$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: iLlHc7rI9k6sV4CsrBEng4ptolRa+Ec1M4uXU6er7n0= Subject key identifier: C8:6F:3A:58:07:1E:04:4A:25:C8:A6:94:1E:86:5B:B9:2E:01:D7:3C Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: CF Signing time: Sat 23 Nov 2024 03:49:53 +0000 Manifest this update: Sat 23 Nov 2024 03:49:53 +0000 Manifest next update: Sat 30 Nov 2024 03:49:53 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: 6QPsEbIHSo3POdT/xJlIZlq8St3LRSKWUyyZt9WRsDI=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: P8RCG3anUB4OlTp6lr7fbucHFI/jOy6jB+56lSRIUq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: Nov 23 03:49:53 2024 GMT Not After : Nov 30 03:49:53 2024 GMT Subject: CN=674150e1-c9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:d5:b1:99:b3:e0:d1:9b:3f:ef:67:6d:94: c4:2e:d0:70:a9:9c:61:4a:d6:25:da:47:25:76:86: 86:44:ff:6c:0a:4d:2f:1d:41:ee:80:29:0f:9c:f4: c3:43:ab:a1:82:bf:5f:8e:a8:43:f8:22:44:52:47: b1:08:b9:30:b4:9c:6b:08:6c:25:35:86:39:8e:9c: 3e:4e:3f:56:14:a9:5e:7d:a8:43:b5:54:cc:a2:e1: 38:f4:a2:8b:bf:4f:a1:9e:8e:09:bc:41:3b:14:f7: de:b4:ca:4a:4d:24:5a:41:4e:29:11:09:8a:b5:4c: 33:9c:e9:3a:68:81:77:6c:7e:f7:c7:04:89:80:9e: 32:18:5a:76:14:20:80:c2:bf:24:2a:75:ec:97:31: 1a:60:69:85:ba:c1:6b:1a:ac:39:32:4e:d4:8d:4b: 77:ae:db:b9:6d:32:67:0a:7f:d5:22:be:83:e1:c5: 36:d1:8c:a0:e1:a2:00:98:93:ed:96:cf:18:65:00: 14:02:8e:fc:9c:0c:f6:86:e7:bf:cd:a7:9d:4a:77: 0a:b6:fe:6b:97:49:48:13:d9:47:65:48:70:d7:27: 21:2c:a4:4e:44:49:4e:02:45:fd:7b:b4:b7:1e:b0: 2f:b6:ee:e7:12:bb:d2:46:2a:12:79:88:56:c6:34: 61:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6F:3A:58:07:1E:04:4A:25:C8:A6:94:1E:86:5B:B9:2E:01:D7:3C X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f7:d6:03:14:89:a8:8c:c2:72:a5:04:61:a4:bb:29:40:d0: 90:26:b2:33:52:39:ff:2e:d4:f2:0a:a1:00:5c:a5:ea:9e:24: 12:cd:40:06:8e:ec:bb:46:fa:85:9e:9a:bb:4a:f3:98:33:21: 37:e3:6c:87:7a:fb:ad:ee:63:b6:fc:93:27:0f:05:1c:b1:e7: 90:a3:53:fa:d5:95:09:57:3e:30:b6:a2:59:c3:32:f7:ec:cc: 8f:c4:66:6d:ec:81:a2:c5:1b:d4:fa:b8:e7:de:36:93:a0:86: 6c:8a:92:5d:bd:83:cc:b8:03:88:5e:ba:06:06:48:e6:e9:fb: 12:47:d8:b5:f9:32:40:65:e4:7d:f5:ec:eb:0d:72:19:04:92: 61:53:78:d0:5b:df:03:bc:18:33:e0:7d:5a:8d:9c:49:cc:e7: e0:8e:9b:12:0b:17:97:b7:14:63:3b:85:e7:51:fd:2a:1b:e1: bd:cc:a8:85:c9:78:cd:80:cc:49:f2:74:58:63:e4:a5:a2:ad: 30:12:dc:13:41:cc:cb:33:47:55:ec:a9:98:98:a9:68:93:e3: 9c:ab:6b:6c:d1:86:c2:93:c8:68:6b:d1:3c:fe:5c:a7:d2:ee: b6:83:d1:8a:53:c8:df:a9:8b:59:4b:44:aa:01:60:36:fb:ef: 31:d3:cc:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjQxMTIzMDM0OTUzWhcNMjQxMTMwMDM0OTUzWjAYMRYwFAYD VQQDEw02NzQxNTBlMS1jOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/bVsZmz4NGbP+9nbZTELtBwqZxhStYl2kcldoaGRP9sCk0vHUHugCkPnPTD Q6uhgr9fjqhD+CJEUkexCLkwtJxrCGwlNYY5jpw+Tj9WFKlefahDtVTMouE49KKL v0+hno4JvEE7FPfetMpKTSRaQU4pEQmKtUwznOk6aIF3bH73xwSJgJ4yGFp2FCCA wr8kKnXslzEaYGmFusFrGqw5Mk7UjUt3rtu5bTJnCn/VIr6D4cU20Yyg4aIAmJPt ls8YZQAUAo78nAz2hue/zaedSncKtv5rl0lIE9lHZUhw1ychLKRORElOAkX9e7S3 HrAvtu7nErvSRioSeYhWxjRhSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhvOlgH HgRKJcimlB6GW7kuAdc8MB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjY2RC81MTFBODkyRTcxQTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9T MXhscWhFR0tpb1JrVlRINWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW99YDFImojMJypQRhpLspQNCQJrIzUjn/LtTyCqEAXKXqniQSzUAG juy7RvqFnpq7SvOYMyE342yHevut7mO2/JMnDwUcseeQo1P61ZUJVz4wtqJZwzL3 7MyPxGZt7IGixRvU+rjn3jaToIZsipJdvYPMuAOIXroGBkjm6fsSR9i1+TJAZeR9 9ezrDXIZBJJhU3jQW98DvBgz4H1ajZxJzOfgjpsSCxeXtxRjO4XnUf0qG+G9zKiF yXjNgMxJ8nRYY+Sloq0wEtwTQczLM0dV7KmYmKlok+Ocq2ts0YbCk8hoa9E8/lyn 0u62g9GKU8jfqYtZS0SqAWA2++8x08yW -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org