$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: +XwENPMjW9/G49iXhtjt7J7AB4yOIvPB4X+XOY0wMEM= Subject key identifier: 02:C0:D5:6F:F0:FA:2A:9B:C4:70:D4:0E:AB:29:51:18:CF:D4:BF:99 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0EDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0ED6 Signing time: Fri 22 Nov 2024 17:38:26 +0000 Manifest this update: Fri 22 Nov 2024 17:38:25 +0000 Manifest next update: Fri 29 Nov 2024 17:38:25 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: 09uc0o3yQ47YvNta3R29YRBxlfXRuNGSe8P++D64Yqs=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: 6i4BCEHjBFl2ANCm8cheTUA6wt1Z3/s71HG8N+bGYPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3804 (0xedc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Nov 22 17:38:25 2024 GMT Not After : Nov 29 17:38:25 2024 GMT Subject: CN=6740c191-dc49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4e:3c:a2:3a:6b:98:4f:51:d1:9d:77:a5:b7: 4f:d1:70:b2:fa:18:1e:76:43:56:fe:64:d9:16:ad: 7d:78:f3:e4:12:0e:76:44:bf:80:f0:9f:c8:4c:dd: ad:83:71:59:bb:9e:e0:f8:c0:5a:10:4b:5b:92:38: 3f:5d:19:42:75:89:8b:0a:28:65:c6:c1:40:86:7b: 0d:2e:2f:ce:53:4a:11:1a:b4:1e:79:6b:a0:c1:be: dd:54:ef:d7:5b:b5:82:fc:be:31:b3:92:89:48:8a: 1a:da:f8:37:a9:95:4e:b0:ab:e4:b4:e2:2e:d0:22: e7:42:dc:e0:7d:7e:9a:a8:39:fa:16:75:db:0f:e2: 56:7b:30:ab:3f:e8:ff:ad:00:d3:8e:94:36:90:ac: 41:4a:f8:27:36:c9:f5:2e:c6:bb:89:b1:97:4c:08: 3a:27:47:c9:f5:d2:29:8c:07:fa:79:6f:db:34:78: 1a:67:b7:b9:71:a1:52:69:3d:5b:9a:b7:fc:9d:6e: 66:e3:51:eb:0e:77:91:4f:ba:61:bb:5e:a3:51:9d: bb:24:cd:b2:bf:60:6f:97:5f:f5:4a:c2:80:96:d8: 41:66:03:80:c7:50:54:4b:ae:91:c2:ef:89:28:6e: 3b:7d:29:cf:9e:e9:91:39:37:2b:ce:fd:f1:11:5f: 7d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C0:D5:6F:F0:FA:2A:9B:C4:70:D4:0E:AB:29:51:18:CF:D4:BF:99 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:3d:4d:0c:f2:14:f6:af:a3:02:6c:b3:de:55:aa:39:41:03: 13:33:29:0a:60:21:de:12:ab:e1:e0:cc:cc:cb:68:ba:73:05: 15:85:83:2a:9c:cf:4b:64:c0:17:1f:6c:1c:ad:af:b9:08:25: 7e:1b:6c:d9:c9:b2:74:70:42:62:74:85:58:da:42:70:4e:01: 20:ff:12:eb:74:8e:5b:42:35:2b:c0:b0:08:c3:92:0e:b6:da: e3:d4:5c:48:52:77:8c:02:78:37:c5:5a:ab:b2:78:0c:89:f9: 94:86:f2:c3:ad:e2:f0:18:9e:ed:a6:a8:ee:94:6d:b9:04:29: 4a:06:c3:4d:74:20:5c:23:8e:91:25:26:44:d6:2c:88:ec:90: 35:0f:df:41:e6:4b:bf:20:02:c3:4e:99:b1:73:c0:15:5b:3b: 0f:46:cd:ab:9b:f9:b7:ae:eb:1e:a7:58:f8:16:1c:ca:6f:2e: 6d:4a:d1:45:0d:12:90:a4:27:cb:99:eb:c0:14:1e:62:ce:1e: 11:a4:bb:a4:5b:05:d0:a6:fa:ee:4f:84:d8:b6:76:d6:7c:99: 02:d8:06:f2:9e:05:c7:74:ab:17:e8:1b:c0:b9:1c:de:0f:20: 1b:b7:c9:e9:a0:09:39:4b:74:fb:1c:72:68:5f:65:83:7e:e7: 45:0a:61:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjQxMTIyMTczODI1WhcNMjQxMTI5MTczODI1WjAYMRYwFAYD VQQDEw02NzQwYzE5MS1kYzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E48ojprmE9R0Z13pbdP0XCy+hgedkNW/mTZFq19ePPkEg52RL+A8J/ITN2t g3FZu57g+MBaEEtbkjg/XRlCdYmLCihlxsFAhnsNLi/OU0oRGrQeeWugwb7dVO/X W7WC/L4xs5KJSIoa2vg3qZVOsKvktOIu0CLnQtzgfX6aqDn6FnXbD+JWezCrP+j/ rQDTjpQ2kKxBSvgnNsn1Lsa7ibGXTAg6J0fJ9dIpjAf6eW/bNHgaZ7e5caFSaT1b mrf8nW5m41HrDneRT7phu16jUZ27JM2yv2Bvl1/1SsKAlthBZgOAx1BUS66Rwu+J KG47fSnPnumROTcrzv3xEV99HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALA1W/w +iqbxHDUDqspURjP1L+ZMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpPU0M8hT2r6MCbLPeVao5QQMTMykKYCHeEqvh4MzMy2i6cwUVhYMq nM9LZMAXH2wcra+5CCV+G2zZybJ0cEJidIVY2kJwTgEg/xLrdI5bQjUrwLAIw5IO ttrj1FxIUneMAng3xVqrsngMifmUhvLDreLwGJ7tpqjulG25BClKBsNNdCBcI46R JSZE1iyI7JA1D99B5ku/IALDTpmxc8AVWzsPRs2rm/m3rusep1j4FhzKby5tStFF DRKQpCfLmevAFB5izh4RpLukWwXQpvruT4TYtnbWfJkC2AbyngXHdKsX6BvAuRze DyAbt8npoAk5S3T7HHJoX2WDfudFCmFm -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org