$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft File: nlcX9fFLsp9ntXrX2dXweRWunEM.mft (raw, json) Hash identifier: KJLDCs3weEcVCtpWMcgJ08Vp0N3PQvBJVb+f9ZZHTkE= Subject key identifier: 82:E6:F9:E3:3F:E2:16:26:A6:5D:18:B0:68:B3:0D:0D:C8:01:F4:EF Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft Manifest number: 0332 Signing time: Sat 23 Nov 2024 00:39:05 +0000 Manifest this update: Sat 23 Nov 2024 00:39:05 +0000 Manifest next update: Sat 30 Nov 2024 00:39:05 +0000 Files and hashes: 1: nlcX9fFLsp9ntXrX2dXweRWunEM.crl (hash: nlMDnRe1WV/YXtKDtg8CGIEaHeZkOzbnmNuDJc9hqVE=) 2: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (hash: 92HIEbj2G47MSTH5iEgpWYXExI9zDOC82XtCwVyLKgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: Nov 23 00:39:05 2024 GMT Not After : Nov 30 00:39:05 2024 GMT Subject: CN=67412429-a908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:da:6f:e8:21:09:33:26:0a:f2:c7:d5:7a:86: 13:ef:ce:ac:d1:46:8d:98:91:d1:7c:12:7f:ed:22: 71:c5:cc:c6:b7:ec:c1:88:cf:39:0d:c7:87:6e:05: 06:7b:81:d9:a4:76:77:f5:a4:e3:31:af:8d:e9:81: ef:72:04:97:9c:c3:76:7c:9b:8d:c5:92:d5:6f:68: 68:04:3b:d8:08:ce:d7:70:8b:7c:48:cc:8f:3a:88: ed:7c:37:c9:a2:7c:a2:ea:4e:7e:34:db:29:81:b6: 6e:01:ab:46:bf:fd:a3:e2:39:55:3d:2c:53:8d:aa: 6d:fd:32:e7:af:ed:b7:48:22:72:a0:cf:62:55:7e: 00:32:5d:29:a0:83:61:c1:ce:26:2c:fb:f9:b6:c2: 5e:ce:20:8a:82:34:af:e0:b9:61:78:d1:8a:f7:1e: 29:1b:5b:70:17:91:ae:8c:e2:c2:bb:3b:a8:d7:62: 47:67:9c:1f:34:98:f0:17:5c:38:9d:fe:10:d9:b5: 25:81:7d:ea:45:76:ab:15:df:a7:28:e6:3b:28:80: c7:54:77:27:91:b1:34:42:5b:b9:37:d0:1b:ec:78: 57:f4:99:e6:af:cf:8c:c1:ce:13:e4:b1:31:18:05: 3c:70:3d:24:ae:92:5b:50:65:8a:2a:5b:87:c2:fb: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E6:F9:E3:3F:E2:16:26:A6:5D:18:B0:68:B3:0D:0D:C8:01:F4:EF X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:71:bc:b0:b4:f9:c8:a0:88:f9:a1:57:b7:d6:29:09:54:fc: 28:a0:fd:d7:9d:23:db:6d:7c:eb:a4:eb:77:6d:3f:01:6d:b2: c3:17:fe:d5:eb:f9:58:7e:c2:f6:1a:34:86:90:ce:7d:be:62: 47:5c:98:50:15:a3:14:16:94:0e:4e:80:0b:0e:e7:ac:69:43: e0:4d:01:90:e6:7c:a1:39:74:5c:30:6d:c5:7f:af:4b:09:28: 19:23:e3:73:65:24:1b:b1:6b:a0:bd:2d:e8:b8:bf:0b:ef:82: 02:d2:37:a4:43:ab:a0:ba:0b:22:fc:e3:36:1c:62:ba:25:a0: 3b:ed:a7:74:ee:12:98:4e:65:5b:9d:b3:19:2c:2e:d7:f9:67: 03:4f:ca:b2:0c:23:5b:cb:b5:74:43:17:76:af:29:a0:5d:1c: cc:34:42:4d:60:c4:ad:3a:9c:98:ca:57:7d:59:f5:41:b2:49: 5f:7c:95:64:c5:f9:a6:87:8d:21:09:68:5b:56:c3:1e:78:0e: 68:e4:dc:29:02:e2:5c:c0:cc:38:31:4f:c8:ec:91:57:7e:c7: 9b:36:33:5a:ba:0c:68:10:1c:97:dc:04:ec:4a:aa:10:6a:0d: 91:c2:8b:56:95:66:ec:e5:76:82:8e:0a:47:44:52:3f:1a:56: dc:94:ea:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjQxMTIzMDAzOTA1WhcNMjQxMTMwMDAzOTA1WjAYMRYwFAYD VQQDEw02NzQxMjQyOS1hOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tpv6CEJMyYK8sfVeoYT786s0UaNmJHRfBJ/7SJxxczGt+zBiM85DceHbgUG e4HZpHZ39aTjMa+N6YHvcgSXnMN2fJuNxZLVb2hoBDvYCM7XcIt8SMyPOojtfDfJ onyi6k5+NNspgbZuAatGv/2j4jlVPSxTjapt/TLnr+23SCJyoM9iVX4AMl0poINh wc4mLPv5tsJeziCKgjSv4LlheNGK9x4pG1twF5GujOLCuzuo12JHZ5wfNJjwF1w4 nf4Q2bUlgX3qRXarFd+nKOY7KIDHVHcnkbE0Qlu5N9Ab7HhX9Jnmr8+Mwc4T5LEx GAU8cD0krpJbUGWKKluHwvvOQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILm+eM/ 4hYmpl0YsGizDQ3IAfTvMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAxRS9DNUM2RjA1RTlFQTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNw OW50WHJYMmRYd2VSV3VuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDcbywtPnIoIj5oVe31ikJVPwooP3XnSPbbXzrpOt3bT8BbbLDF/7V 6/lYfsL2GjSGkM59vmJHXJhQFaMUFpQOToALDuesaUPgTQGQ5nyhOXRcMG3Ff69L CSgZI+NzZSQbsWugvS3ouL8L74IC0jekQ6ugugsi/OM2HGK6JaA77ad07hKYTmVb nbMZLC7X+WcDT8qyDCNby7V0Qxd2rymgXRzMNEJNYMStOpyYyld9WfVBsklffJVk xfmmh40hCWhbVsMeeA5o5NwpAuJcwMw4MU/I7JFXfsebNjNaugxoEByX3ATsSqoQ ag2RwotWlWbs5XaCjgpHRFI/GlbclOqX -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org