$ rpki-client -vvf rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft File: nhuiMnN6PQDX-qC03Dg02arwbfg.mft (raw, json) Hash identifier: 5XZMNx8uKp3CVfQzo+1kx5zttP68/0QiwN3TOln8nfo= Subject key identifier: 1A:A3:5C:B1:F2:FE:5A:20:7A:A4:5B:D1:A9:87:2A:28:08:DC:FE:2D Authority key identifier: 9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 Certificate issuer: /CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Certificate serial: 05FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft Manifest number: 05F4 Signing time: Fri 22 Nov 2024 22:22:27 +0000 Manifest this update: Fri 22 Nov 2024 22:22:26 +0000 Manifest next update: Fri 29 Nov 2024 22:22:26 +0000 Files and hashes: 1: nhuiMnN6PQDX-qC03Dg02arwbfg.crl (hash: 5Yo3ZK1PN/dLZULp0wno8qXDgW/G3Z3XQ9Oau43cQgA=) 2: DB883A6E87B511EB91F5691BC4F9AE02.roa (hash: w9bicawnJRvGW+6sHovOqUiuGd+C1wZ78lKb1ct2C6A=) 3: DC0002F687B511EB91F5691BC4F9AE02.roa (hash: Dm24k5oSXxU308cuhimaoVSKUy3VoBNJ3O4FrVg4PHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Validity Not Before: Nov 22 22:22:26 2024 GMT Not After : Nov 29 22:22:26 2024 GMT Subject: CN=67410422-44c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3a:2e:b3:74:85:75:b1:55:d4:25:b6:14:31: ff:bc:8b:8d:11:fd:45:95:a5:8d:6e:09:30:25:31: 1e:4d:21:a9:ab:ce:d1:c5:79:e1:20:97:ca:6f:ef: 82:0f:f0:a0:39:fa:e5:03:1e:4f:3d:26:b5:18:1a: 49:10:b0:a7:f8:63:88:af:b6:5b:57:1e:9a:7c:a7: 27:17:8c:9b:b3:6c:da:fa:2b:3a:ef:41:84:03:53: 99:1e:a0:50:01:72:9e:39:b9:6d:ed:74:50:d4:80: c2:29:ba:87:b5:1a:9a:94:87:a8:57:97:f2:2c:3e: 00:b3:05:11:ea:f0:86:95:db:0e:88:35:15:1a:38: 35:03:36:43:15:dd:49:2f:59:c0:0a:56:b6:f1:4a: 81:c1:25:9a:8b:ca:25:5d:c0:84:34:c3:a2:30:d9: 12:71:96:83:fb:95:ad:3a:8f:2b:3a:50:92:f4:48: 05:19:8d:9d:70:4c:99:90:05:7b:db:95:1f:8a:6a: 19:fa:d7:69:36:ad:a1:73:29:ef:43:43:4f:df:2b: 66:68:84:08:80:7c:f4:88:05:a6:95:f0:82:90:25: c7:dd:25:02:13:21:b3:e2:42:26:df:7a:9e:1a:8a: c8:10:8a:68:24:c9:1d:c3:fe:1f:a5:5a:77:e7:ce: ac:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A3:5C:B1:F2:FE:5A:20:7A:A4:5B:D1:A9:87:2A:28:08:DC:FE:2D X509v3 Authority Key Identifier: keyid:9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2c:04:73:56:c1:49:f6:2c:eb:e8:a8:f0:dd:09:ad:be:84: 58:46:0f:15:09:25:06:2c:a9:4c:54:42:96:a2:a0:a5:12:91: e8:fb:0e:69:99:1c:e8:ca:cf:b6:e9:b7:c7:4e:ae:2b:30:2f: b9:24:1a:6f:bc:26:93:1d:c8:87:fe:a1:13:83:eb:9d:ae:93: 3d:1b:5f:66:b4:41:67:81:b9:83:65:d1:b1:6d:11:1f:80:bb: 48:b2:24:7a:af:43:ea:25:31:0d:84:e6:36:4e:e5:10:88:94: 56:27:97:1e:8a:d6:39:64:52:46:25:60:ae:81:11:4c:d3:c9: af:da:bf:70:47:83:c4:7e:14:90:56:92:64:69:22:33:68:a8: cb:05:14:a1:ec:37:5d:fa:e1:77:e1:d4:fe:1f:4c:84:49:1d: 0a:40:8a:02:e7:5e:73:88:55:06:17:76:a1:9d:11:db:02:82: d7:8c:70:c9:d2:17:7e:8f:c6:92:f3:90:70:82:5c:d9:62:12: 49:a3:2f:f1:85:c7:14:dc:05:9d:25:a4:a8:a5:88:3d:a3:9d: 0d:26:ce:8e:dc:47:7f:d4:21:e7:e4:e8:f4:99:bd:16:71:55: 45:bc:78:12:a3:fe:32:b2:d8:a4:1b:a6:56:6a:24:b3:cf:9c: 2b:eb:68:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzgyOTcxMTAvBgNVBAUTKDlFMUJBMjMyNzM3QTNEMDBEN0ZBQTBCNERDMzgzNEQ5 QUFGMDZERjgwHhcNMjQxMTIyMjIyMjI2WhcNMjQxMTI5MjIyMjI2WjAYMRYwFAYD VQQDEw02NzQxMDQyMi00NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTous3SFdbFV1CW2FDH/vIuNEf1FlaWNbgkwJTEeTSGpq87RxXnhIJfKb++C D/CgOfrlAx5PPSa1GBpJELCn+GOIr7ZbVx6afKcnF4ybs2za+is670GEA1OZHqBQ AXKeOblt7XRQ1IDCKbqHtRqalIeoV5fyLD4AswUR6vCGldsOiDUVGjg1AzZDFd1J L1nACla28UqBwSWai8olXcCENMOiMNkScZaD+5WtOo8rOlCS9EgFGY2dcEyZkAV7 25UfimoZ+tdpNq2hcynvQ0NP3ytmaIQIgHz0iAWmlfCCkCXH3SUCEyGz4kIm33qe GorIEIpoJMkdw/4fpVp3586ssQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqjXLHy /logeqRb0amHKigI3P4tMB8GA1UdIwQYMBaAFJ4bojJzej0A1/qgtNw4NNmq8G34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODI5Ny80QjFGNzQ4NDg3 QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBRRFgtcUMwM0RnMDJhcndi ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odWlNbk42UFFEWC1xQzAzRGcwMmFyd2JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODI5Ny80QjFGNzQ4NDg3QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBR RFgtcUMwM0RnMDJhcndiZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZLARzVsFJ9izr6Kjw3QmtvoRYRg8VCSUGLKlMVEKWoqClEpHo+w5p mRzoys+26bfHTq4rMC+5JBpvvCaTHciH/qETg+udrpM9G19mtEFngbmDZdGxbREf gLtIsiR6r0PqJTENhOY2TuUQiJRWJ5ceitY5ZFJGJWCugRFM08mv2r9wR4PEfhSQ VpJkaSIzaKjLBRSh7Ddd+uF34dT+H0yESR0KQIoC515ziFUGF3ahnRHbAoLXjHDJ 0hd+j8aS85BwglzZYhJJoy/xhccU3AWdJaSopYg9o50NJs6O3Ed/1CHn5Oj0mb0W cVVFvHgSo/4ystikG6ZWaiSzz5wr62jy -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org