$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: 14HsJfGlV5Z85J/mEbZ0e4AYkI7PI/uOY4UcK2DfwhM= Subject key identifier: 13:8D:D0:93:72:BC:D0:33:1A:3B:7D:31:B4:E5:7C:12:70:92:27:7F Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 41 Signing time: Sun 15 Sep 2024 09:50:24 +0000 Manifest this update: Sun 15 Sep 2024 09:50:23 +0000 Manifest next update: Sun 22 Sep 2024 09:50:23 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: BGOg3wAK66sTzz0P2WNJJER0TRWRJ+fooFN+89GmMDs=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: 04UnpmnSMr4KxT7I14Z6Z4RlxSd1PflOoSJyZd1LDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Sep 15 09:50:23 2024 GMT Not After : Sep 22 09:50:23 2024 GMT Subject: CN=66e6ade0-00d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:9d:b5:3c:bc:9b:72:e2:af:cc:e5:30:50: 3e:c5:98:aa:72:4b:d7:a8:b0:aa:9e:56:ad:ca:3e: 74:b2:51:64:45:ab:37:7e:32:17:1a:af:2a:f4:93: e2:be:e5:55:d7:f4:0a:70:0f:79:7e:fc:ab:aa:e9: 30:3b:ef:d0:22:c3:34:23:3f:28:9c:fe:78:25:e1: 40:4d:10:29:ab:03:c0:87:91:1b:f5:8e:5d:6a:ef: 44:04:44:46:bd:65:46:e8:a5:64:1b:53:6f:97:1e: ea:84:ad:e6:c5:2d:50:9c:a3:16:71:03:7c:6b:b0: 18:e3:e8:63:66:e2:89:f0:dc:7d:f4:de:a0:55:86: d1:9d:5e:c3:4e:fa:a9:6a:e4:72:43:80:96:31:dc: 8b:d3:07:4f:e5:c5:1d:c1:a1:62:ac:d2:29:fd:9d: 77:93:03:a4:c7:9d:0b:31:44:f2:e4:65:95:3d:06: 60:2f:a3:c2:94:1a:50:e1:89:f6:ef:ca:32:6d:d3: 1f:a8:4a:26:1f:93:3e:43:c1:39:61:bc:41:21:59: ac:45:4b:7e:14:13:be:e1:54:e0:ab:f6:08:b8:09: 00:3d:d6:a2:82:d2:fa:2a:10:4f:4b:16:34:ce:e2: 7b:33:8b:5f:ba:54:95:e0:3f:a4:c9:ae:35:78:e7: 3e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8D:D0:93:72:BC:D0:33:1A:3B:7D:31:B4:E5:7C:12:70:92:27:7F X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:70:59:08:8c:05:cf:49:cb:46:3a:22:fb:df:6b:3f:50:ff: 1f:81:61:bd:72:b6:ec:6f:86:0f:9f:b6:8b:e7:68:b1:2d:93: 17:98:9e:62:e1:4f:a5:11:ec:2d:59:a3:fe:26:48:0a:ca:7d: 2d:6c:18:c7:33:d8:44:ae:ec:42:18:0f:11:a1:f7:e2:51:ed: cd:f1:a4:e0:af:e8:39:91:51:72:f6:73:d1:a4:85:3a:e5:a7: f2:1f:8b:2b:25:8c:bb:64:82:28:29:17:e8:f1:a7:6d:24:b6: 1e:2b:24:db:89:34:00:7e:fc:07:5d:52:bb:6f:db:ba:04:9c: c5:84:c4:db:a7:02:71:85:8a:23:e6:69:42:56:89:50:27:62: 8a:e6:69:f2:fb:ed:99:bc:5e:85:3f:88:2b:1d:6a:0c:26:d5: 30:eb:da:67:29:9e:b1:87:35:9d:05:24:96:37:a6:59:93:52: 04:a9:ba:ef:af:a9:fe:12:9d:6f:87:b0:0e:94:7b:0c:a2:ea: b9:fe:a1:6a:f4:9e:e1:5a:70:5e:ab:ce:00:6f:90:22:3e:ff: cb:eb:5e:aa:89:49:45:cc:8b:bf:d5:a2:01:aa:69:61:32:ee: e1:64:44:6c:36:c2:96:28:74:4f:98:f9:10:90:dd:fe:88:de: f5:48:76:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MUUxOTExMC8GA1UEBRMoMzcyMDgxRjdEQkUyRUYxMUE0NDExQkQ0RTZBRjg2RjMy Njk4Q0FGQTAeFw0yNDA5MTUwOTUwMjNaFw0yNDA5MjIwOTUwMjNaMBgxFjAUBgNV BAMTDTY2ZTZhZGUwLTAwZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmAZ21PLybcuKvzOUwUD7FmKpyS9eosKqeVq3KPnSyUWRFqzd+Mhcaryr0k+K+ 5VXX9ApwD3l+/Kuq6TA779AiwzQjPyic/ngl4UBNECmrA8CHkRv1jl1q70QEREa9 ZUbopWQbU2+XHuqErebFLVCcoxZxA3xrsBjj6GNm4onw3H303qBVhtGdXsNO+qlq 5HJDgJYx3IvTB0/lxR3BoWKs0in9nXeTA6THnQsxRPLkZZU9BmAvo8KUGlDhifbv yjJt0x+oSiYfkz5DwTlhvEEhWaxFS34UE77hVOCr9gi4CQA91qKC0voqEE9LFjTO 4nszi1+6VJXgP6TJrjV45z6xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE43Qk3K8 0DMaO30xtOV8EnCSJ38wHwYDVR0jBBgwFoAUNyCB99vi7xGkQRvU5q+G8yaYyvow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxRTE5LzEwQzdGMEFBMTQw RjExRUY4QTRBNzAxNkM0RjlBRTAyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTnlDQjk5dmk3eEdrUVJ2VTVxLUc4eWFZeXZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx RTE5LzEwQzdGMEFBMTQwRjExRUY4QTRBNzAxNkM0RjlBRTAyL055Q0I5OXZpN3hH a1FSdlU1cS1HOHlhWXl2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJtwWQiMBc9Jy0Y6Ivvfaz9Q/x+BYb1ytuxvhg+ftovnaLEtkxeYnmLh T6UR7C1Zo/4mSArKfS1sGMcz2ESu7EIYDxGh9+JR7c3xpOCv6DmRUXL2c9GkhTrl p/IfiysljLtkgigpF+jxp20kth4rJNuJNAB+/AddUrtv27oEnMWExNunAnGFiiPm aUJWiVAnYormafL77Zm8XoU/iCsdagwm1TDr2mcpnrGHNZ0FJJY3plmTUgSpuu+v qf4SnW+HsA6Uewyi6rn+oWr0nuFacF6rzgBvkCI+/8vrXqqJSUXMi7/VogGqaWEy 7uFkRGw2wpYodE+Y+RCQ3f6I3vVIdjg= -----END CERTIFICATE-----Generated at Sun Sep 15 10:46:22 2024 by rpki-client on console-ams.rpki-client.org