$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft File: NOt2jjwYUO8RSYszIMrNGyYdWSk.mft (raw, json) Hash identifier: YSZoKSVtsl2Exujk2hXcqZGcCGYzb4a1AQPxcgfvock= Subject key identifier: 32:3C:A7:40:51:E6:BB:3B:E4:86:21:31:7D:CE:CF:49:DB:96:1F:F4 Authority key identifier: 34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 Certificate issuer: /CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Certificate serial: 3422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft Manifest number: 3420 Signing time: Fri 22 Nov 2024 15:10:52 +0000 Manifest this update: Fri 22 Nov 2024 15:10:52 +0000 Manifest next update: Fri 29 Nov 2024 15:10:52 +0000 Files and hashes: 1: NOt2jjwYUO8RSYszIMrNGyYdWSk.crl (hash: 22jsIQupinrmkvpxkpWny7DZJ6me0B9T51e68bKsP28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13346 (0x3422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Validity Not Before: Nov 22 15:10:52 2024 GMT Not After : Nov 29 15:10:52 2024 GMT Subject: CN=67409efc-e16a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:13:0d:0c:4a:58:c4:6a:48:df:85:5d:8f: 69:3c:38:83:a3:fe:c8:2e:93:c5:4b:1d:ac:f1:5a: 3f:1e:0d:66:e3:41:d4:ef:97:0a:af:14:48:b7:17: 91:9c:cf:99:5b:c3:3f:f7:ce:35:fa:48:63:e2:84: 24:6a:bb:12:fc:bb:e1:03:eb:c7:57:32:11:ee:d6: 7e:fd:af:59:d1:16:b1:24:18:4d:bd:54:01:76:13: 17:33:26:43:ad:02:5a:9f:0f:6c:c0:f3:30:eb:2e: d3:12:cf:4f:82:5e:1a:73:0e:55:a3:76:c5:6f:41: c9:d4:8a:61:b1:3a:25:57:fc:c1:1c:29:cd:e3:d7: fb:53:af:8a:5c:dc:00:35:7d:42:6a:50:25:d7:01: fe:ac:d0:99:ca:d8:aa:92:33:f5:8e:0c:26:af:6c: 63:e5:7d:25:b1:f7:e5:fd:ed:94:80:1f:e9:9c:50: fa:b8:e9:de:21:60:bd:6f:d0:1f:a3:de:11:2c:31: 4d:0f:d7:91:ef:3b:48:35:20:ad:bf:28:8e:2b:ef: a7:33:6c:17:a6:ca:3e:49:14:d6:35:84:de:18:1e: 7d:c8:11:7f:c1:d3:92:1d:11:e0:f4:d9:c9:a5:1a: e0:e6:52:ad:f7:c5:ae:2b:e6:c9:86:81:a4:1c:4d: e8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3C:A7:40:51:E6:BB:3B:E4:86:21:31:7D:CE:CF:49:DB:96:1F:F4 X509v3 Authority Key Identifier: keyid:34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:99:f4:ff:0e:fc:39:1c:0e:69:39:43:9b:71:4a:eb:bb:3f: 31:29:53:2a:d3:04:c3:43:38:03:78:19:b6:04:fd:78:af:3d: d1:84:4e:bc:dc:28:94:c1:f7:c2:df:05:5a:f3:65:68:c7:6f: cd:27:2c:15:f7:0a:90:c9:67:03:5e:50:b6:43:50:c0:7a:a8: 80:c9:44:76:af:1a:73:bc:1e:5e:47:2c:53:28:52:24:26:9d: ea:11:24:40:ec:17:67:69:03:6b:7b:af:d2:99:f3:1e:9a:1f: 65:25:9a:4d:71:7a:5a:4f:73:e4:19:fd:5a:c3:1e:34:2c:a7: 62:2a:da:ef:86:6e:e3:ff:d2:a2:a4:47:e2:57:e5:cf:c2:ae: 35:d9:cb:9d:ac:7f:1e:64:74:a8:46:74:ba:a7:29:cb:f7:c5: 4d:a6:94:ce:7e:f3:fe:ea:23:87:31:3f:38:f2:4f:69:78:2e: b0:db:3e:41:09:f9:09:c7:75:fe:1f:59:27:24:95:2d:74:0b: b7:82:06:1e:53:04:26:03:af:53:68:f8:75:6b:9e:9c:0e:9b: d4:4d:1c:a7:15:da:82:cb:b3:c8:2b:56:40:4e:83:ff:d4:e8: d0:31:62:69:83:6b:25:65:b7:60:ea:fa:e3:d5:55:e8:6a:d3: ff:d6:ab:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFRUIxMTAvBgNVBAUTKDM0RUI3NjhFM0MxODUwRUYxMTQ5OEIzMzIwQ0FDRDFC MjYxRDU5MjkwHhcNMjQxMTIyMTUxMDUyWhcNMjQxMTI5MTUxMDUyWjAYMRYwFAYD VQQDEw02NzQwOWVmYy1lMTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo4TDQxKWMRqSN+FXY9pPDiDo/7ILpPFSx2s8Vo/Hg1m40HU75cKrxRItxeR nM+ZW8M/9841+khj4oQkarsS/LvhA+vHVzIR7tZ+/a9Z0RaxJBhNvVQBdhMXMyZD rQJanw9swPMw6y7TEs9Pgl4acw5Vo3bFb0HJ1IphsTolV/zBHCnN49f7U6+KXNwA NX1CalAl1wH+rNCZytiqkjP1jgwmr2xj5X0lsffl/e2UgB/pnFD6uOneIWC9b9Af o94RLDFND9eR7ztINSCtvyiOK++nM2wXpso+SRTWNYTeGB59yBF/wdOSHRHg9NnJ pRrg5lKt98WuK+bJhoGkHE3oPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDI8p0BR 5rs75IYhMX3Oz0nblh/0MB8GA1UdIwQYMBaAFDTrdo48GFDvEUmLMyDKzRsmHVkp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VFQi82REU0Mjc2ODFE QTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVPOFJTWXN6SU1yTkd5WWRX U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PdDJqandZVU84UlNZc3pJTXJOR3lZZFdTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VFQi82REU0Mjc2ODFEQTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVP OFJTWXN6SU1yTkd5WWRXU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcmfT/Dvw5HA5pOUObcUrruz8xKVMq0wTDQzgDeBm2BP14rz3RhE68 3CiUwffC3wVa82Vox2/NJywV9wqQyWcDXlC2Q1DAeqiAyUR2rxpzvB5eRyxTKFIk Jp3qESRA7BdnaQNre6/SmfMemh9lJZpNcXpaT3PkGf1awx40LKdiKtrvhm7j/9Ki pEfiV+XPwq412cudrH8eZHSoRnS6pynL98VNppTOfvP+6iOHMT848k9peC6w2z5B CfkJx3X+H1knJJUtdAu3ggYeUwQmA69TaPh1a56cDpvUTRynFdqCy7PIK1ZAToP/ 1OjQMWJpg2slZbdg6vrj1VXoatP/1quY -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:21 2024 by rpki-client on console-ams.rpki-client.org