$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: qIl4Eko6f4lnTJvlk8PvrECOM3Fz6IRhydkakZwYdU8= Subject key identifier: 59:E5:6B:B7:21:2A:52:8D:5B:72:32:88:A8:E2:65:8B:72:FE:07:87 Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 0397 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 0394 Signing time: Sat 23 Nov 2024 00:20:24 +0000 Manifest this update: Sat 23 Nov 2024 00:20:24 +0000 Manifest next update: Sat 30 Nov 2024 00:20:23 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: A+OzbiBnlnVOvkcuTS5JhvL+k4if+SksKAR+nDguS5A=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: gUq1YbiXljB/vgz+My+3uXVVQGjJZX+vawmC3PqjAu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Nov 23 00:20:24 2024 GMT Not After : Nov 30 00:20:23 2024 GMT Subject: CN=67411fc8-0760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:93:5c:4d:41:b3:7c:75:6d:da:17:a4:fa:56: d0:ea:6c:70:67:04:2b:21:ff:75:4f:4b:2d:6c:50: 1f:8a:b7:f3:2a:a8:d1:2a:23:e2:2e:ae:f8:64:6d: 6e:db:c8:87:60:7c:b3:7f:10:23:5f:3c:f8:60:ae: d0:7f:20:ca:af:0c:7d:b2:cc:e7:bb:98:24:47:b3: c0:2c:44:61:a6:7d:c2:69:3b:db:43:1e:60:e5:da: d9:5c:00:79:29:a8:1e:13:73:d7:aa:8e:cb:39:b9: 53:bf:80:84:ef:e2:3d:d0:f2:eb:42:27:e2:f5:38: 95:00:cf:16:36:8b:b1:1c:65:4c:1c:fd:98:21:6c: 97:05:82:36:86:6b:5b:3e:12:26:68:ff:1a:75:dc: b4:59:b0:cd:ee:25:3e:f2:41:a2:e6:1d:fa:0a:b4: cd:f7:15:a0:c1:2c:c9:cd:a3:c5:a6:35:5c:eb:cb: cb:a5:ca:4f:74:ed:2c:ba:8f:3b:68:e6:ef:d9:c0: 26:11:d5:fe:80:60:25:4f:30:4f:74:1e:52:dc:5e: f6:f1:f8:0d:fa:b0:16:f3:51:ae:e5:3f:7f:ae:ce: 7a:3e:57:f6:c5:21:97:2a:f7:96:8a:c1:57:aa:88: 47:5d:f3:90:2b:7b:a0:27:7b:2e:fc:02:f6:c2:77: c5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E5:6B:B7:21:2A:52:8D:5B:72:32:88:A8:E2:65:8B:72:FE:07:87 X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b2:e7:79:b2:47:4e:fe:a6:3b:b9:f6:00:2f:d6:33:36:4e: ef:80:c2:6e:96:de:ff:f3:78:e1:07:ce:1e:03:d6:04:21:27: f7:51:5e:f5:6b:7a:e8:e0:2e:c7:87:e1:dd:eb:a0:e3:82:5b: f4:8b:9b:5e:5d:17:2b:a0:c0:64:50:cd:b2:ae:23:48:f7:1f: 2e:48:0b:89:fc:fb:61:3f:9e:69:f0:75:90:c1:45:ae:05:94: 4b:89:9d:0d:93:1f:01:22:ac:9d:d2:bd:af:7d:31:b7:d6:a0: bd:b1:34:d4:1f:c2:de:64:0a:7f:fd:ad:1d:ed:7d:4c:1c:b4: 17:8d:18:29:4a:2a:96:76:ad:44:2a:6f:5a:52:9c:8d:7f:1c: 0a:38:51:50:44:3e:6a:93:da:e1:d8:4d:6f:5a:df:29:95:d9: 6a:11:96:c9:06:1b:bd:e4:ee:8e:13:b5:57:0c:df:20:21:65: 20:75:97:07:8b:0f:90:ef:13:29:af:c2:5f:46:16:6a:15:b5: 87:4a:1c:48:9b:2d:2b:07:00:3f:99:d5:09:24:61:73:a7:d3: f8:86:16:30:4c:ef:f7:9a:09:08:41:f4:6b:b7:2b:c3:f2:8d: 8d:4a:12:51:c2:51:b0:39:a3:61:02:4b:dc:8b:c1:57:62:dc: ff:93:0e:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjQxMTIzMDAyMDI0WhcNMjQxMTMwMDAyMDIzWjAYMRYwFAYD VQQDEw02NzQxMWZjOC0wNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JNcTUGzfHVt2hek+lbQ6mxwZwQrIf91T0stbFAfirfzKqjRKiPiLq74ZG1u 28iHYHyzfxAjXzz4YK7QfyDKrwx9ssznu5gkR7PALERhpn3CaTvbQx5g5drZXAB5 KageE3PXqo7LOblTv4CE7+I90PLrQifi9TiVAM8WNouxHGVMHP2YIWyXBYI2hmtb PhImaP8addy0WbDN7iU+8kGi5h36CrTN9xWgwSzJzaPFpjVc68vLpcpPdO0suo87 aObv2cAmEdX+gGAlTzBPdB5S3F728fgN+rAW81Gu5T9/rs56Plf2xSGXKveWisFX qohHXfOQK3ugJ3su/AL2wnfFgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnla7ch KlKNW3IyiKjiZYty/geHMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnsud5skdO/qY7ufYAL9YzNk7vgMJult7/83jhB84eA9YEISf3UV71 a3ro4C7Hh+Hd66Djglv0i5teXRcroMBkUM2yriNI9x8uSAuJ/PthP55p8HWQwUWu BZRLiZ0Nkx8BIqyd0r2vfTG31qC9sTTUH8LeZAp//a0d7X1MHLQXjRgpSiqWdq1E Km9aUpyNfxwKOFFQRD5qk9rh2E1vWt8pldlqEZbJBhu95O6OE7VXDN8gIWUgdZcH iw+Q7xMpr8JfRhZqFbWHShxImy0rBwA/mdUJJGFzp9P4hhYwTO/3mgkIQfRrtyvD 8o2NShJRwlGwOaNhAkvci8FXYtz/kw4R -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org