$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft File: n2xg5qKluzMFUknUcjhHf4nhOnA.mft (raw, json) Hash identifier: MCHeG3n3xvmBHLv8cHvda3m8MNnVcCURAPf0d8Adil0= Subject key identifier: 3D:DE:F7:4F:DD:4E:3C:88:B2:F5:BB:1F:73:97:9C:8D:10:5C:80:23 Authority key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 Certificate issuer: /CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft Manifest number: 0139 Signing time: Sat 23 Nov 2024 02:42:43 +0000 Manifest this update: Sat 23 Nov 2024 02:42:42 +0000 Manifest next update: Sat 30 Nov 2024 02:42:42 +0000 Files and hashes: 1: n2xg5qKluzMFUknUcjhHf4nhOnA.crl (hash: NuyTkDef7qmW0N53IiUWXx67sEEKvNTASRj2Qx5QVUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Validity Not Before: Nov 23 02:42:42 2024 GMT Not After : Nov 30 02:42:42 2024 GMT Subject: CN=67414123-5e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:30:5b:70:17:0c:5c:f3:a6:db:8b:d8:b5:d6: 91:1b:af:15:8d:1a:b6:6e:19:58:14:e0:ae:e1:ae: 6a:67:2f:31:bb:47:99:d8:56:46:e0:fa:fe:6b:04: 98:3c:01:20:6b:ec:d3:a9:59:cc:9d:88:4f:55:4f: 3a:7d:d2:38:b6:53:04:c8:2b:03:59:69:e9:c0:9a: f1:e0:8b:8d:f8:0a:00:9e:75:de:79:10:de:c7:83: b2:03:85:29:91:2c:8c:91:15:76:08:16:14:a7:17: 3c:8a:81:2b:10:8e:29:d9:44:c3:fd:d4:6d:bf:3e: 3d:6e:4c:85:4c:6c:20:50:54:6b:a7:9c:82:ff:28: d7:75:d0:cb:06:6a:8d:48:10:7a:54:af:ce:2c:52: 0d:42:6c:67:0f:95:ed:b5:a3:58:8f:05:bb:8a:e2: 75:c9:14:12:70:e1:bd:df:75:a7:de:bc:fc:44:9e: f9:77:b3:32:7a:46:54:94:bf:2d:80:66:2d:33:a4: 4a:43:87:b6:86:e6:33:fb:98:64:32:3d:74:54:fb: 54:2b:ac:a6:24:5c:27:16:2e:25:4a:ee:dd:ca:a9: 10:d6:bb:f3:2d:01:02:32:54:0f:9b:76:1d:b1:74: 49:72:00:73:15:ad:57:15:5b:16:77:47:f0:ac:aa: 50:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:DE:F7:4F:DD:4E:3C:88:B2:F5:BB:1F:73:97:9C:8D:10:5C:80:23 X509v3 Authority Key Identifier: keyid:9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3d:3c:4d:52:28:33:f8:21:12:9a:e4:63:f0:1a:61:2d:7a: 4e:2f:70:e2:33:91:26:c6:e0:24:e5:8f:cb:f0:76:a4:9f:02: d6:16:f8:85:4d:cf:b5:f7:d4:13:66:18:c0:52:72:1d:44:d5: 95:b2:d6:a9:7b:56:67:86:62:f6:5e:9d:4d:1b:7f:75:88:60: 8f:a6:80:e1:33:83:cc:03:9d:45:e9:ad:c8:bc:06:1f:c7:39: 79:22:ca:db:e5:31:49:83:aa:3b:9a:fb:c3:7a:4f:a6:48:bb: df:da:99:e2:61:2d:ba:70:be:8c:a4:98:a8:aa:21:1e:3d:1d: 76:49:72:15:e4:a0:2a:70:ce:a4:86:86:60:4d:2e:99:e3:86: 64:c9:0b:a9:89:33:90:2a:cc:62:d6:3d:7b:89:5b:01:9c:6e: f4:19:f4:56:26:20:80:4b:16:2b:ab:fa:07:36:c2:8e:1a:b1: 14:35:54:a9:53:c9:b8:fc:4e:6f:fc:0b:1d:8a:e0:c3:5d:af: db:b2:da:62:f2:62:22:71:a7:4d:45:1a:7e:4c:d2:58:65:15: 43:d5:17:33:9f:58:c1:45:2d:ed:46:d3:f8:cb:11:db:0a:2a: ec:33:3b:dc:08:3b:98:1c:dd:e6:63:ab:6d:f8:f2:09:8d:30: cc:a6:15:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMzAxMTAvBgNVBAUTKDlGNkM2MEU2QTJBNUJCMzMwNTUyNDlENDcyMzg0NzdG ODlFMTNBNzAwHhcNMjQxMTIzMDI0MjQyWhcNMjQxMTMwMDI0MjQyWjAYMRYwFAYD VQQDEw02NzQxNDEyMy01ZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDBbcBcMXPOm24vYtdaRG68VjRq2bhlYFOCu4a5qZy8xu0eZ2FZG4Pr+awSY PAEga+zTqVnMnYhPVU86fdI4tlMEyCsDWWnpwJrx4IuN+AoAnnXeeRDex4OyA4Up kSyMkRV2CBYUpxc8ioErEI4p2UTD/dRtvz49bkyFTGwgUFRrp5yC/yjXddDLBmqN SBB6VK/OLFINQmxnD5XttaNYjwW7iuJ1yRQScOG933Wn3rz8RJ75d7MyekZUlL8t gGYtM6RKQ4e2huYz+5hkMj10VPtUK6ymJFwnFi4lSu7dyqkQ1rvzLQECMlQPm3Yd sXRJcgBzFa1XFVsWd0fwrKpQkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3e90/d TjyIsvW7H3OXnI0QXIAjMB8GA1UdIwQYMBaAFJ9sYOaipbszBVJJ1HI4R3+J4Tpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUzMC81Q0E1MDUyQ0M5 RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6TUZVa25VY2poSGY0bmhP bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yeGc1cUtsdXpNRlVrblVjamhIZjRuaE9uQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUzMC81Q0E1MDUyQ0M5RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6 TUZVa25VY2poSGY0bmhPbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5PTxNUigz+CESmuRj8BphLXpOL3DiM5EmxuAk5Y/L8HaknwLWFviF Tc+199QTZhjAUnIdRNWVstape1ZnhmL2Xp1NG391iGCPpoDhM4PMA51F6a3IvAYf xzl5Isrb5TFJg6o7mvvDek+mSLvf2pniYS26cL6MpJioqiEePR12SXIV5KAqcM6k hoZgTS6Z44ZkyQupiTOQKsxi1j17iVsBnG70GfRWJiCASxYrq/oHNsKOGrEUNVSp U8m4/E5v/AsdiuDDXa/bstpi8mIicadNRRp+TNJYZRVD1Rczn1jBRS3tRtP4yxHb CirsMzvcCDuYHN3mY6tt+PIJjTDMphX9 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org