$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: 1vwNvvcizufLumRhTZtxocVXeMDNu15Qrhc7GIDuwA0= Subject key identifier: E7:13:5E:57:D2:AA:DB:AE:55:12:C7:36:82:B4:96:1C:A4:F6:C9:08 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0130 Signing time: Sun 24 Nov 2024 17:00:55 +0000 Manifest this update: Sun 24 Nov 2024 17:00:55 +0000 Manifest next update: Sun 01 Dec 2024 17:00:55 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: zBpH+Jftshc1LvdqG2u2O7EVO900dvGTB+RY7K4Qn0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Nov 24 17:00:55 2024 GMT Not After : Dec 1 17:00:55 2024 GMT Subject: CN=67435bc7-e2c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:ae:4f:80:02:c0:31:b8:ff:95:0a:c1:87: ff:37:41:09:1e:1a:41:c5:cf:c4:e1:09:b1:35:0f: 40:28:cd:21:87:35:a0:e2:b2:99:66:de:7f:ea:96: 44:a9:3d:a5:8b:15:dc:36:72:2d:27:d7:9c:2e:5c: 14:03:05:5b:88:e6:ef:43:5e:21:fe:32:7c:34:2a: e1:f4:b7:d6:fd:63:52:fa:c1:05:e8:3d:da:3f:80: 81:02:32:51:7f:e4:7e:61:0e:f3:0d:cc:fb:da:94: 5a:3c:f5:dd:50:5a:04:67:3d:f8:6b:a4:67:e4:a2: db:57:bb:10:c5:5c:62:1b:97:16:75:b5:42:62:e9: 68:0d:b3:9f:88:52:f3:e4:f8:bb:03:df:f8:c8:2c: 1b:2c:30:e5:f3:53:36:3d:bc:ad:b5:19:06:00:eb: 2a:8e:bc:97:51:e3:02:73:ee:5b:d0:82:7a:46:7d: 96:f9:a8:8d:5d:60:ae:8e:dc:7a:f1:de:a4:a3:0c: bb:8d:18:8a:da:e8:34:73:8e:75:0b:fc:20:9c:2e: 5b:c6:45:de:8b:4f:bb:3b:e3:fb:df:26:93:14:cb: c9:61:b7:7f:6c:8e:88:c5:b4:c3:29:24:af:34:2f: d1:59:80:2b:b4:27:e8:ba:fe:50:dc:2e:58:7a:9f: c6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:13:5E:57:D2:AA:DB:AE:55:12:C7:36:82:B4:96:1C:A4:F6:C9:08 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:c1:ba:3b:97:9a:f2:0a:22:65:60:56:c5:cf:45:dc:d1:1b: 72:e6:3a:d5:62:be:cb:96:7f:64:94:7b:df:39:37:9f:13:cd: c5:e2:7f:7e:b9:73:55:ff:5a:a3:88:32:b6:e6:d9:4c:1f:47: 8b:bd:4b:93:87:a3:33:46:2d:53:13:f0:d7:db:a8:02:38:f8: f5:58:a8:1f:79:90:77:79:96:13:34:7b:75:84:ab:07:73:21: 29:79:1d:d8:a7:30:97:34:f6:b6:b9:c4:c3:78:6d:ea:87:05: 4c:b4:03:fc:eb:59:60:5b:b2:d8:33:42:d9:67:47:69:1d:26: f0:6b:8c:fd:0c:54:1a:14:f7:08:0a:7a:94:14:c7:e7:af:05: 35:aa:b3:f7:4d:c8:96:4f:67:cb:ee:4a:da:18:26:5f:8e:6c: 89:32:dd:cb:ca:28:01:c7:e8:0e:10:ef:de:47:e5:63:1d:67: 17:be:73:14:32:3d:04:5c:d1:d2:6b:96:41:45:8a:0c:49:e2: 80:cc:1f:d9:b7:99:92:56:e3:85:fd:67:98:08:1a:f8:78:df: a8:7b:c2:4d:bb:41:54:a2:84:5a:29:59:12:15:75:9a:6a:55: 6b:9e:01:5c:df:f1:01:f9:3b:b5:18:c6:a4:a4:90:26:f3:94: 15:f3:14:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjQxMTI0MTcwMDU1WhcNMjQxMjAxMTcwMDU1WjAYMRYwFAYD VQQDEw02NzQzNWJjNy1lMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/6uT4ACwDG4/5UKwYf/N0EJHhpBxc/E4QmxNQ9AKM0hhzWg4rKZZt5/6pZE qT2lixXcNnItJ9ecLlwUAwVbiObvQ14h/jJ8NCrh9LfW/WNS+sEF6D3aP4CBAjJR f+R+YQ7zDcz72pRaPPXdUFoEZz34a6Rn5KLbV7sQxVxiG5cWdbVCYuloDbOfiFLz 5Pi7A9/4yCwbLDDl81M2PbyttRkGAOsqjryXUeMCc+5b0IJ6Rn2W+aiNXWCujtx6 8d6kowy7jRiK2ug0c451C/wgnC5bxkXei0+7O+P73yaTFMvJYbd/bI6IxbTDKSSv NC/RWYArtCfouv5Q3C5Yep/GBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcTXlfS qtuuVRLHNoK0lhyk9skIMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdwbo7l5ryCiJlYFbFz0Xc0Rty5jrVYr7Lln9klHvfOTefE83F4n9+ uXNV/1qjiDK25tlMH0eLvUuTh6MzRi1TE/DX26gCOPj1WKgfeZB3eZYTNHt1hKsH cyEpeR3YpzCXNPa2ucTDeG3qhwVMtAP861lgW7LYM0LZZ0dpHSbwa4z9DFQaFPcI CnqUFMfnrwU1qrP3TciWT2fL7kraGCZfjmyJMt3LyigBx+gOEO/eR+VjHWcXvnMU Mj0EXNHSa5ZBRYoMSeKAzB/Zt5mSVuOF/WeYCBr4eN+oe8JNu0FUooRaKVkSFXWa alVrngFc3/EB+Tu1GMakpJAm85QV8xRg -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:12 2024 by rpki-client on console-ams.rpki-client.org