$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: Xzwumz8VGJ6y7amLPRT/B2hqZ20wmrKx4pMMqoTQAZM= Subject key identifier: 9F:E2:83:86:11:80:77:C4:9A:85:11:DF:C8:AE:CE:4A:8E:EE:66:C7 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 034B Signing time: Sat 23 Nov 2024 00:34:00 +0000 Manifest this update: Sat 23 Nov 2024 00:34:00 +0000 Manifest next update: Sat 30 Nov 2024 00:34:00 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: VniZXhVmC48svx3VF4FS3cpHY63Hv3mnRXSOPd7D2Mw=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: nbCviYG6ZU2PoxH5R9L614zoQP6hvAN/12PgWuwOdEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Nov 23 00:34:00 2024 GMT Not After : Nov 30 00:34:00 2024 GMT Subject: CN=674122f8-bc24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a1:ec:d1:5d:12:45:7e:f3:a9:8a:f7:ae:3c: 16:e9:66:91:2c:a7:2b:d7:63:ae:1c:74:e3:d2:28: 77:a5:cf:fa:e9:57:fa:58:1d:0c:51:95:c1:68:74: ea:f0:e1:a7:9a:81:8e:4e:66:b1:75:71:80:6d:20: 00:7d:f8:03:63:ab:77:47:ad:f3:18:3f:8f:68:3a: 57:28:c8:62:c0:3a:4b:24:e7:3d:1a:53:e2:0a:88: 76:c9:89:55:48:ee:6e:9b:8d:e9:0e:01:d2:a2:0f: 96:0f:cb:8a:31:3a:2a:ba:bf:c5:b8:4d:07:4a:39: 46:8d:36:ba:b6:65:ec:4b:04:21:5b:d8:6b:26:52: 5c:ae:95:21:f5:6c:cd:b1:03:fe:00:60:0c:79:ca: d5:d8:8a:ef:69:12:6a:37:e6:a3:e0:0e:9d:db:3f: 9f:a8:1d:22:0b:13:43:70:fa:ab:43:22:86:7b:9f: d6:06:70:14:ae:89:a2:fa:7e:b8:22:77:1c:f6:b9: e1:c9:ae:fd:08:a3:d1:da:5a:bb:f9:ea:63:77:99: 38:47:d8:79:ce:96:47:12:50:34:20:10:e9:13:4b: d5:9d:bb:ae:6e:e9:31:e7:7e:fc:a6:ce:9a:e2:dc: a6:51:f6:3b:db:86:22:63:2b:85:b6:30:b1:0c:50: dd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E2:83:86:11:80:77:C4:9A:85:11:DF:C8:AE:CE:4A:8E:EE:66:C7 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:7d:10:d9:a8:64:c8:5b:09:d2:ac:e5:7c:30:41:3e:c4:24: a0:51:1e:60:34:8a:ee:a9:87:a6:1f:4e:7d:73:90:a8:d0:b4: fa:b5:6b:4c:44:f2:8b:ad:23:72:41:c7:e3:c6:12:15:c4:5c: 35:c7:db:22:07:55:83:5c:99:23:5a:8a:43:d1:8d:3d:14:8c: 0d:fe:fe:8e:4a:1d:ad:f9:87:a4:d2:28:ef:8f:de:c6:56:b2: 74:59:d4:81:dc:0b:32:47:d2:63:2a:49:2e:88:e3:21:20:d7: c0:19:39:54:45:58:ad:64:e2:79:01:4e:71:ec:9a:e6:2f:4a: db:7d:97:dc:c2:f4:1b:e0:c5:7c:27:61:69:fa:62:1d:2f:bc: e4:44:e5:17:34:53:ff:48:de:65:af:0a:8d:88:51:d7:13:43: c1:7c:24:0e:90:c8:94:b1:f8:28:30:27:16:8a:30:4d:bb:11: 17:fa:59:79:95:b4:a7:44:ec:b2:52:44:a3:91:aa:4a:fe:3f: 78:7b:a4:55:17:29:e7:3e:fb:62:0e:33:b8:8f:fa:e3:4d:d1: 4b:69:d9:f7:5a:86:73:c1:db:08:5a:53:d9:44:88:85:2a:fe: a4:3f:75:bf:f0:ad:96:a2:3c:79:b1:7f:1d:55:46:17:0d:6f: 44:d9:7f:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjQxMTIzMDAzNDAwWhcNMjQxMTMwMDAzNDAwWjAYMRYwFAYD VQQDEw02NzQxMjJmOC1iYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4aHs0V0SRX7zqYr3rjwW6WaRLKcr12OuHHTj0ih3pc/66Vf6WB0MUZXBaHTq 8OGnmoGOTmaxdXGAbSAAffgDY6t3R63zGD+PaDpXKMhiwDpLJOc9GlPiCoh2yYlV SO5um43pDgHSog+WD8uKMToqur/FuE0HSjlGjTa6tmXsSwQhW9hrJlJcrpUh9WzN sQP+AGAMecrV2IrvaRJqN+aj4A6d2z+fqB0iCxNDcPqrQyKGe5/WBnAUromi+n64 Incc9rnhya79CKPR2lq7+epjd5k4R9h5zpZHElA0IBDpE0vVnbuubukx5378ps6a 4tymUfY724YiYyuFtjCxDFDd2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/ig4YR gHfEmoUR38iuzkqO7mbHMB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTfRDZqGTIWwnSrOV8MEE+xCSgUR5gNIruqYemH059c5Co0LT6tWtM RPKLrSNyQcfjxhIVxFw1x9siB1WDXJkjWopD0Y09FIwN/v6OSh2t+Yek0ijvj97G VrJ0WdSB3AsyR9JjKkkuiOMhINfAGTlURVitZOJ5AU5x7JrmL0rbfZfcwvQb4MV8 J2Fp+mIdL7zkROUXNFP/SN5lrwqNiFHXE0PBfCQOkMiUsfgoMCcWijBNuxEX+ll5 lbSnROyyUkSjkapK/j94e6RVFynnPvtiDjO4j/rjTdFLadn3WoZzwdsIWlPZRIiF Kv6kP3W/8K2Wojx5sX8dVUYXDW9E2X9w -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:50 2024 by rpki-client on console-fra.rpki-client.org