$ rpki-client -vvf rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft File: N-A1JLWEfb6tAP43jEar0MpwRfg.mft (raw, json) Hash identifier: EDZfc8j0qLE0pjbgBTcnEN3PkYlhxXmVqwOU0FQMEEU= Subject key identifier: EF:20:D1:AD:C4:18:C8:06:C2:C2:7E:71:09:3B:14:61:8B:58:7F:94 Authority key identifier: 37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 Certificate issuer: /CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft Manifest number: 0342 Signing time: Sat 23 Nov 2024 00:37:26 +0000 Manifest this update: Sat 23 Nov 2024 00:37:26 +0000 Manifest next update: Sat 30 Nov 2024 00:37:26 +0000 Files and hashes: 1: N-A1JLWEfb6tAP43jEar0MpwRfg.crl (hash: XyUrh5U5bYCvczcpliX14lV9TlGnUsCi1B5946EyQUM=) 2: 46A569387DA911EFAC4E642AC4F9AE02.roa (hash: f8XNdnN9MpGjh5uhvA20BgKfLLbWC1Eb3g7qFqX+uVY=) 3: B0A47CAE7DA711EFB7190E26C4F9AE02.roa (hash: MnBCnb88Lb1soYhMr2JBZDZOHnyxIxINjkfdJ2fBlW0=) 4: 99C173847DA711EFBC48DB25C4F9AE02.roa (hash: BrxJSBI7Q6Tw0excD7qGChxBI2yuS7vr/0+QLL4MRIg=) 5: F39CE41C7C3811EFBF44AF4FC4F9AE02.roa (hash: qYKHA79o/QNNLBRngvTLprJN4A1dHBhKA8ix5QbqNOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Validity Not Before: Nov 23 00:37:26 2024 GMT Not After : Nov 30 00:37:26 2024 GMT Subject: CN=674123c6-11d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:24:c7:dd:15:f7:87:25:1b:15:1d:f3:5d:dc: 0b:c5:94:e9:2f:7d:05:87:21:24:1d:e7:c6:57:f7: 32:0b:b9:7c:0d:a5:f8:5e:45:27:c5:76:4b:41:c3: 22:97:ca:ed:ff:90:95:d9:a6:ac:43:3e:c3:a0:3d: b9:df:ae:4b:59:37:7d:71:e6:22:3a:2a:46:95:69: 3a:a2:2b:be:0d:bb:6e:e7:4c:8b:8e:98:5b:26:65: 18:dd:f7:c9:f8:0d:9e:68:7a:39:a1:01:74:53:63: 2b:6f:6a:ef:6d:66:36:a7:78:db:4f:da:6b:5f:23: 43:74:0d:6f:f3:97:4a:5f:88:c1:c1:66:4b:0c:9b: d3:bc:34:b9:69:8c:12:1e:f4:c8:d6:33:9b:ba:60: 6b:23:02:d6:00:7f:d6:74:0f:12:e6:74:d4:e8:01: a0:75:c3:63:83:20:76:2e:35:61:78:44:3c:f8:ed: fd:a1:b0:c5:06:14:93:4f:33:28:5b:c6:f2:20:a1: 80:12:c3:2e:44:5f:c7:3b:2f:d8:1c:f1:4f:b6:18: 79:57:58:56:04:50:3c:8e:25:cd:53:f6:89:e4:94: e6:f3:6d:9e:8b:8d:46:9c:2d:08:58:87:ff:ec:8c: 6b:82:77:02:6d:c1:b7:2d:51:97:9a:08:09:86:da: 76:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:20:D1:AD:C4:18:C8:06:C2:C2:7E:71:09:3B:14:61:8B:58:7F:94 X509v3 Authority Key Identifier: keyid:37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b9:da:14:04:e8:ea:46:da:59:3c:6b:dd:f6:ea:e9:cc:50: 