$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: 7oxqsW/Ocp4+t1KL3Fw3ic5thAmMsEjPQ5dghVsBpTE= Subject key identifier: 59:F2:25:00:18:91:48:B5:BC:BC:8F:25:94:80:2E:7E:C1:EF:23:6E Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0634 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 062D Signing time: Fri 22 Nov 2024 22:05:57 +0000 Manifest this update: Fri 22 Nov 2024 22:05:56 +0000 Manifest next update: Fri 29 Nov 2024 22:05:56 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: 8Mmb8ZaeaiPJfCWu/zav26aVB2mgVN4n97wIbvX0yuM=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1588 (0x634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Nov 22 22:05:56 2024 GMT Not After : Nov 29 22:05:56 2024 GMT Subject: CN=67410045-a343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cc:b4:d1:1e:83:da:e0:84:04:9c:e0:ac:b1: 87:a1:eb:c4:46:82:08:79:de:a7:14:fb:a7:4d:66: bb:95:50:f1:16:69:06:07:5d:16:64:48:a7:07:eb: 0d:d2:f1:aa:37:cf:57:4d:dd:b8:60:60:c4:27:e1: 02:68:bb:67:56:ff:75:03:98:24:10:b5:23:0c:0b: c5:fb:3c:ea:0c:67:2e:91:29:ef:d5:ea:25:20:31: d4:57:ad:1e:a9:50:ad:52:eb:da:d5:ab:21:2b:b4: 11:f7:dc:06:0a:d2:0c:b9:da:0f:52:de:9d:b9:af: 23:99:5a:a3:d1:61:93:ec:eb:89:9d:e3:50:fd:a6: a2:8d:43:e7:f9:a7:85:5f:2c:e3:c3:b4:5a:a7:3e: f1:0c:05:fb:cc:ec:07:e0:df:95:46:b3:5b:bc:63: 37:f8:1a:ea:be:ba:c8:d1:58:e0:ae:1f:70:0b:bc: e2:5c:5c:43:f1:83:c9:fd:fb:c8:2b:4e:ab:3c:77: 39:88:e0:08:8b:91:b7:55:0a:87:5f:ff:10:bd:31: 7e:cf:1d:8b:37:4c:81:f6:fb:45:63:b7:5f:e6:a6: 1a:43:25:68:d0:cc:82:50:62:f6:77:df:2b:12:c3: 76:fa:75:53:d7:7a:d8:5f:79:15:b3:34:5d:2b:8e: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F2:25:00:18:91:48:B5:BC:BC:8F:25:94:80:2E:7E:C1:EF:23:6E X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:cc:b3:41:55:0e:2d:cb:16:32:1c:be:76:9c:a9:89:11:11: 55:e9:a4:3b:ec:c8:05:ed:ab:bf:e4:6a:6d:34:28:fe:cd:b6: 64:dd:34:cb:f0:1c:31:a0:fb:29:f0:ba:f1:6e:fe:b2:c7:c3: 72:3e:6e:3c:7b:2a:fe:21:ce:20:93:a5:2c:16:75:d0:70:e5: 27:23:df:aa:27:b3:62:72:3f:50:bb:2d:c1:b4:95:84:c6:83: bd:c6:4c:c2:06:43:94:02:ea:c6:e4:1d:bf:59:39:14:f8:93: b6:5d:24:72:83:5d:c0:92:3d:ef:b5:fb:f5:b8:c9:f3:ba:e1: 27:8a:5d:56:c1:a5:86:35:4d:2e:6b:a9:d8:ca:87:75:82:fc: 1b:d9:99:cf:d3:13:cf:c9:9a:9a:a5:1e:de:9c:c3:e5:67:dd: 7a:dc:89:3c:28:48:31:3c:d4:17:05:59:6c:a0:80:b4:5c:f1: 73:7a:52:58:8f:c1:fb:90:d6:3a:f2:91:8b:92:4f:e6:fa:a3: 23:fa:fc:b3:81:db:86:11:64:81:8b:30:84:b2:44:ee:d6:94: ee:a0:a0:e3:b6:1b:63:b5:52:41:f9:fe:b8:09:0d:70:89:ce: e5:67:9e:56:d6:3a:c9:64:f3:40:63:ab:19:a9:07:f3:08:41: 2e:5b:f2:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjQxMTIyMjIwNTU2WhcNMjQxMTI5MjIwNTU2WjAYMRYwFAYD VQQDEw02NzQxMDA0NS1hMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsy00R6D2uCEBJzgrLGHoevERoIIed6nFPunTWa7lVDxFmkGB10WZEinB+sN 0vGqN89XTd24YGDEJ+ECaLtnVv91A5gkELUjDAvF+zzqDGcukSnv1eolIDHUV60e qVCtUuva1ashK7QR99wGCtIMudoPUt6dua8jmVqj0WGT7OuJneNQ/aaijUPn+aeF Xyzjw7Rapz7xDAX7zOwH4N+VRrNbvGM3+BrqvrrI0Vjgrh9wC7ziXFxD8YPJ/fvI K06rPHc5iOAIi5G3VQqHX/8QvTF+zx2LN0yB9vtFY7df5qYaQyVo0MyCUGL2d98r EsN2+nVT13rYX3kVszRdK450swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnyJQAY kUi1vLyPJZSALn7B7yNuMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrzLNBVQ4tyxYyHL52nKmJERFV6aQ77MgF7au/5GptNCj+zbZk3TTL 8BwxoPsp8Lrxbv6yx8NyPm48eyr+Ic4gk6UsFnXQcOUnI9+qJ7Nicj9Quy3BtJWE xoO9xkzCBkOUAurG5B2/WTkU+JO2XSRyg13Akj3vtfv1uMnzuuEnil1WwaWGNU0u a6nYyod1gvwb2ZnP0xPPyZqapR7enMPlZ9163Ik8KEgxPNQXBVlsoIC0XPFzelJY j8H7kNY68pGLkk/m+qMj+vyzgduGEWSBizCEskTu1pTuoKDjthtjtVJB+f64CQ1w ic7lZ55W1jrJZPNAY6sZqQfzCEEuW/K2 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org