$ rpki-client -vvf rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft File: nyv9fYAM-hPpBIrhALSFFDASb9M.mft (raw, json) Hash identifier: q72sfjUtzt48YHXqscvE5tdSvm+doOZpSuXtKKbzy/Q= Subject key identifier: 63:21:3C:FC:2B:F9:CD:7A:CD:26:18:85:B8:07:4C:E2:9D:BE:82:2E Authority key identifier: 9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 Certificate issuer: /CN=A913EFAB/serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft Manifest number: 04B9 Signing time: Fri 22 Nov 2024 23:27:37 +0000 Manifest this update: Fri 22 Nov 2024 23:27:36 +0000 Manifest next update: Fri 29 Nov 2024 23:27:36 +0000 Files and hashes: 1: nyv9fYAM-hPpBIrhALSFFDASb9M.crl (hash: fyHziZ8vOAsSfpEeTKIcVzpmpYjveaxlEoubEbUjaOM=) 2: 06D647D4057811EC8BCE3783C4F9AE02.roa (hash: grJhcWmzDCOgdxUnDbK2ZLr2jRQYlivgBq7XqkPgbbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EFAB/serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Validity Not Before: Nov 22 23:27:36 2024 GMT Not After : Nov 29 23:27:36 2024 GMT Subject: CN=67411369-acad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:da:98:05:c0:37:dc:b9:e1:8d:09:3d:bf:d2: 66:16:d1:b8:c6:a7:b7:96:c9:40:2d:30:0a:d6:79: 11:7c:c1:94:21:79:0b:da:c9:39:b6:55:c9:6e:d6: 85:fb:e3:d2:e4:11:41:40:2f:07:92:d0:bd:e0:8b: 61:c6:17:48:47:fd:62:45:ae:87:ee:f7:14:6c:09: 07:5d:dc:0a:68:d5:52:5d:63:67:53:0e:4b:15:29: 15:7f:da:ca:4f:ca:46:42:bb:b7:2a:a8:a9:2f:a7: 23:16:87:6a:b3:20:cc:85:07:41:0e:ad:90:a6:fb: c6:01:64:35:be:b8:c9:c2:56:b0:9b:cb:ae:1b:1f: b2:29:17:3f:4c:23:38:35:19:2d:bc:31:29:ac:35: 20:13:8c:bf:b7:db:0e:17:d1:48:bd:ea:93:ed:1f: c6:19:d6:c7:cc:0c:06:7a:f5:3d:4d:e7:4e:46:01: 22:c8:a6:b9:dd:93:28:5d:ff:35:56:51:4f:42:41: 20:5d:fb:f4:0c:a5:d4:d5:b1:a9:6e:15:4a:27:19: e2:86:50:90:cf:ca:7b:69:78:3a:b9:bb:4b:5c:26: 88:72:26:db:eb:c3:69:83:97:9f:dd:e6:3b:7f:1b: 2c:ac:5d:04:38:41:ee:f1:f7:d4:98:95:63:76:10: 77:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:21:3C:FC:2B:F9:CD:7A:CD:26:18:85:B8:07:4C:E2:9D:BE:82:2E X509v3 Authority Key Identifier: keyid:9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:1d:a4:46:61:6d:b7:3d:7a:d7:fa:28:6e:d1:a9:60:b2:80: 92:09:2e:e4:e3:d8:98:da:cc:3c:4c:66:ba:21:b3:a4:09:f2: dd:da:34:14:cc:05:26:e5:58:93:ff:86:af:77:71:a6:d4:07: 91:8e:4d:12:08:8e:d9:9b:ba:3e:fb:af:ce:4e:e6:62:b3:24: 4d:33:61:bf:6d:73:f7:c2:5a:75:83:96:23:57:d7:40:e0:22: 9c:65:d4:39:1c:e9:8c:36:01:48:4f:a2:b7:96:0f:bf:22:8d: 3f:53:09:7b:6b:bf:19:bb:0c:f2:66:e5:1e:d5:20:03:fb:a6: 5c:9a:d1:ba:f9:8d:f6:91:e4:84:fb:a2:fb:fb:e9:73:f1:e8: b0:d5:5f:09:01:69:d8:8a:2c:bf:b6:40:4f:9e:25:e9:6f:cf: d7:8a:63:c3:a7:0f:fa:fa:2d:d0:94:52:f3:ac:f7:a8:6f:72: 54:b9:ee:d9:d1:f9:35:30:45:d4:09:16:00:ba:b8:af:1e:dd: e2:c6:ce:ce:55:b3:7f:dd:53:02:04:55:8c:29:ba:79:bd:18: 8f:dc:2f:72:1a:95:27:21:49:86:e1:ca:67:0a:a1:53:73:8f: 56:fb:dd:59:2c:64:5a:5a:3d:c2:2e:b0:87:37:a8:37:7c:cc: 0f:46:00:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGQUIxMTAvBgNVBAUTKDlGMkJGRDdEODAwQ0ZBMTNFOTA0OEFFMTAwQjQ4NTE0 MzAxMjZGRDMwHhcNMjQxMTIyMjMyNzM2WhcNMjQxMTI5MjMyNzM2WjAYMRYwFAYD VQQDEw02NzQxMTM2OS1hY2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NqYBcA33LnhjQk9v9JmFtG4xqe3lslALTAK1nkRfMGUIXkL2sk5tlXJbtaF ++PS5BFBQC8HktC94IthxhdIR/1iRa6H7vcUbAkHXdwKaNVSXWNnUw5LFSkVf9rK T8pGQru3KqipL6cjFodqsyDMhQdBDq2QpvvGAWQ1vrjJwlawm8uuGx+yKRc/TCM4 NRktvDEprDUgE4y/t9sOF9FIveqT7R/GGdbHzAwGevU9TedORgEiyKa53ZMoXf81 VlFPQkEgXfv0DKXU1bGpbhVKJxnihlCQz8p7aXg6ubtLXCaIcibb68Npg5ef3eY7 fxssrF0EOEHu8ffUmJVjdhB35wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMhPPwr +c16zSYYhbgHTOKdvoIuMB8GA1UdIwQYMBaAFJ8r/X2ADPoT6QSK4QC0hRQwEm/T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUZBQi9FODJEMDZGRTA1 NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1oUHBCSXJoQUxTRkZEQVNi OU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL255djlmWUFNLWhQcEJJcmhBTFNGRkRBU2I5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUZBQi9FODJEMDZGRTA1NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1o UHBCSXJoQUxTRkZEQVNiOU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTHaRGYW23PXrX+ihu0algsoCSCS7k49iY2sw8TGa6IbOkCfLd2jQU zAUm5ViT/4avd3Gm1AeRjk0SCI7Zm7o++6/OTuZisyRNM2G/bXP3wlp1g5YjV9dA 4CKcZdQ5HOmMNgFIT6K3lg+/Io0/Uwl7a78ZuwzyZuUe1SAD+6ZcmtG6+Y32keSE +6L7++lz8eiw1V8JAWnYiiy/tkBPniXpb8/XimPDpw/6+i3QlFLzrPeob3JUue7Z 0fk1MEXUCRYAurivHt3ixs7OVbN/3VMCBFWMKbp5vRiP3C9yGpUnIUmG4cpnCqFT c49W+91ZLGRaWj3CLrCHN6g3fMwPRgAL -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org