:c6:8a:22:a3:62:e6:14:07:8d:e2:0e:19:24: bb:ad:48:d4:c6:fc:ca:e6:cc:7b:e3:e1:8f:ab:78: 8b:79:80:ef:f4:c7:7f:8a:c3:ae:80:ef:0f:e3:80: 9f:06:b8:98:8c:f5:78:88:f8:3e:16:3f:4a:93:2f: b2:a3:6c:58:d2:59:0c:17:c5:1f:19:cd:e2:d6:42: fc:b8:92:0f:76:98:ae:0d:ce:4c:0e:75:38:c1:b2: a7:79:76:a9:41:d8:0d:cf:c9:89:e1:5e:4d:48:21: 2b:7a:c1:4f:78:5f:f0:7a:3c:9a:8d:d3:39:77:c3: c0:b9:36:98:a9:47:2d:d1:e2:75:86:51:77:12:be: ba:13:a1:d3:88:3e:93:3f:da:c5:85:b1:ed:fb:37: a7:03:45:21:f3:a3:94:84:38:a4:d0:c2:dc:93:0e: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CB:FD:52:CB:F4:C3:C6:09:5C:C6:9F:38:46:05:25:48:1E:D4:DF X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:37:7b:cc:f1:7b:22:1b:91:a3:ee:68:84:87:99:df:05:59: 88:ec:9d:1c:96:75:2b:b8:94:24:f0:7a:4e:fb:21:b3:55:fc: 90:13:d3:8d:d8:7c:89:63:a2:a1:6d:8a:62:46:b0:c8:3b:41: e0:13:46:e6:c3:b6:74:0b:fd:29:71:8f:2c:2d:3e:ca:8b:0a: 90:1f:c6:72:b4:ef:00:a7:56:a8:ce:e9:2d:90:aa:cc:1f:fd: b6:9d:43:c8:29:f5:19:32:86:e9:f5:cd:5c:20:d4:e3:81:9d: 9a:fc:f5:62:11:0e:89:ac:a8:1f:3c:50:d5:b4:b1:12:44:7b: 59:ca:0f:4d:e0:c3:27:f3:94:bb:16:9e:97:aa:4c:c1:3c:34: ac:ae:64:80:8d:e8:c3:14:c3:4d:d4:86:df:ee:7f:eb:03:20: e8:28:ee:36:64:a9:b9:9c:dd:43:7d:57:be:39:13:0b:cb:4d: c2:ec:a3:c8:d9:45:b0:15:04:13:9a:91:a8:da:71:c9:54:14: f3:51:6f:b0:7a:5c:00:0f:81:b4:a0:e3:44:02:0e:04:e6:3f: 07:c8:5e:22:47:d2:fd:73:6f:cf:12:cd:99:7c:6a:ea:6f:0f: 3e:93:ef:e4:1a:c3:28:9a:28:18:9a:d9:2a:9b:aa:3d:87:c0: a5:55:8c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjQxMTIxMDEwNzQwWhcNMjQxMTI4MDEwNzQwWjAYMRYwFAYD VQQDEw02NzNlODdkZC1lYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFYVjmskFiG8FWncCqQYyEagVkD4ZYTm/V63D4b39upACogrNL5PWPk3Srcr DLYjcvwBzIXxbi5u/8sk5rpTry/aS0RAkzqfgmh5K0pRPw7XBG7gFQdferykQMaK IqNi5hQHjeIOGSS7rUjUxvzK5sx74+GPq3iLeYDv9Md/isOugO8P44CfBriYjPV4 iPg+Fj9Kky+yo2xY0lkMF8UfGc3i1kL8uJIPdpiuDc5MDnU4wbKneXapQdgNz8mJ 4V5NSCEresFPeF/wejyajdM5d8PAuTaYqUct0eJ1hlF3Er66E6HTiD6TP9rFhbHt +zenA0Uh86OUhDik0MLckw60PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbL/VLL 9MPGCVzGnzhGBSVIHtTfMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdN3vM8XsiG5Gj7miEh5nfBVmI7J0clnUruJQk8HpO+yGzVfyQE9ON 2HyJY6KhbYpiRrDIO0HgE0bmw7Z0C/0pcY8sLT7KiwqQH8ZytO8Ap1aozuktkKrM H/22nUPIKfUZMobp9c1cINTjgZ2a/PViEQ6JrKgfPFDVtLESRHtZyg9N4MMn85S7 Fp6XqkzBPDSsrmSAjejDFMNN1Ibf7n/rAyDoKO42ZKm5nN1DfVe+ORMLy03C7KPI 2UWwFQQTmpGo2nHJVBTzUW+welwAD4G0oONEAg4E5j8HyF4iR9L9c2/PEs2ZfGrq bw8+k+/kGsMomigYmtkqm6o9h8ClVYxl -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:07 2024 by rpki-client on console-fra.rpki-client.org