$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft File: nDt48kQmDsRjG6DfYZRgi3Gof0g.mft (raw, json) Hash identifier: PX0pTxJNLJF5SX4R13RvkWM/Se0dObrGY1yeyT+GhJg= Subject key identifier: 59:4B:4C:59:BE:2E:F6:7D:61:65:CA:4B:34:81:AE:0F:7A:67:81:73 Authority key identifier: 9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 Certificate issuer: /CN=A91BA0F9/serialNumber=9C3B78F244260EC4631BA0DF6194608B71A87F48 Certificate serial: 3421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft Manifest number: 5017 Signing time: Fri 22 Nov 2024 15:17:28 +0000 Manifest this update: Fri 22 Nov 2024 15:17:27 +0000 Manifest next update: Fri 29 Nov 2024 15:17:27 +0000 Files and hashes: 1: nDt48kQmDsRjG6DfYZRgi3Gof0g.crl (hash: 5ot+XfsnuzcLp48HSXu5oFQI6JLgG2WDUQSRokmehug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13345 (0x3421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0F9/serialNumber=9C3B78F244260EC4631BA0DF6194608B71A87F48 Validity Not Before: Nov 22 15:17:27 2024 GMT Not After : Nov 29 15:17:27 2024 GMT Subject: CN=6740a087-4e8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:3e:1a:f6:2b:4c:68:fe:cb:61:51:d8:dd: 6d:16:da:7a:fd:8c:b0:c3:3a:a2:ef:0b:9b:04:29: cf:48:ba:89:4f:a5:e8:5f:76:35:03:9d:f7:c2:51: 91:ac:9e:9d:50:17:13:51:7a:3e:9d:f4:02:67:91: 46:8d:d2:c4:5e:0a:2e:76:51:1b:7e:d8:79:94:2b: 23:1f:05:bc:70:f6:e3:bc:6e:47:c4:05:9d:81:ce: cc:aa:ab:41:0b:e6:d3:a9:da:2a:57:7c:e5:87:1b: 16:2f:a8:3a:aa:70:da:15:38:5c:83:45:e5:26:54: 0d:50:ee:ea:86:3e:bb:d2:2d:22:0b:98:d3:db:1d: f2:55:48:42:f4:02:75:47:a6:da:93:be:00:9f:47: 58:76:f1:06:c2:8d:f4:ea:b3:a7:ba:44:34:96:18: 3c:65:13:f2:57:6b:6e:69:06:50:2f:ac:f3:ca:d5: ac:fd:dd:75:f3:f7:ae:1c:af:17:49:2a:22:1a:3c: 38:6c:6b:f4:e8:76:9f:09:4e:ba:1a:cc:19:a8:94: 64:40:4f:56:ca:e6:ac:6f:86:aa:79:65:66:6b:39: 15:7f:81:67:47:51:1e:fe:05:87:4a:29:dc:75:43: a7:e2:0e:28:34:4c:de:6d:ae:49:24:81:be:0f:eb: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:4B:4C:59:BE:2E:F6:7D:61:65:CA:4B:34:81:AE:0F:7A:67:81:73 X509v3 Authority Key Identifier: keyid:9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:48:95:e9:00:c5:aa:4f:b9:47:1f:34:a7:34:d5:76:cb:62: e9:fd:e8:bd:ec:ab:2e:de:7b:a2:da:25:df:f5:4e:dd:d6:8d: d0:37:a5:94:7a:8d:0c:5b:72:f5:18:11:5e:39:87:ca:f0:05: 0d:6b:c4:55:c2:a2:d7:5f:5d:57:3d:22:95:17:65:1e:73:8c: 54:6d:50:18:c5:63:ec:b4:32:3d:de:4b:7b:6c:59:ce:e8:f4: b3:44:b6:6d:49:25:27:55:6f:95:b0:b6:34:90:cf:09:3e:be: f6:5c:07:d8:40:ad:87:6d:60:95:a0:eb:ca:a8:63:23:89:ed: a0:19:ce:96:53:ca:40:35:ed:3c:1d:de:0a:3e:ad:ed:c5:37: b2:62:89:60:d1:b6:d9:41:48:53:aa:a8:b0:ea:4f:55:50:ac: 34:54:7e:a2:ca:02:5f:28:c6:8b:98:0b:bd:66:25:8e:26:7a: ca:e0:d8:0a:66:da:23:3f:3b:40:c6:f3:97:46:bd:74:45:93: c5:cf:81:78:40:96:c6:5c:04:80:f0:39:f3:c6:25:d2:c2:48: 78:3d:51:60:9d:51:60:24:82:96:41:ff:a6:e8:b8:67:75:1d: a3:c5:f3:c3:e1:bd:a7:96:a6:b1:68:60:16:e6:ae:18:ce:cc: b7:54:9c:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwRjkxMTAvBgNVBAUTKDlDM0I3OEYyNDQyNjBFQzQ2MzFCQTBERjYxOTQ2MDhC NzFBODdGNDgwHhcNMjQxMTIyMTUxNzI3WhcNMjQxMTI5MTUxNzI3WjAYMRYwFAYD VQQDEw02NzQwYTA4Ny00ZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/0+GvYrTGj+y2FR2N1tFtp6/Yywwzqi7wubBCnPSLqJT6XoX3Y1A533wlGR rJ6dUBcTUXo+nfQCZ5FGjdLEXgoudlEbfth5lCsjHwW8cPbjvG5HxAWdgc7MqqtB C+bTqdoqV3zlhxsWL6g6qnDaFThcg0XlJlQNUO7qhj670i0iC5jT2x3yVUhC9AJ1 R6bak74An0dYdvEGwo306rOnukQ0lhg8ZRPyV2tuaQZQL6zzytWs/d118/euHK8X SSoiGjw4bGv06HafCU66GswZqJRkQE9Wyuasb4aqeWVmazkVf4FnR1Ee/gWHSinc dUOn4g4oNEzeba5JJIG+D+vvLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlLTFm+ LvZ9YWXKSzSBrg96Z4FzMB8GA1UdIwQYMBaAFJw7ePJEJg7EYxug32GUYItxqH9I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBGOS9GQ0FBMkMwMDFE QTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURzUmpHNkRmWVpSZ2kzR29m MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25EdDQ4a1FtRHNSakc2RGZZWlJnaTNHb2YwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBGOS9GQ0FBMkMwMDFEQTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURz UmpHNkRmWVpSZ2kzR29mMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBASJXpAMWqT7lHHzSnNNV2y2Lp/ei97Ksu3nui2iXf9U7d1o3QN6WU eo0MW3L1GBFeOYfK8AUNa8RVwqLXX11XPSKVF2Uec4xUbVAYxWPstDI93kt7bFnO 6PSzRLZtSSUnVW+VsLY0kM8JPr72XAfYQK2HbWCVoOvKqGMjie2gGc6WU8pANe08 Hd4KPq3txTeyYolg0bbZQUhTqqiw6k9VUKw0VH6iygJfKMaLmAu9ZiWOJnrK4NgK ZtojPztAxvOXRr10RZPFz4F4QJbGXASA8DnzxiXSwkh4PVFgnVFgJIKWQf+m6Lhn dR2jxfPD4b2nlqaxaGAW5q4Yzsy3VJwm -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org