$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: 8PPVLJaylr7hP2mWBDm1H7Iz5SPiDNIkUyY8g6Pm0X0= Subject key identifier: 9E:92:1A:98:09:F1:A2:44:05:68:49:89:90:84:F1:7B:8F:8F:53:B4 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 64 Signing time: Sat 23 Nov 2024 04:59:08 +0000 Manifest this update: Sat 23 Nov 2024 04:59:07 +0000 Manifest next update: Sat 30 Nov 2024 04:59:07 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: /CyqavNa/LDMfSfeep1qRb6qYtAwkYXJ99JkMA1fdX8=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: 04UnpmnSMr4KxT7I14Z6Z4RlxSd1PflOoSJyZd1LDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Nov 23 04:59:07 2024 GMT Not After : Nov 30 04:59:07 2024 GMT Subject: CN=6741611c-530a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:45:ed:96:ab:94:99:5b:80:43:b1:7c:30: 0b:c0:34:60:64:5d:97:52:b5:93:f2:55:31:69:46: 0c:ca:bc:52:cf:d5:5e:c3:bf:a4:65:31:3d:0b:0b: 77:71:b7:62:38:9c:dc:56:a0:7f:a1:63:68:fd:9e: ff:5f:94:ee:5a:7d:b8:95:46:31:cf:25:fe:91:a0: 9e:91:72:8d:17:c9:a9:fc:d4:34:e3:69:fb:a0:28: 53:b5:3b:06:82:81:a4:ac:79:76:7b:6d:83:2f:94: 59:1f:1e:09:ea:45:d5:d8:37:f1:59:a6:aa:18:fb: 66:6a:b4:9e:b1:f6:dd:a4:39:a5:ba:3c:97:3d:29: 6d:b4:1d:ac:84:39:3f:bf:e3:5e:7a:f8:24:ea:b8: 60:f0:f9:31:70:d7:72:44:84:31:18:c7:eb:62:3a: 19:d8:c6:ce:ba:cd:52:d3:3d:d0:c4:b3:04:6d:f0: 70:2b:04:09:01:03:e5:9d:65:72:53:ee:7b:c1:a3: 81:46:6b:2d:f8:91:d0:d0:d6:60:ac:d0:92:0c:e0: 1d:13:6c:87:50:7a:ee:77:93:97:34:9d:22:b0:fc: ff:c1:77:28:de:7d:10:b7:5f:f7:8e:46:52:7a:a8: 59:2b:42:2f:a8:c5:02:d6:74:79:8c:db:ce:07:fe: c5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:92:1A:98:09:F1:A2:44:05:68:49:89:90:84:F1:7B:8F:8F:53:B4 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:22:76:ae:b1:39:93:88:44:90:e8:3a:cd:34:30:af:65:9e: 4f:ff:61:ad:d5:77:9a:36:cc:0f:43:f7:7a:fa:cd:10:b8:1c: 89:d5:a8:89:56:b4:42:35:ab:02:30:40:4c:9f:bb:ce:07:7e: 9e:2e:02:35:c3:9c:b8:8d:4b:11:b5:b7:4e:d1:dd:4d:59:41: c2:c2:49:6b:43:6f:6b:0e:31:c5:72:93:9b:68:5b:eb:88:fd: d2:db:96:57:7a:d2:61:bb:a0:b5:3d:b9:65:72:86:82:ef:f4: e0:da:bb:0c:a3:f0:22:fe:81:f3:fb:71:7c:59:09:ec:c1:9e: 5f:32:20:ce:95:5a:a7:12:3d:e3:38:03:6e:26:0f:7a:eb:8b: aa:dd:75:87:0a:d4:e4:75:be:84:82:fe:b5:6b:df:9c:81:13: 17:f6:87:4a:c1:8e:96:bc:99:70:01:b8:0e:99:e6:d3:06:d9: 39:fc:7a:03:eb:fb:8d:6c:67:47:d7:cc:a6:cd:aa:99:6c:fb: c5:7f:61:b3:d3:35:51:61:b2:66:4d:f2:1b:c8:a7:98:ea:7c: 49:13:9a:27:dd:5d:bc:a7:ec:cc:70:d8:11:c6:50:1c:97:bd: c0:f7:d9:6f:71:c4:fc:ad:2c:8f:53:90:72:26:2b:7a:94:5a: 4f:6f:5c:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MUUxOTExMC8GA1UEBRMoMzcyMDgxRjdEQkUyRUYxMUE0NDExQkQ0RTZBRjg2RjMy Njk4Q0FGQTAeFw0yNDExMjMwNDU5MDdaFw0yNDExMzAwNDU5MDdaMBgxFjAUBgNV BAMTDTY3NDE2MTFjLTUzMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSpUXtlquUmVuAQ7F8MAvANGBkXZdStZPyVTFpRgzKvFLP1V7Dv6RlMT0LC3dx t2I4nNxWoH+hY2j9nv9flO5afbiVRjHPJf6RoJ6Rco0Xyan81DTjafugKFO1OwaC gaSseXZ7bYMvlFkfHgnqRdXYN/FZpqoY+2ZqtJ6x9t2kOaW6PJc9KW20HayEOT+/ 4156+CTquGDw+TFw13JEhDEYx+tiOhnYxs66zVLTPdDEswRt8HArBAkBA+WdZXJT 7nvBo4FGay34kdDQ1mCs0JIM4B0TbIdQeu53k5c0nSKw/P/BdyjefRC3X/eORlJ6 qFkrQi+oxQLWdHmM284H/sUxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnpIamAnx okQFaEmJkITxe4+PU7QwHwYDVR0jBBgwFoAUNyCB99vi7xGkQRvU5q+G8yaYyvow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxRTE5LzEwQzdGMEFBMTQw RjExRUY4QTRBNzAxNkM0RjlBRTAyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTnlDQjk5dmk3eEdrUVJ2VTVxLUc4eWFZeXZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx RTE5LzEwQzdGMEFBMTQwRjExRUY4QTRBNzAxNkM0RjlBRTAyL055Q0I5OXZpN3hH a1FSdlU1cS1HOHlhWXl2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJAidq6xOZOIRJDoOs00MK9lnk//Ya3Vd5o2zA9D93r6zRC4HInVqIlW tEI1qwIwQEyfu84Hfp4uAjXDnLiNSxG1t07R3U1ZQcLCSWtDb2sOMcVyk5toW+uI /dLblld60mG7oLU9uWVyhoLv9ODauwyj8CL+gfP7cXxZCezBnl8yIM6VWqcSPeM4 A24mD3rri6rddYcK1OR1voSC/rVr35yBExf2h0rBjpa8mXABuA6Z5tMG2Tn8egPr +41sZ0fXzKbNqpls+8V/YbPTNVFhsmZN8hvIp5jqfEkTmifdXbyn7Mxw2BHGUByX vcD32W9xxPytLI9TkHImK3qUWk9vXAI= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org