$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft File: nuqkUJudasqRzaQCHxBekhA363Q.mft (raw, json) Hash identifier: itG6BpPk8s9TxNgc2z8V/nD9vomDCM8e8/0s98v6aYw= Subject key identifier: FD:FC:21:2C:C8:6F:5D:C6:5F:F5:67:D8:3D:B9:06:13:B1:E8:80:C1 Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 Certificate issuer: /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Certificate serial: 0945 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft Manifest number: 093A Signing time: Fri 22 Nov 2024 20:02:28 +0000 Manifest this update: Fri 22 Nov 2024 20:02:27 +0000 Manifest next update: Fri 29 Nov 2024 20:02:27 +0000 Files and hashes: 1: nuqkUJudasqRzaQCHxBekhA363Q.crl (hash: CqXjF8Sofl1Pdiv59pPyDMGWW2t2quYpe+j5DK76BBM=) 2: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (hash: mjCI51z49d/ZR6NIO/Fc5BsNeBRLESAiodQLOKBux1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2373 (0x945) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Validity Not Before: Nov 22 20:02:27 2024 GMT Not After : Nov 29 20:02:27 2024 GMT Subject: CN=6740e354-ef70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c1:39:b5:2d:87:e5:45:e4:21:3d:39:aa:50: aa:57:27:b5:77:01:04:df:88:2f:af:3b:f2:9d:1c: de:5a:1b:92:30:21:92:c9:5f:cb:90:de:89:2a:f6: 26:b5:1b:f0:56:8a:63:57:72:7d:61:64:e0:d0:87: 5d:ce:c0:6b:c8:d2:e4:1c:b2:c4:b4:50:b7:ad:f2: 82:20:a9:ec:44:e4:6f:9d:3f:01:14:a5:91:9f:94: 1e:5e:1f:d1:cb:74:76:3b:4f:4a:65:5b:44:9e:21: e8:3e:d7:84:72:6e:a7:0a:94:3f:95:1c:45:f5:3c: 2c:e1:0e:e7:40:ec:a4:5e:43:28:ff:b9:bd:09:27: 59:cf:a8:3d:29:ec:bd:2a:e7:e6:d6:36:5f:49:3a: b6:75:b0:9a:42:8c:5e:86:16:2d:47:98:60:83:61: 87:0e:a9:27:22:8d:d9:a5:de:19:24:69:2b:59:d0: 77:11:4f:53:af:3d:2a:75:c7:a3:07:a3:cb:69:4d: 1a:d7:8a:1d:6f:3a:a8:cf:82:08:31:d6:38:2a:b2: 97:06:4e:80:c7:62:6b:e3:e3:41:1c:5b:79:88:ea: f5:13:c1:05:47:b7:24:a8:8f:7e:ea:2a:d7:04:e6: d4:ce:f1:01:30:5e:cf:82:46:a3:20:3e:ee:44:df: 0d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FC:21:2C:C8:6F:5D:C6:5F:F5:67:D8:3D:B9:06:13:B1:E8:80:C1 X509v3 Authority Key Identifier: keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:48:9b:de:27:4e:24:ff:df:67:f5:b3:52:33:bb:05:0b:ea: f6:fd:0a:b0:c9:16:79:f2:a0:19:7d:24:05:a5:d3:09:4a:8d: ce:e6:09:d2:ef:13:77:21:06:40:2c:27:c7:3b:ce:98:cc:77: 02:92:c3:8d:54:5f:9f:94:48:1c:0b:14:de:93:6f:fc:7c:f1: 64:68:fd:15:07:d0:66:cb:f7:20:42:1c:c8:43:84:87:1e:da: 89:af:2b:f2:d4:64:55:42:f2:07:ab:89:51:8f:b8:f5:76:c2: 97:46:26:92:c6:3f:e4:56:58:32:5a:a8:9d:b2:33:89:30:25: 2f:82:83:5b:14:f4:42:8e:f1:cb:40:b9:99:cf:09:77:07:9e: 99:1f:d5:d4:eb:31:b2:fb:cb:8b:f0:5a:47:8b:7d:42:68:db: 87:a3:8a:ef:5a:f1:31:22:34:05:4b:4f:00:8a:74:35:74:89: 84:9a:d3:ae:fc:3c:0b:23:12:9e:cb:02:b9:26:f4:87:66:01: 82:f9:f0:c4:0b:5e:f1:99:1a:08:24:3c:3c:d3:ee:b8:3e:40: 3e:69:dc:4d:13:ec:0e:34:cf:6d:f3:d1:5e:f7:cb:cc:ed:7c: c1:ee:6c:8e:c1:a1:f5:ee:05:60:2b:40:65:91:78:93:d3:b8: 15:79:54:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCQTYxMTAvBgNVBAUTKDlFRUFBNDUwOUI5RDZBQ0E5MUNEQTQwMjFGMTA1RTky MTAzN0VCNzQwHhcNMjQxMTIyMjAwMjI3WhcNMjQxMTI5MjAwMjI3WjAYMRYwFAYD VQQDEw02NzQwZTM1NC1lZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8E5tS2H5UXkIT05qlCqVye1dwEE34gvrzvynRzeWhuSMCGSyV/LkN6JKvYm tRvwVopjV3J9YWTg0IddzsBryNLkHLLEtFC3rfKCIKnsRORvnT8BFKWRn5QeXh/R y3R2O09KZVtEniHoPteEcm6nCpQ/lRxF9Tws4Q7nQOykXkMo/7m9CSdZz6g9Key9 Kufm1jZfSTq2dbCaQoxehhYtR5hgg2GHDqknIo3Zpd4ZJGkrWdB3EU9Trz0qdcej B6PLaU0a14odbzqoz4IIMdY4KrKXBk6Ax2Jr4+NBHFt5iOr1E8EFR7ckqI9+6irX BObUzvEBMF7PgkajID7uRN8NsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP38ISzI b13GX/Vn2D25BhOx6IDBMB8GA1UdIwQYMBaAFJ7qpFCbnWrKkc2kAh8QXpIQN+t0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkJBNi84NERENzlFMDhC NzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFzcVJ6YVFDSHhCZWtoQTM2 M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL251cWtVSnVkYXNxUnphUUNIeEJla2hBMzYzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkJBNi84NERENzlFMDhCNzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFz cVJ6YVFDSHhCZWtoQTM2M1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVSJveJ04k/99n9bNSM7sFC+r2/QqwyRZ58qAZfSQFpdMJSo3O5gnS 7xN3IQZALCfHO86YzHcCksONVF+flEgcCxTek2/8fPFkaP0VB9Bmy/cgQhzIQ4SH HtqJryvy1GRVQvIHq4lRj7j1dsKXRiaSxj/kVlgyWqidsjOJMCUvgoNbFPRCjvHL QLmZzwl3B56ZH9XU6zGy+8uL8FpHi31CaNuHo4rvWvExIjQFS08AinQ1dImEmtOu /DwLIxKeywK5JvSHZgGC+fDEC17xmRoIJDw80+64PkA+adxNE+wONM9t89Fe98vM 7XzB7myOwaH17gVgK0BlkXiT07gVeVRX -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org