$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: wL50U1UY/o3jyImKuCqI9urgGF0ajb861VRG+iywrHU= Subject key identifier: D3:AA:15:A8:59:99:0F:5B:CC:60:F1:40:D1:40:0A:9B:63:3B:78:FE Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 04CB Signing time: Fri 22 Nov 2024 23:22:39 +0000 Manifest this update: Fri 22 Nov 2024 23:22:38 +0000 Manifest next update: Fri 29 Nov 2024 23:22:38 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: my5GqjHLY1WHTQxXz3qb9isZrtmSLAhoQEZMyibDPNw=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: nPFntpiH3e+VxnHZACKr8y86wdGV/j1zFhWwhLBnbJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Nov 22 23:22:38 2024 GMT Not After : Nov 29 23:22:38 2024 GMT Subject: CN=6741123f-1a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4e:f2:95:ab:cd:c6:b7:97:04:b7:6c:9a:45: 52:43:67:f3:8b:ff:31:7d:94:0b:bf:42:2f:d8:41: 1b:36:20:ab:20:65:ad:a9:ec:4c:0f:eb:5b:2d:25: 17:9a:33:5c:1d:ea:f1:32:3c:89:ba:b2:aa:ff:a2: b9:6c:0c:1c:af:50:4d:b4:de:3f:c3:52:33:ad:de: 96:73:5e:9d:1d:84:8c:d0:b8:7d:a0:1d:86:5e:2e: 0e:96:98:92:9e:b1:1b:ee:66:53:46:66:9e:e5:44: ba:ba:af:fc:bd:b2:67:a3:55:db:05:08:e1:e7:0a: 07:f7:31:67:a0:a6:a0:b4:28:35:a2:ab:a3:7b:c3: 55:3f:72:d1:51:e5:a0:74:a0:7a:2f:d3:26:3d:bf: 47:67:38:61:ff:4e:9f:6e:82:20:59:78:66:b8:17: 77:c9:f5:c1:12:89:de:dd:c7:4d:90:15:c8:c6:75: 8c:86:16:0e:be:b6:34:5e:a1:ca:2f:23:7f:5e:3d: 78:6d:7d:ab:ff:02:03:40:ad:b0:83:fe:41:14:ea: 22:64:2b:40:99:92:01:6e:c6:68:18:ea:a0:57:c9: a0:55:67:55:0c:66:8c:cc:38:9b:1c:be:87:c4:7a: a4:bc:86:ca:df:78:e2:0e:12:f4:b5:2a:1c:4b:5a: d2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AA:15:A8:59:99:0F:5B:CC:60:F1:40:D1:40:0A:9B:63:3B:78:FE X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:dd:b6:61:e0:30:6a:3e:6b:df:77:a7:64:3b:df:1f:d1:a6: b4:8c:3a:84:d3:75:97:32:52:ca:cf:8f:51:15:43:92:e3:f0: 6a:d8:63:95:79:d0:c0:15:64:89:f3:2c:b2:80:45:c5:b9:94: 84:5f:e6:46:97:14:59:2e:ef:75:1e:c9:70:60:10:15:9b:42: 4e:00:d4:7e:cf:fa:fa:81:14:ec:15:d5:22:58:73:80:ec:eb: 0a:ee:64:54:25:e7:58:ca:12:61:a0:ef:6a:24:2e:6f:e2:7e: c8:dc:cf:3c:99:ac:bd:fe:8e:86:4e:2d:e2:00:97:0f:55:b2: 80:97:6e:3b:ad:ed:02:3c:e1:d0:d3:08:42:37:ec:da:2b:0e: 4f:4b:91:fd:53:4a:6c:55:da:e5:21:e0:a9:1b:54:5b:ee:84: 36:35:18:66:8f:d2:66:5a:6b:f9:8e:ef:ac:64:fb:c5:ea:4a: 0a:40:9d:a8:40:d2:8c:e9:ea:d9:63:29:c4:87:2b:68:b5:08: ef:af:5b:e5:0d:9d:66:f6:78:b9:31:1d:95:ad:69:45:5a:27: 25:cf:f0:5e:c4:e2:b2:46:8d:ce:d3:96:c6:e1:27:8e:9b:a6: a7:c0:7f:c0:a4:6e:9c:58:e9:e7:14:25:48:da:76:14:bd:63: d9:cd:8f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjQxMTIyMjMyMjM4WhcNMjQxMTI5MjMyMjM4WjAYMRYwFAYD VQQDEw02NzQxMTIzZi0xYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm07ylavNxreXBLdsmkVSQ2fzi/8xfZQLv0Iv2EEbNiCrIGWtqexMD+tbLSUX mjNcHerxMjyJurKq/6K5bAwcr1BNtN4/w1Izrd6Wc16dHYSM0Lh9oB2GXi4OlpiS nrEb7mZTRmae5US6uq/8vbJno1XbBQjh5woH9zFnoKagtCg1oquje8NVP3LRUeWg dKB6L9MmPb9HZzhh/06fboIgWXhmuBd3yfXBEone3cdNkBXIxnWMhhYOvrY0XqHK LyN/Xj14bX2r/wIDQK2wg/5BFOoiZCtAmZIBbsZoGOqgV8mgVWdVDGaMzDibHL6H xHqkvIbK33jiDhL0tSocS1rSMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOqFahZ mQ9bzGDxQNFACptjO3j+MB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn3bZh4DBqPmvfd6dkO98f0aa0jDqE03WXMlLKz49RFUOS4/Bq2GOV edDAFWSJ8yyygEXFuZSEX+ZGlxRZLu91HslwYBAVm0JOANR+z/r6gRTsFdUiWHOA 7OsK7mRUJedYyhJhoO9qJC5v4n7I3M88may9/o6GTi3iAJcPVbKAl247re0CPOHQ 0whCN+zaKw5PS5H9U0psVdrlIeCpG1Rb7oQ2NRhmj9JmWmv5ju+sZPvF6koKQJ2o QNKM6erZYynEhytotQjvr1vlDZ1m9ni5MR2VrWlFWiclz/BexOKyRo3O05bG4SeO m6anwH/ApG6cWOnnFCVI2nYUvWPZzY+t -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org