$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: IL09hsTStJ/acM4P/dMzAkrslC5qGtFlxuJMzXSulxQ= Subject key identifier: F8:C2:68:E2:F9:36:D6:92:CD:22:CA:3F:EA:48:B0:32:12:68:09:13 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 028E Signing time: Sat 23 Nov 2024 01:09:08 +0000 Manifest this update: Sat 23 Nov 2024 01:09:07 +0000 Manifest next update: Sat 30 Nov 2024 01:09:07 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: +XmrQ2xVdIfMxtYc+h6DhWas9J4sHGdqz5OHYbDnWAU=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: 8iGFuZI4O9j0Gdt93MzFvxSKeiFq7gMt0350fxzYb8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Nov 23 01:09:07 2024 GMT Not After : Nov 30 01:09:07 2024 GMT Subject: CN=67412b33-5700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:da:95:53:42:bb:4d:e6:67:d1:ea:e0:9c:c4: 60:4c:13:66:bb:e9:a4:27:68:f6:f9:17:68:75:f6: af:ef:af:53:a5:7e:cf:e1:e5:39:02:4e:e5:e7:11: fc:14:d9:ad:61:8a:46:89:71:a7:17:5b:b7:74:da: 3d:f3:5e:62:d5:d4:23:57:a0:8a:03:b9:f4:04:36: f7:0d:2f:96:c0:c6:42:cb:a5:b9:14:e8:2a:79:db: 75:d3:d7:a9:cf:57:d1:5d:8a:9e:7a:11:c4:51:a5: c4:e6:1b:ad:8c:3b:b3:e5:0a:1d:e1:78:ca:f2:34: e4:b8:4f:e6:88:93:2e:ba:b0:85:ce:27:99:f9:10: b3:fb:98:ec:67:f5:40:99:91:3c:f7:bd:9c:43:95: 72:d2:9d:07:55:32:53:9a:e3:dd:4c:f0:80:dd:a0: 48:7d:ad:82:d1:c9:da:b1:26:72:ed:0f:f9:66:39: d7:64:cb:81:f4:c3:77:4e:f1:3e:c6:e5:ef:6e:51: 64:94:d4:48:2f:5f:36:54:f7:99:f7:aa:bc:90:4b: 66:95:5e:7c:06:79:10:f1:47:1a:9a:b7:25:02:3e: 34:0b:3c:c0:01:a5:11:b9:25:e1:1d:e4:64:8b:ff: bd:51:7b:88:95:f3:c7:b7:6b:6c:ea:ac:2b:99:f0: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C2:68:E2:F9:36:D6:92:CD:22:CA:3F:EA:48:B0:32:12:68:09:13 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:9b:26:01:81:b7:94:11:66:40:fa:d5:81:08:45:dd:5e:c3: 84:ce:03:26:84:c1:b4:75:d3:52:99:3c:82:7a:64:e3:35:34: 03:0f:04:75:51:a3:bd:90:3d:d4:6c:5f:19:87:6c:62:4a:07: 70:c3:73:e2:b2:d2:db:b9:f8:c5:6f:69:5e:de:1d:ce:7f:4f: 94:31:78:0b:82:b1:36:a2:2b:be:da:85:94:90:55:db:38:08: 58:ba:52:79:bd:56:af:e6:74:df:d4:5f:a4:d0:fb:3f:a2:1a: f7:7c:82:67:2f:65:cc:a5:e6:6c:0b:3e:28:60:5e:7a:38:c1: 98:67:ea:38:73:b5:bc:0e:d3:2e:f7:cb:de:b2:28:a9:76:11: c1:5a:ac:38:ad:1a:ed:c5:8d:10:68:01:3f:5e:87:ac:11:db: 31:75:bb:26:1c:f7:34:bf:c7:10:38:7b:66:99:25:b0:ac:d9: 93:b8:36:92:5c:d7:79:a2:3c:18:4c:1f:1c:2a:f5:38:38:ca: d1:8e:b5:5a:27:87:69:24:36:1f:8c:f5:c4:06:a1:26:a8:5a: c1:15:26:bf:ec:0e:7e:e7:13:ca:24:6e:2d:40:48:47:83:1f: 18:02:6b:f3:6c:01:41:eb:b5:d5:69:56:db:35:d5:67:32:80: 47:9c:a3:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjQxMTIzMDEwOTA3WhcNMjQxMTMwMDEwOTA3WjAYMRYwFAYD VQQDEw02NzQxMmIzMy01NzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9qVU0K7TeZn0ergnMRgTBNmu+mkJ2j2+Rdodfav769TpX7P4eU5Ak7l5xH8 FNmtYYpGiXGnF1u3dNo9815i1dQjV6CKA7n0BDb3DS+WwMZCy6W5FOgqedt109ep z1fRXYqeehHEUaXE5hutjDuz5Qod4XjK8jTkuE/miJMuurCFzieZ+RCz+5jsZ/VA mZE8972cQ5Vy0p0HVTJTmuPdTPCA3aBIfa2C0cnasSZy7Q/5ZjnXZMuB9MN3TvE+ xuXvblFklNRIL182VPeZ96q8kEtmlV58BnkQ8UcamrclAj40CzzAAaURuSXhHeRk i/+9UXuIlfPHt2ts6qwrmfCtOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjCaOL5 NtaSzSLKP+pIsDISaAkTMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCimyYBgbeUEWZA+tWBCEXdXsOEzgMmhMG0ddNSmTyCemTjNTQDDwR1 UaO9kD3UbF8Zh2xiSgdww3PistLbufjFb2le3h3Of0+UMXgLgrE2oiu+2oWUkFXb OAhYulJ5vVav5nTf1F+k0Ps/ohr3fIJnL2XMpeZsCz4oYF56OMGYZ+o4c7W8DtMu 98vesiipdhHBWqw4rRrtxY0QaAE/XoesEdsxdbsmHPc0v8cQOHtmmSWwrNmTuDaS XNd5ojwYTB8cKvU4OMrRjrVaJ4dpJDYfjPXEBqEmqFrBFSa/7A5+5xPKJG4tQEhH gx8YAmvzbAFB67XVaVbbNdVnMoBHnKMp -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org