$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: zrjxqSVYW4FoyzUdM3CRBFWSf+xlM0+mxV4FZXIhHVM= Subject key identifier: 41:26:CB:17:BA:62:A8:41:96:21:DF:06:07:98:0F:BD:CA:CD:61:81 Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 202A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 26CB Signing time: Fri 22 Nov 2024 15:58:31 +0000 Manifest this update: Fri 22 Nov 2024 15:58:31 +0000 Manifest next update: Fri 29 Nov 2024 15:58:31 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: MIwlrvdR8Qx6ZTG8uHMaVySzCy/xBPLux+baTbDZynA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8234 (0x202a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: Nov 22 15:58:31 2024 GMT Not After : Nov 29 15:58:31 2024 GMT Subject: CN=6740aa27-9273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:79:80:67:88:8c:bc:16:8f:b4:37:0f:1f:63: d4:40:95:a9:57:90:07:1b:dd:9b:0f:33:e6:53:ee: 88:4e:a7:9f:a2:f3:0c:e0:8a:c5:ef:a2:ec:8f:13: e4:fc:11:53:9b:67:49:67:37:c2:68:9f:d6:f1:f1: 87:c7:42:24:b6:39:f1:ab:a7:99:79:32:7f:ee:ed: 00:9b:7e:b5:74:75:91:17:26:13:43:9a:72:19:77: 70:31:32:e3:2c:cb:94:5e:74:70:b9:9f:4e:02:30: 5b:b3:f6:97:75:d8:da:92:ee:af:16:35:4d:84:55: 4e:ce:9c:3c:47:e8:24:2e:71:43:0f:a6:98:be:54: b2:91:29:9d:55:7d:17:c6:88:c3:9c:1f:66:20:b1: 5d:a4:5e:82:bb:ad:c6:3e:e8:47:ba:dc:c0:25:06: 91:da:9b:c8:33:06:68:b1:9f:26:ef:92:ee:05:f2: 8c:34:9e:fb:9f:cb:13:3b:2b:c6:aa:ff:04:2a:d8: 5a:25:2f:9b:63:74:24:6a:b7:bf:29:b3:65:77:0b: 3c:84:77:22:3a:6a:dd:bf:45:d5:5f:cd:04:e8:65: 15:4c:57:95:f8:a7:b4:7c:a3:a5:f9:a6:94:62:3d: 16:f3:c3:5e:d4:a8:2c:1e:37:8c:21:6e:f8:b9:cd: 36:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:26:CB:17:BA:62:A8:41:96:21:DF:06:07:98:0F:BD:CA:CD:61:81 X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f2:a9:ac:86:d2:fa:f0:37:e2:5e:dc:e5:3f:e3:b8:44:70: a0:88:ff:2c:6e:7b:2e:3a:33:3d:72:4d:1f:b9:d7:c3:2b:79: 2b:fd:7e:eb:1e:33:0b:3a:09:34:1f:d2:11:ea:47:4f:15:4a: 4a:f1:db:b5:9d:91:e5:c8:fd:a8:d6:10:f8:ac:2c:19:b9:be: 66:fa:e2:fe:4f:04:c3:e4:49:7c:cd:5b:e4:c5:83:19:e5:06: 09:1d:b8:5d:08:ec:70:22:7d:de:8d:56:7f:8a:46:72:82:bc: 18:02:cb:c0:92:e6:82:69:e7:94:b1:0b:50:ae:6a:1c:e8:76: 12:fd:85:cb:2a:fe:e5:57:5a:26:fa:1d:15:4e:e7:fb:2e:f4: cd:e5:0a:8a:7b:07:60:38:91:b9:9f:35:99:77:8d:ac:be:18: 0c:2c:0c:d6:81:54:5b:83:4c:50:80:48:d0:9d:66:75:24:27: 42:89:02:67:50:b6:c4:ea:b1:44:e2:1e:d0:15:04:59:27:83: 13:e2:c6:41:06:44:0f:fc:89:e3:a5:e7:18:6a:e8:c9:79:08: e2:a0:67:a9:99:d3:74:28:38:ce:f5:b3:39:e5:ce:5a:dd:8c: a1:1e:0d:c5:00:69:ab:e9:4d:4c:32:a8:0c:da:d9:30:39:2a: c6:b4:e6:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICICowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjQxMTIyMTU1ODMxWhcNMjQxMTI5MTU1ODMxWjAYMRYwFAYD VQQDEw02NzQwYWEyNy05MjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXmAZ4iMvBaPtDcPH2PUQJWpV5AHG92bDzPmU+6ITqefovMM4IrF76LsjxPk /BFTm2dJZzfCaJ/W8fGHx0Iktjnxq6eZeTJ/7u0Am361dHWRFyYTQ5pyGXdwMTLj LMuUXnRwuZ9OAjBbs/aXddjaku6vFjVNhFVOzpw8R+gkLnFDD6aYvlSykSmdVX0X xojDnB9mILFdpF6Cu63GPuhHutzAJQaR2pvIMwZosZ8m75LuBfKMNJ77n8sTOyvG qv8EKthaJS+bY3Qkare/KbNldws8hHciOmrdv0XVX80E6GUVTFeV+Ke0fKOl+aaU Yj0W88Ne1KgsHjeMIW74uc022wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEmyxe6 YqhBliHfBgeYD73KzWGBMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA28qmshtL68DfiXtzlP+O4RHCgiP8sbnsuOjM9ck0fudfDK3kr/X7r HjMLOgk0H9IR6kdPFUpK8du1nZHlyP2o1hD4rCwZub5m+uL+TwTD5El8zVvkxYMZ 5QYJHbhdCOxwIn3ejVZ/ikZygrwYAsvAkuaCaeeUsQtQrmoc6HYS/YXLKv7lV1om +h0VTuf7LvTN5QqKewdgOJG5nzWZd42svhgMLAzWgVRbg0xQgEjQnWZ1JCdCiQJn ULbE6rFE4h7QFQRZJ4MT4sZBBkQP/InjpecYaujJeQjioGepmdN0KDjO9bM55c5a 3YyhHg3FAGmr6U1MMqgM2tkwOSrGtOb/ -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:23 2024 by rpki-client on console-ams.rpki-client.org