$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: aKRx37VZ9sf/iHpFZ3v6Qaix10SjGiUG/iWSiMHVHMU= Subject key identifier: 0E:BA:AB:58:46:84:3F:A5:E3:49:D2:7C:F1:4F:0A:DF:E1:F2:15:B4 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 79 Signing time: Thu 21 Nov 2024 04:50:51 +0000 Manifest this update: Thu 21 Nov 2024 04:50:51 +0000 Manifest next update: Thu 28 Nov 2024 04:50:51 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: rS4DG0ThMfR7DVtqCcdAy9tM6WYOPVF9HJONlOiyouw=) 2: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: FmKOoIy9+bgPVPKgarvTsauo+TWTKJRdnaWb6dHntdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Nov 21 04:50:51 2024 GMT Not After : Nov 28 04:50:51 2024 GMT Subject: CN=673ebc2b-9ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:20:5e:27:63:7d:ec:87:26:11:8a:ec:8b: 5c:1e:b1:3c:92:08:9a:e1:3b:45:64:d2:e5:a3:5c: 70:bf:f3:6d:f1:4d:44:75:a9:82:dd:d4:a9:fa:a9: 1e:c3:4a:95:5d:90:63:e8:78:87:f6:04:ac:95:a7: 23:c8:72:45:95:a0:3e:55:1e:93:85:1c:78:fc:69: cd:3e:12:42:51:91:e1:38:ad:c1:9b:b2:80:3d:70: 52:77:34:7d:78:44:c3:f7:88:64:d5:05:76:5e:e3: 47:b3:f7:61:f2:60:8f:c3:7d:ea:a6:15:71:ed:01: b8:9c:53:5a:f2:84:6a:e3:69:ff:b6:c1:f4:18:ac: a0:d7:96:fd:5f:20:8e:41:bf:79:0e:83:c9:71:26: e9:4d:bb:42:b3:c9:c0:9e:28:1a:b3:17:bd:4b:37: 23:7d:d7:ba:9b:11:b3:fe:ec:48:2f:a7:68:d1:1e: 09:cb:03:4f:56:76:ff:4e:cc:c8:6e:e5:36:e2:58: da:9f:3d:55:4e:e5:b8:1b:fd:3f:41:0d:ad:7c:f9: ea:ca:ae:34:bb:c1:e0:dd:9a:51:83:e9:6b:68:98: 78:a8:04:d0:48:30:5e:d9:78:1a:73:12:ec:54:21: ed:db:de:62:d7:aa:d2:c2:a5:9b:71:4d:cf:4b:50: e8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BA:AB:58:46:84:3F:A5:E3:49:D2:7C:F1:4F:0A:DF:E1:F2:15:B4 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:54:15:b8:6c:4c:27:fe:f1:6c:7a:bd:44:68:0f:ab:cf:8b: b0:3f:71:1e:0b:e9:d9:18:ed:1f:80:dc:3c:db:12:26:b0:7d: 07:f2:c8:40:6a:20:96:97:52:ed:6e:0b:96:fb:3f:de:11:d8: 11:a9:9c:25:5b:57:9f:a3:13:21:32:f8:33:d2:53:ff:11:00: d1:4c:93:e5:00:db:3e:38:6c:f1:d0:2f:02:c1:28:b2:fc:22: 98:6c:bb:93:d5:ed:eb:14:5d:c5:af:8e:6a:cd:88:22:9a:d1: 09:81:bc:43:80:3d:cb:72:58:23:a0:9e:d7:06:4a:59:69:db: 24:79:e6:ad:f7:57:51:33:b8:ce:a3:58:0a:20:c3:be:5c:9e: 73:4c:dd:69:b3:6a:b1:ef:00:88:86:8e:0d:94:fd:50:29:a0: 0d:cd:61:06:ba:69:5e:bc:a2:05:2e:9c:a1:fa:ca:c9:34:ba: 86:e2:d5:3c:8b:6f:3b:e9:9a:28:f1:7b:ad:1c:de:ba:9a:40: 1a:0e:30:a5:a5:fa:e0:dd:f8:c0:57:a2:10:42:f6:7b:90:35: cf:f1:15:75:12:7f:c2:c5:46:06:fb:e1:29:f3:ae:a2:13:3b: 73:ff:94:f0:4f:ad:21:d1:61:50:10:ed:2f:a5:9e:94:8e:7c: 53:1e:f2:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Mzk4OTExMC8GA1UEBRMoOUE0N0JGNDBCRDQ4ODdFMjI0MTUzMzI3OUU3RjFEN0Yy QTVGNkZCQjAeFw0yNDExMjEwNDUwNTFaFw0yNDExMjgwNDUwNTFaMBgxFjAUBgNV BAMTDTY3M2ViYzJiLTllYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU1CBeJ2N97IcmEYrsi1wesTySCJrhO0Vk0uWjXHC/823xTUR1qYLd1Kn6qR7D SpVdkGPoeIf2BKyVpyPIckWVoD5VHpOFHHj8ac0+EkJRkeE4rcGbsoA9cFJ3NH14 RMP3iGTVBXZe40ez92HyYI/DfeqmFXHtAbicU1ryhGrjaf+2wfQYrKDXlv1fII5B v3kOg8lxJulNu0KzycCeKBqzF71LNyN917qbEbP+7Egvp2jRHgnLA09Wdv9OzMhu 5TbiWNqfPVVO5bgb/T9BDa18+erKrjS7weDdmlGD6WtomHioBNBIMF7ZeBpzEuxU Ie3b3mLXqtLCpZtxTc9LUOhTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDrqrWEaE P6XjSdJ88U8K3+HyFbQwHwYDVR0jBBgwFoAUmke/QL1Ih+IkFTMnnn8dfypfb7sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzOTg5LzMxNjFDMzdFRUNE MDExRUU4QTIyNEQ0OUM0RjlBRTAyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbWtlX1FMMUloLUlrRlRNbm5uOGRmeXBmYjdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz OTg5LzMxNjFDMzdFRUNEMDExRUU4QTIyNEQ0OUM0RjlBRTAyL21rZV9RTDFJaC1J a0ZUTW5ubjhkZnlwZmI3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZUFbhsTCf+8Wx6vURoD6vPi7A/cR4L6dkY7R+A3DzbEiawfQfyyEBq IJaXUu1uC5b7P94R2BGpnCVbV5+jEyEy+DPSU/8RANFMk+UA2z44bPHQLwLBKLL8 Iphsu5PV7esUXcWvjmrNiCKa0QmBvEOAPctyWCOgntcGSllp2yR55q33V1EzuM6j WAogw75cnnNM3WmzarHvAIiGjg2U/VApoA3NYQa6aV68ogUunKH6ysk0uobi1TyL bzvpmijxe60c3rqaQBoOMKWl+uDd+MBXohBC9nuQNc/xFXUSf8LFRgb74SnzrqIT O3P/lPBPrSHRYVAQ7S+lnpSOfFMe8mQ= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:40 2024 by rpki-client on console-ams.rpki-client.org