$ rpki-client -vvf rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft File: NAQf45nAdllht5_hJGlBcocgc7s.mft (raw, json) Hash identifier: eTtUwMI1ADMabYr1S9Vf+L3dEapdeCrNNg+YaeHNhT0= Subject key identifier: A8:4D:98:7A:34:4D:E5:66:45:4D:79:2E:30:7D:67:C4:A8:BD:71:F6 Authority key identifier: 34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB Certificate issuer: /CN=A913FD96/serialNumber=34041FE399C0765961B79FE124694172872073BB Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft Manifest number: 0A57 Signing time: Fri 22 Nov 2024 19:26:30 +0000 Manifest this update: Fri 22 Nov 2024 19:26:29 +0000 Manifest next update: Fri 29 Nov 2024 19:26:29 +0000 Files and hashes: 1: NAQf45nAdllht5_hJGlBcocgc7s.crl (hash: iJ7bL4FE3W4y9XTGIZnwSrJZzq4SIgHoTb4Apm3joOw=) 2: FC3B44CE519A11EAB1229A87C4F9AE02.roa (hash: mXaDebpxI+8jgolliV5kV+yxtxKp5QcapX21gE2juPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FD96/serialNumber=34041FE399C0765961B79FE124694172872073BB Validity Not Before: Nov 22 19:26:29 2024 GMT Not After : Nov 29 19:26:29 2024 GMT Subject: CN=6740dae6-7f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:07:43:04:32:4e:08:e5:54:e5:fa:1a:d9:55: 44:95:93:4a:26:dd:6f:68:7b:11:7e:67:a8:3e:0f: a1:ef:d2:af:af:de:a1:43:4e:e4:bb:67:e4:fe:33: 14:ed:df:2d:fa:16:89:fa:ba:5d:3e:17:35:a7:de: f2:c8:c9:46:20:8e:43:7a:48:ac:97:da:48:69:4d: 8a:85:36:0f:e5:9b:56:82:39:0c:1b:6b:92:d8:ba: b5:fa:bd:16:2a:70:72:b8:04:9f:8f:30:f9:0b:a3: 43:61:53:a4:37:74:16:7c:6f:94:c2:52:f7:f2:af: 7b:31:35:9e:9d:98:b7:1f:64:63:62:76:d7:64:ba: 40:8b:cb:53:13:ff:ec:99:f8:9b:84:26:66:a1:22: 5d:9a:82:96:d5:4a:2d:21:02:50:04:37:a9:6d:83: 83:15:0a:f0:aa:1b:9a:30:5a:0a:66:3a:6a:37:73: 68:79:3b:d7:35:99:05:30:4d:93:f0:f8:33:59:0d: 3e:b5:8a:a2:4b:7b:9b:4c:30:e1:92:1c:5a:63:e2: b0:8c:88:d6:d0:ff:dc:fd:2d:c2:b2:22:b9:9d:8c: e7:67:a0:30:0e:db:85:83:e8:f1:53:c5:22:b2:3c: e2:f6:0c:f4:12:74:6e:f4:a5:c5:d2:76:f8:13:9a: e0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4D:98:7A:34:4D:E5:66:45:4D:79:2E:30:7D:67:C4:A8:BD:71:F6 X509v3 Authority Key Identifier: keyid:34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:b5:5b:3a:e6:ea:fe:93:b6:a8:64:82:34:65:05:d0:5b:ed: 97:b3:aa:f1:74:b3:13:39:fa:31:cf:fe:dc:93:3c:08:d4:5e: 09:de:50:56:ef:a5:6f:e1:76:36:54:d5:f3:03:1c:20:7d:7a: 6f:9f:84:be:57:f2:53:c3:4b:44:bb:72:7c:57:06:bb:4d:73: 8e:38:88:43:67:5a:68:60:17:c1:b6:49:5b:1c:f8:74:cd:2b: 84:7c:cb:e6:18:7d:47:d7:3e:e4:91:0e:36:f0:fb:24:37:56: 83:03:6a:2f:87:79:1f:b1:6f:2d:dc:50:0a:1b:46:11:41:79: cc:f6:5f:a5:77:e9:09:df:2b:56:73:d2:5c:83:78:41:63:1c: fb:ca:ad:33:b4:44:a6:95:2c:6e:43:51:36:9b:e2:89:dd:da: cc:2b:7f:d8:27:91:4e:04:e7:f3:1a:d8:bb:59:07:53:d8:55: 0c:60:66:57:d4:a2:55:fb:cc:15:8e:ed:0d:a7:09:3f:32:57: 0b:96:5f:c8:76:d6:6d:2f:63:f6:b3:d5:61:f5:48:ae:a1:e3: fc:8f:42:1d:2d:01:8b:64:44:ef:9d:62:dc:80:1e:79:16:a0: 79:39:75:7a:ca:52:84:d4:14:2d:16:da:38:8d:39:03:f8:a7: 25:ff:9d:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZEOTYxMTAvBgNVBAUTKDM0MDQxRkUzOTlDMDc2NTk2MUI3OUZFMTI0Njk0MTcy ODcyMDczQkIwHhcNMjQxMTIyMTkyNjI5WhcNMjQxMTI5MTkyNjI5WjAYMRYwFAYD VQQDEw02NzQwZGFlNi03ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QdDBDJOCOVU5foa2VVElZNKJt1vaHsRfmeoPg+h79Kvr96hQ07ku2fk/jMU 7d8t+haJ+rpdPhc1p97yyMlGII5Dekisl9pIaU2KhTYP5ZtWgjkMG2uS2Lq1+r0W KnByuASfjzD5C6NDYVOkN3QWfG+UwlL38q97MTWenZi3H2RjYnbXZLpAi8tTE//s mfibhCZmoSJdmoKW1UotIQJQBDepbYODFQrwqhuaMFoKZjpqN3NoeTvXNZkFME2T 8PgzWQ0+tYqiS3ubTDDhkhxaY+KwjIjW0P/c/S3CsiK5nYznZ6AwDtuFg+jxU8Ui sjzi9gz0EnRu9KXF0nb4E5rgxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhNmHo0 TeVmRU15LjB9Z8SovXH2MB8GA1UdIwQYMBaAFDQEH+OZwHZZYbef4SRpQXKHIHO7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkQ5Ni9BNjI0RkM0NDUx OTgxMUVBOTcyMjU5ODNDNEY5QUUwMi9OQVFmNDVuQWRsbGh0NV9oSkdsQmNvY2dj N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BUWY0NW5BZGxsaHQ1X2hKR2xCY29jZ2M3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkQ5Ni9BNjI0RkM0NDUxOTgxMUVBOTcyMjU5ODNDNEY5QUUwMi9OQVFmNDVuQWRs bGh0NV9oSkdsQmNvY2djN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbtVs65ur+k7aoZII0ZQXQW+2Xs6rxdLMTOfoxz/7ckzwI1F4J3lBW 76Vv4XY2VNXzAxwgfXpvn4S+V/JTw0tEu3J8Vwa7TXOOOIhDZ1poYBfBtklbHPh0 zSuEfMvmGH1H1z7kkQ428PskN1aDA2ovh3kfsW8t3FAKG0YRQXnM9l+ld+kJ3ytW c9Jcg3hBYxz7yq0ztESmlSxuQ1E2m+KJ3drMK3/YJ5FOBOfzGti7WQdT2FUMYGZX 1KJV+8wVju0Npwk/MlcLll/IdtZtL2P2s9Vh9UiuoeP8j0IdLQGLZETvnWLcgB55 FqB5OXV6ylKE1BQtFto4jTkD+Kcl/517 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org