$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: fppKAwujlwSI/veUrqud78AsX5Qx20Ifvt8U4j4fN34= Subject key identifier: 47:77:FB:C4:8D:CA:FB:06:1D:22:53:60:D0:E8:31:D6:32:A9:B2:9F Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 068C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 0685 Signing time: Fri 22 Nov 2024 21:49:49 +0000 Manifest this update: Fri 22 Nov 2024 21:49:48 +0000 Manifest next update: Fri 29 Nov 2024 21:49:48 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: Bin/sP/+65Sgwx5pKmUnZVcBK6xEbGjzbf4u8MPHxhE=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: uVZILs4im4Ko7O701mJjun7HiLALbhV2MZXSxxEWSZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1676 (0x68c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Validity Not Before: Nov 22 21:49:48 2024 GMT Not After : Nov 29 21:49:48 2024 GMT Subject: CN=6740fc7c-556b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e0:a0:2f:76:95:8e:e7:fb:46:c0:c0:6a:f0: fc:53:01:ec:9a:15:85:9a:32:99:59:ed:62:9f:88: af:d4:45:1d:cc:55:c9:da:e0:d0:89:1a:7f:f4:59: 0f:50:f1:1f:75:44:55:ef:cd:61:fe:a9:38:c1:08: 23:59:c0:24:aa:73:9d:fb:9f:60:0c:a8:a3:0e:e8: cf:99:82:fa:1c:45:b0:46:fd:87:9b:8e:fb:4d:74: 7e:88:4f:11:aa:17:36:4c:38:94:1e:59:bb:9c:0b: 9f:70:89:e4:0d:44:83:5a:2c:8b:ad:40:d1:d6:e6: 39:a9:e1:56:df:5a:2c:29:d5:74:fb:ae:30:c6:a8: 78:7f:7e:16:45:3b:fc:be:5f:49:a4:66:ed:41:4b: cf:eb:86:be:f5:9d:db:a6:d7:6b:df:a5:80:09:3c: 6c:07:4f:12:7f:d0:f9:1b:9d:fc:c2:19:09:ae:60: 64:1a:30:da:73:b1:09:3c:8d:d5:71:3c:6c:42:b1: 2f:2f:2a:e6:51:fb:05:cc:1c:37:a7:22:e4:59:0d: 4d:6c:d0:e1:19:76:ad:ed:b1:ff:06:94:3c:aa:37: ff:ee:7f:36:95:79:bd:48:7b:aa:68:05:e6:58:4a: c7:71:55:c3:53:6b:44:59:af:d2:ef:a8:19:cc:e0: 59:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:77:FB:C4:8D:CA:FB:06:1D:22:53:60:D0:E8:31:D6:32:A9:B2:9F X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:eb:07:f6:5e:d9:18:11:e8:05:00:c0:d1:3b:4e:bf:60:e3: 25:6c:15:7f:68:70:e5:99:88:9d:6f:29:22:1c:6e:cb:04:de: 32:b0:87:62:b1:81:49:1e:64:48:01:ad:fa:6f:0c:65:0a:39: 77:44:8b:c0:3f:3f:2b:1d:81:f4:60:b0:2b:50:3c:85:56:88: 7d:93:6d:f9:08:bc:af:be:33:8b:1b:e5:bf:33:65:6d:9d:b9: e0:93:93:88:15:b4:dd:e3:74:bc:71:3b:9f:a2:af:0c:bf:c8: 12:e6:47:f3:2e:5d:bb:d4:2c:e7:f6:8a:f7:e3:a6:46:9e:ea: c3:56:87:49:30:6f:df:21:e0:98:9a:79:19:e2:99:e8:bb:e6: 5e:eb:e2:9c:ea:7f:b9:78:f8:d8:b0:a8:25:32:b7:82:0b:b7: 99:ad:b8:f5:a7:34:a3:f8:f8:80:d1:48:3f:38:ad:fa:b0:91: a2:53:3f:41:51:e0:14:86:60:54:a0:2e:de:1e:ca:3a:09:14: be:c4:c8:cb:d9:7d:e8:7d:a6:68:14:e2:0b:0f:14:73:af:fb: 63:6c:bf:97:fa:eb:67:27:d6:5c:7e:90:6b:37:21:1f:af:b0: de:47:c5:50:13:96:85:ef:33:5b:eb:8c:b7:5e:18:11:3d:d9: 61:1a:e3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjQxMTIyMjE0OTQ4WhcNMjQxMTI5MjE0OTQ4WjAYMRYwFAYD VQQDEw02NzQwZmM3Yy01NTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+CgL3aVjuf7RsDAavD8UwHsmhWFmjKZWe1in4iv1EUdzFXJ2uDQiRp/9FkP UPEfdURV781h/qk4wQgjWcAkqnOd+59gDKijDujPmYL6HEWwRv2Hm477TXR+iE8R qhc2TDiUHlm7nAufcInkDUSDWiyLrUDR1uY5qeFW31osKdV0+64wxqh4f34WRTv8 vl9JpGbtQUvP64a+9Z3bptdr36WACTxsB08Sf9D5G538whkJrmBkGjDac7EJPI3V cTxsQrEvLyrmUfsFzBw3pyLkWQ1NbNDhGXat7bH/BpQ8qjf/7n82lXm9SHuqaAXm WErHcVXDU2tEWa/S76gZzOBZKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd3+8SN yvsGHSJTYNDoMdYyqbKfMB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE6wf2XtkYEegFAMDRO06/YOMlbBV/aHDlmYidbykiHG7LBN4ysIdi sYFJHmRIAa36bwxlCjl3RIvAPz8rHYH0YLArUDyFVoh9k235CLyvvjOLG+W/M2Vt nbngk5OIFbTd43S8cTufoq8Mv8gS5kfzLl271Czn9or346ZGnurDVodJMG/fIeCY mnkZ4pnou+Ze6+Kc6n+5ePjYsKglMreCC7eZrbj1pzSj+PiA0Ug/OK36sJGiUz9B UeAUhmBUoC7eHso6CRS+xMjL2X3ofaZoFOILDxRzr/tjbL+X+utnJ9ZcfpBrNyEf r7DeR8VQE5aF7zNb64y3XhgRPdlhGuNw -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:35 2024 by rpki-client on console-fra.rpki-client.org