$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: wVnLXw/BKhSA+7Ih+IaaHY1z83QMeMiejUfBN+VOBXs= Subject key identifier: 80:3D:7D:6B:6B:F0:58:73:D3:F6:E0:61:B8:4F:9E:9E:3B:1A:42:63 Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: 0137 Signing time: Sat 23 Nov 2024 02:48:08 +0000 Manifest this update: Sat 23 Nov 2024 02:48:07 +0000 Manifest next update: Sat 30 Nov 2024 02:48:07 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: ampI2i7+nracPgKQEXLPipXAMhHWDy0FgtL6GSvhjyk=) 2: 45D16954A04E11EFB7A1FD6CC4F9AE02.roa (hash: ZDeuMCGn92bs4geP2myGIqJkxEeZZToab6ilA20tIVc=) 3: 197B9E9CA04E11EFBBD5656CC4F9AE02.roa (hash: I1ga2GPWIrL2hIHbjzGITbPTogP30yy2V/2v2ZDGEig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: Nov 23 02:48:07 2024 GMT Not After : Nov 30 02:48:07 2024 GMT Subject: CN=67414267-fdba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fb:1a:d2:e0:c8:91:77:bc:d2:eb:35:48:85: 00:aa:7d:e4:f8:26:40:16:e6:77:af:55:f1:89:39: 7d:52:d9:a5:62:03:b1:d2:8a:8d:88:bd:8d:65:68: f9:fd:ea:37:9a:b8:b7:33:0e:49:38:fc:a8:ae:8d: f6:ad:37:b8:bd:5a:5d:0b:60:be:ce:f7:8b:4f:0d: dc:d3:22:a4:e8:04:d1:71:4e:7d:d3:14:03:8d:23: 93:ff:c4:f4:00:0a:81:70:99:97:e7:37:e0:fc:c3: 50:df:0c:60:78:93:ba:1e:a2:46:81:30:63:2a:a2: 7d:ab:2d:43:fb:2d:66:7b:6a:e2:3f:6e:01:7e:d7: be:0a:7b:ab:fc:13:e1:79:83:00:07:d5:84:e6:10: f1:bd:aa:00:ff:53:26:7c:2f:a8:37:0d:84:b6:79: c6:c4:ef:a1:d1:39:05:d9:45:ef:58:49:4e:b4:c6: f7:08:d5:e4:6a:94:eb:8c:d3:ab:8a:ea:7f:01:28: fb:c0:db:91:4d:8f:2a:24:25:a1:f4:dd:b6:3e:cc: 74:ec:93:8f:b9:cd:52:06:d2:53:ba:f4:3f:1e:ff: 8e:52:bc:f5:35:fe:f2:33:2d:1b:6f:de:df:03:15: 68:55:21:f2:b9:bc:91:1c:85:74:7a:42:ab:4c:90: 5e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3D:7D:6B:6B:F0:58:73:D3:F6:E0:61:B8:4F:9E:9E:3B:1A:42:63 X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d0:88:7c:28:d3:59:13:a8:2e:a9:dd:46:72:ea:fe:31:ef: 91:22:01:4c:2a:b5:24:46:95:33:b8:82:35:b0:f2:35:27:11: bb:c5:fa:1c:70:b1:7e:00:20:a2:51:88:5b:97:de:1e:73:b9: 69:ed:d8:de:d6:b8:bd:49:ed:ed:38:7f:bd:7f:7a:68:96:9b: 76:21:69:71:12:51:cb:45:d7:d6:b9:35:58:33:2d:e5:50:ab: 76:6e:fa:f5:c7:04:15:c4:04:14:3f:fb:5b:bd:56:5a:30:55: 0a:a6:5c:0b:01:c7:62:e5:e1:bb:41:35:f6:37:7f:60:8a:54: 58:21:fc:37:0a:41:5e:03:98:7f:e3:05:ea:f8:43:19:0b:45: 9a:5b:5b:e6:4a:8c:f7:33:d9:ef:3e:2a:2f:6b:97:e9:20:1a: 2d:fc:e9:5a:42:5c:ff:19:f6:9f:53:0d:f0:1b:a1:bf:c6:1a: 92:23:d7:72:20:f3:e2:96:b9:0d:9b:b4:7c:64:2c:55:23:9e: 39:18:52:75:2e:c1:6f:66:24:2e:34:f9:61:66:0e:67:ee:9d: 62:f2:95:5a:1d:b3:8d:c9:4b:e6:b8:e4:76:85:d0:9e:62:36: 42:e3:d6:a7:4d:75:7e:f5:80:01:ec:82:ef:44:25:e0:55:3e: 39:be:88:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjQxMTIzMDI0ODA3WhcNMjQxMTMwMDI0ODA3WjAYMRYwFAYD VQQDEw02NzQxNDI2Ny1mZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPsa0uDIkXe80us1SIUAqn3k+CZAFuZ3r1XxiTl9UtmlYgOx0oqNiL2NZWj5 /eo3mri3Mw5JOPyoro32rTe4vVpdC2C+zveLTw3c0yKk6ATRcU590xQDjSOT/8T0 AAqBcJmX5zfg/MNQ3wxgeJO6HqJGgTBjKqJ9qy1D+y1me2riP24Bfte+Cnur/BPh eYMAB9WE5hDxvaoA/1MmfC+oNw2EtnnGxO+h0TkF2UXvWElOtMb3CNXkapTrjNOr iup/ASj7wNuRTY8qJCWh9N22Psx07JOPuc1SBtJTuvQ/Hv+OUrz1Nf7yMy0bb97f AxVoVSHyubyRHIV0ekKrTJBedwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA9fWtr 8Fhz0/bgYbhPnp47GkJjMB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn0Ih8KNNZE6guqd1Gcur+Me+RIgFMKrUkRpUzuII1sPI1JxG7xfoc cLF+ACCiUYhbl94ec7lp7dje1ri9Se3tOH+9f3polpt2IWlxElHLRdfWuTVYMy3l UKt2bvr1xwQVxAQUP/tbvVZaMFUKplwLAcdi5eG7QTX2N39gilRYIfw3CkFeA5h/ 4wXq+EMZC0WaW1vmSoz3M9nvPiova5fpIBot/OlaQlz/GfafUw3wG6G/xhqSI9dy IPPilrkNm7R8ZCxVI545GFJ1LsFvZiQuNPlhZg5n7p1i8pVaHbONyUvmuOR2hdCe YjZC49anTXV+9YAB7ILvRCXgVT45vohj -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org