$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: +gTZFZxVd54B2L93JXJsfDVE0JKK0VluU3Eyy5uZUmk= Subject key identifier: C2:BB:6B:14:8C:10:86:F4:40:44:13:74:38:9D:E5:C9:80:84:7D:DA Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 09B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 099E Signing time: Fri 22 Nov 2024 19:50:59 +0000 Manifest this update: Fri 22 Nov 2024 19:50:59 +0000 Manifest next update: Fri 29 Nov 2024 19:50:59 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: 4VuTnw3knGUm3+tZUUJojz5szgUUBTu/bgDsbTkrHeY=) 2: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: menbjtgG3OL9FP2gHIv3HpKwGpwOaKUkt24pbDLYnNA=) 3: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: bMJemH5ceUwe7SSoHueO95SQnaFhnEbPA4cUZ9QObys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: Nov 22 19:50:59 2024 GMT Not After : Nov 29 19:50:59 2024 GMT Subject: CN=6740e0a3-b9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:38:b6:84:0f:81:8c:60:15:91:d0:e9:1c:69: e6:ce:8d:b4:b6:ad:5d:50:bd:bd:71:59:f8:a1:70: 05:0a:a9:12:f9:b2:fd:fe:32:11:20:c6:94:cc:5e: 5c:51:ba:f0:7d:c0:ea:dc:0a:a5:45:44:ea:17:d5: 0e:3f:fd:57:51:22:5a:9a:03:2c:24:95:55:a8:d5: 7a:b6:a9:85:cc:9a:bb:70:9f:a1:e5:f9:fe:57:20: cf:7f:43:2f:ed:89:4a:4b:9b:07:4c:2f:ee:d4:87: 05:f6:49:9e:7f:65:c4:3c:61:94:fc:4f:6d:9e:c5: a3:b8:64:eb:3b:b5:34:6f:dc:d3:52:32:af:a5:64: 6c:f0:6f:16:0c:68:be:b8:8d:8c:d5:77:42:ef:0a: 0a:c5:59:fd:62:b7:df:f3:80:c6:ed:5b:fc:cb:8b: fe:3e:ca:ff:54:73:4b:28:90:07:1b:02:d5:2a:08: 70:ca:06:36:a3:0e:b1:bf:8a:c8:42:23:6f:8f:20: 0a:f2:88:b0:66:b7:16:8a:7f:dc:a6:ff:4a:2c:6b: c6:99:bf:2d:a0:ea:11:83:ce:11:39:82:da:05:48: 55:49:7b:e0:f2:61:64:44:3c:bf:c2:6f:dd:1f:a7: 36:24:8e:39:37:73:c2:a4:4c:02:43:f5:02:0d:34: 92:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:BB:6B:14:8C:10:86:F4:40:44:13:74:38:9D:E5:C9:80:84:7D:DA X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:6c:49:8a:aa:89:68:9c:0e:d0:19:40:2c:d1:2e:fb:24:9c: e7:59:e2:bd:3d:1b:c2:4d:52:de:8b:36:86:88:2b:8e:e7:82: 63:1b:2f:b1:2e:77:46:b2:60:b7:53:f1:77:06:b0:93:2c:ad: 33:a3:1a:3d:e2:e8:ad:ec:f6:47:fa:bd:c1:ae:e2:94:75:4d: 4f:73:b5:ae:29:3e:a5:97:10:78:93:3c:1c:cd:f5:05:10:ad: 1c:02:8d:2c:91:bb:24:7a:52:96:91:0f:bb:95:0a:90:3f:8f: 85:fd:99:fe:49:d8:bc:4e:f7:22:36:a1:22:06:d3:9b:18:bc: 20:da:08:7e:40:bf:7b:40:22:7e:5a:2f:66:d9:2a:fe:10:92: d8:8d:97:bd:e5:13:f6:36:41:17:c1:0c:26:91:33:4c:04:fb: e3:ca:3a:8a:5f:9a:c6:0f:42:12:7b:a1:41:ca:a3:01:2e:bb: 64:1a:0a:5f:42:06:25:b2:ce:cf:7e:c4:43:dc:b7:8a:7a:47: 47:65:93:2c:a3:f2:b9:cf:f5:c0:e6:9e:e4:89:5e:35:c4:4d: 4a:57:32:d4:06:0d:7a:ef:9f:bf:ef:98:64:a8:49:78:57:35: b9:a8:8b:2b:39:f4:22:78:41:c9:fc:97:f4:a4:d6:4a:f3:a5: a5:2f:78:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjQxMTIyMTk1MDU5WhcNMjQxMTI5MTk1MDU5WjAYMRYwFAYD VQQDEw02NzQwZTBhMy1iOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zi2hA+BjGAVkdDpHGnmzo20tq1dUL29cVn4oXAFCqkS+bL9/jIRIMaUzF5c UbrwfcDq3AqlRUTqF9UOP/1XUSJamgMsJJVVqNV6tqmFzJq7cJ+h5fn+VyDPf0Mv 7YlKS5sHTC/u1IcF9kmef2XEPGGU/E9tnsWjuGTrO7U0b9zTUjKvpWRs8G8WDGi+ uI2M1XdC7woKxVn9Yrff84DG7Vv8y4v+Psr/VHNLKJAHGwLVKghwygY2ow6xv4rI QiNvjyAK8oiwZrcWin/cpv9KLGvGmb8toOoRg84ROYLaBUhVSXvg8mFkRDy/wm/d H6c2JI45N3PCpEwCQ/UCDTSSnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMK7axSM EIb0QEQTdDid5cmAhH3aMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJbEmKqolonA7QGUAs0S77JJznWeK9PRvCTVLeizaGiCuO54JjGy+x LndGsmC3U/F3BrCTLK0zoxo94uit7PZH+r3BruKUdU1Pc7WuKT6llxB4kzwczfUF EK0cAo0skbskelKWkQ+7lQqQP4+F/Zn+Sdi8TvciNqEiBtObGLwg2gh+QL97QCJ+ Wi9m2Sr+EJLYjZe95RP2NkEXwQwmkTNMBPvjyjqKX5rGD0ISe6FByqMBLrtkGgpf QgYlss7PfsRD3LeKekdHZZMso/K5z/XA5p7kiV41xE1KVzLUBg1675+/75hkqEl4 VzW5qIsrOfQieEHJ/Jf0pNZK86WlL3gM -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org