$ rpki-client -vvf rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft File: NEp3XiRcztCAx5UhWW4yyPBtiMg.mft (raw, json) Hash identifier: cSypCEv3aZF8jYXZmCPUMyI30CkNARhOY1BZdF8C5T8= Subject key identifier: 59:0A:CB:22:CF:E6:03:30:07:42:F1:F6:99:A8:93:EB:54:24:39:02 Authority key identifier: 34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 Certificate issuer: /CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Certificate serial: 1743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft Manifest number: 172E Signing time: Fri 22 Nov 2024 16:37:47 +0000 Manifest this update: Fri 22 Nov 2024 16:37:47 +0000 Manifest next update: Fri 29 Nov 2024 16:37:47 +0000 Files and hashes: 1: NEp3XiRcztCAx5UhWW4yyPBtiMg.crl (hash: hct3MzhWvSSdMq2ZlgGZE3eymB1nmYokwbG1Nje+fDA=) 2: 2F840DD2740911EDA7146F2DC4F9AE02.roa (hash: PKyy2enQZwJAPAGB65CItDAb1Yve/y7L5I1YK7Ph1yU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5955 (0x1743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Validity Not Before: Nov 22 16:37:47 2024 GMT Not After : Nov 29 16:37:47 2024 GMT Subject: CN=6740b35b-9990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b0:8e:e3:97:35:9f:1f:65:29:44:ed:be:bc: 60:ca:70:88:b1:93:65:56:2b:20:09:c0:e0:39:a6: 46:be:e1:6c:80:eb:dc:ac:ef:c2:89:0a:68:6d:3a: 59:dd:83:72:1a:5d:44:7a:e0:66:a2:86:72:20:76: 2a:e0:bb:7b:87:90:ae:5b:19:0f:e6:9a:72:23:10: ad:c9:70:76:e3:82:a8:f8:96:3e:17:61:30:ae:6b: d4:6e:bd:55:c5:28:0a:08:e9:75:df:08:59:1b:64: 8f:5b:c2:d1:fc:d8:64:5c:d4:29:9c:ee:a1:c5:c5: e7:41:6f:a7:05:33:39:df:79:19:1a:74:ab:f1:75: 5b:1f:3f:2e:b3:1c:36:27:44:9a:88:30:1c:e6:fa: ef:6a:d2:3f:32:bf:d3:16:d9:3d:e3:d7:50:78:b1: 1d:87:99:46:0e:2f:67:f3:db:2a:65:5e:d8:90:2c: e3:10:ab:17:69:d7:1d:15:61:8f:8d:eb:24:e4:61: b6:71:7e:49:08:c1:3c:cd:7c:8f:95:8c:26:6c:57: 1c:d4:b8:93:f8:63:b2:19:e5:a5:33:c4:27:f9:79: 0f:69:ed:f9:d4:fe:62:5a:26:3a:b7:9f:ed:93:01: 45:9a:3e:1f:c7:3f:b3:0d:13:90:10:39:9a:3a:de: 89:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0A:CB:22:CF:E6:03:30:07:42:F1:F6:99:A8:93:EB:54:24:39:02 X509v3 Authority Key Identifier: keyid:34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:48:eb:a0:04:be:bc:0f:15:ba:3a:4c:80:98:98:ad:cd:bc: 2f:15:1c:ed:ee:ba:f2:8f:a9:6a:51:26:af:6e:4f:d0:31:55: 7d:ae:f2:60:03:ac:ad:c2:09:13:0a:9a:75:72:3c:4e:0a:0f: 00:99:38:eb:12:78:34:71:a8:9f:07:ac:ec:e7:a6:56:7b:df: 76:23:9b:2d:dc:61:3b:7f:82:81:fa:a8:1d:8e:a1:96:c7:71: 44:ae:6b:f4:ec:93:65:6c:70:ae:b8:3f:4a:3d:1c:ef:a6:55: 82:4e:2c:b0:f8:04:d8:d3:31:97:d0:11:28:c9:cd:dd:1b:c9: 2b:50:00:39:db:20:ab:d1:2f:6b:36:b5:2e:9e:84:92:a7:1e: 5f:d0:5e:cd:a1:ea:d8:58:40:28:b7:fd:cd:20:db:8c:bf:38: fa:f4:fa:a0:2b:c6:29:10:3b:4e:6d:1e:77:a9:4b:7e:25:d8: c2:b2:76:66:b5:80:56:5f:b5:d6:b9:97:e8:47:24:03:68:12: a0:cc:1f:e2:00:b4:a7:08:0e:67:5d:6c:ff:6b:02:90:38:a2: fc:47:63:16:2a:7c:3b:51:5d:e9:51:98:9a:83:b0:02:f8:ea: 03:26:ec:9e:05:0a:67:24:94:0e:66:3a:7b:ed:22:5e:b6:9a: cf:31:82:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxN0QxMTAvBgNVBAUTKDM0NEE3NzVFMjQ1Q0NFRDA4MEM3OTUyMTU5NkUzMkM4 RjA2RDg4QzgwHhcNMjQxMTIyMTYzNzQ3WhcNMjQxMTI5MTYzNzQ3WjAYMRYwFAYD VQQDEw02NzQwYjM1Yi05OTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LCO45c1nx9lKUTtvrxgynCIsZNlVisgCcDgOaZGvuFsgOvcrO/CiQpobTpZ 3YNyGl1EeuBmooZyIHYq4Lt7h5CuWxkP5ppyIxCtyXB244Ko+JY+F2EwrmvUbr1V xSgKCOl13whZG2SPW8LR/NhkXNQpnO6hxcXnQW+nBTM533kZGnSr8XVbHz8usxw2 J0SaiDAc5vrvatI/Mr/TFtk949dQeLEdh5lGDi9n89sqZV7YkCzjEKsXadcdFWGP jesk5GG2cX5JCME8zXyPlYwmbFcc1LiT+GOyGeWlM8Qn+XkPae351P5iWiY6t5/t kwFFmj4fxz+zDROQEDmaOt6J0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkKyyLP 5gMwB0Lx9pmok+tUJDkCMB8GA1UdIwQYMBaAFDRKd14kXM7QgMeVIVluMsjwbYjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE3RC8zRDdBNjI4NkNG NTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0Q0F4NVVoV1c0eXlQQnRp TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FcDNYaVJjenRDQXg1VWhXVzR5eVBCdGlNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE3RC8zRDdBNjI4NkNGNTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0 Q0F4NVVoV1c0eXlQQnRpTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCSOugBL68DxW6OkyAmJitzbwvFRzt7rryj6lqUSavbk/QMVV9rvJg A6ytwgkTCpp1cjxOCg8AmTjrEng0caifB6zs56ZWe992I5st3GE7f4KB+qgdjqGW x3FErmv07JNlbHCuuD9KPRzvplWCTiyw+ATY0zGX0BEoyc3dG8krUAA52yCr0S9r NrUunoSSpx5f0F7NoerYWEAot/3NINuMvzj69PqgK8YpEDtObR53qUt+JdjCsnZm tYBWX7XWuZfoRyQDaBKgzB/iALSnCA5nXWz/awKQOKL8R2MWKnw7UV3pUZiag7AC +OoDJuyeBQpnJJQOZjp77SJetprPMYIN -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org