8a:f2:3d:5b:3f:5d:c3:99:57:d7:00:e3:fd:71:76:8a:b1:9b: c6:9e:4e:01:b5:3d:b6:76:72:0d:84:44:0d:36:39:92:93:36: f7:a2:83:2a:44:52:93:df:10:1e:ab:d3:c3:46:eb:70:f0:cc: 72:cd:39:f1:a9:9e:03:c4:06:a0:d4:e4:3e:ce:64:5f:9b:af: 2a:53:44:0e:2e:62:e9:d0:90:41:cb:fc:d4:88:1d:47:40:5a: 2d:2e:33:e9:af:85:6e:1d:92:25:16:d5:b2:4a:90:84:76:b5: 41:09:b1:88:0b:f4:c2:cf:0c:67:47:b4:3b:05:a0:26:b8:3a: 26:56:6c:c4:84:4d:df:d4:08:7b:69:2f:61:9b:b5:05:9a:ac: 84:53:c4:25:b5:fb:b1:a1:91:b8:b1:60:ca:fb:bc:33:31:a0: ba:96:62:b4:c9:bf:9e:5e:8b:fd:ea:48:b3:53:99:02:6f:1a: 62:71:b6:13:41:39:b3:9d:cf:3d:56:28:0a:bd:ae:de:ac:79: 59:74:bb:93:dd:fc:0e:1f:5b:0d:6d:61:15:1a:3b:e0:19:01: f2:58:24:26:d6:60:95:0c:bf:13:43:49:78:3e:bf:1f:5a:00: 2b:10:99:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5QTAxMTAvBgNVBAUTKDM3RTAzNTI0QjU4NDdEQkVBRDAwRkUzNzhDNDZBQkQw Q0E3MDQ1RjgwHhcNMjQxMTIzMDAzNzI2WhcNMjQxMTMwMDAzNzI2WjAYMRYwFAYD VQQDEw02NzQxMjNjNi0xMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCTH3RX3hyUbFR3zXdwLxZTpL30FhyEkHefGV/cyC7l8DaX4XkUnxXZLQcMi l8rt/5CV2aasQz7DoD25365LWTd9ceYiOipGlWk6oiu+Dbtu50yLjphbJmUY3ffJ +A2eaHo5oQF0U2Mrb2rvbWY2p3jbT9prXyNDdA1v85dKX4jBwWZLDJvTvDS5aYwS HvTI1jObumBrIwLWAH/WdA8S5nTU6AGgdcNjgyB2LjVheEQ8+O39obDFBhSTTzMo W8byIKGAEsMuRF/HOy/YHPFPthh5V1hWBFA8jiXNU/aJ5JTm822ei41GnC0IWIf/ 7IxrgncCbcG3LVGXmggJhtp20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8g0a3E GMgGwsJ+cQk7FGGLWH+UMB8GA1UdIwQYMBaAFDfgNSS1hH2+rQD+N4xGq9DKcEX4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTlBMC80MEVEQTExRTlB RTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZiNnRBUDQzakVhcjBNcHdS ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tQTFKTFdFZmI2dEFQNDNqRWFyME1wd1JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTlBMC80MEVEQTExRTlBRTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZi NnRBUDQzakVhcjBNcHdSZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPudoUBOjqRtpZPGvd9urpzFCK8j1bP13DmVfXAOP9cXaKsZvGnk4B tT22dnINhEQNNjmSkzb3ooMqRFKT3xAeq9PDRutw8MxyzTnxqZ4DxAag1OQ+zmRf m68qU0QOLmLp0JBBy/zUiB1HQFotLjPpr4VuHZIlFtWySpCEdrVBCbGIC/TCzwxn R7Q7BaAmuDomVmzEhE3f1Ah7aS9hm7UFmqyEU8QltfuxoZG4sWDK+7wzMaC6lmK0 yb+eXov96kizU5kCbxpicbYTQTmznc89VigKva7erHlZdLuT3fwOH1sNbWEVGjvg GQHyWCQm1mCVDL8TQ0l4Pr8fWgArEJne -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org