$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: Iz/nvGIm82EyCCobY5LmCAdeEar8G/1fsKdf12maV5s= Subject key identifier: 4D:7A:A6:3A:95:94:D7:02:8E:9E:02:27:4B:52:6C:1F:30:B9:12:C3 Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 020B Signing time: Sat 23 Nov 2024 01:34:52 +0000 Manifest this update: Sat 23 Nov 2024 01:34:51 +0000 Manifest next update: Sat 30 Nov 2024 01:34:51 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: v2X7xuL8+OUMvGVCgWUNSB8R/MmIqrk7+OqwKcTrgmQ=) 2: B19EF9D8AA4211EE844BD455C4F9AE02.roa (hash: Q6VoHbMlLAd6inTDwJh61QqIQS2XKIz150gLyNxUsl0=) 3: C54D0330AA4211EE9EF2DA5CC4F9AE02.roa (hash: ZmLa/78CcUQ9/C6iqNrx5PqerylfOcygov/K/Ku0xhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: Nov 23 01:34:51 2024 GMT Not After : Nov 30 01:34:51 2024 GMT Subject: CN=6741313b-4dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:21:02:fd:c9:31:4d:16:4f:0e:24:fc:c6:fd: ab:d7:34:57:23:93:f3:c9:7c:2f:1e:1b:9a:1a:e9: 0e:69:8e:ee:35:dd:41:84:a0:fc:d7:6f:c9:3b:69: f7:82:de:3e:10:2d:20:bc:41:a1:ad:4a:23:3f:53: a0:55:22:9b:3c:e3:a8:49:4f:65:a8:98:e2:ae:1a: 22:2b:1f:69:ae:73:82:60:22:e6:04:bf:2f:55:bb: 33:b9:79:14:3d:9d:73:d8:5f:85:76:bb:67:68:26: e6:42:14:14:d3:c4:36:c4:14:52:aa:d7:fe:2f:32: 38:31:b5:6c:3f:48:dd:c5:23:28:e3:25:59:9f:1c: c4:11:3f:90:1d:29:33:3d:1d:00:dd:3e:ae:39:39: dd:8a:22:98:bd:c2:8a:e6:f4:c8:b0:a3:88:51:f7: f6:18:bc:e0:f9:d8:71:c7:90:1a:99:2c:54:c9:4e: b8:a8:57:19:bd:8b:67:c1:97:f0:ca:9d:bf:51:2d: 47:95:1b:dd:06:11:c9:2b:3d:9f:9c:16:0a:a8:04: 31:83:26:cf:44:44:1c:5f:5f:ec:52:a6:54:ae:0a: da:d5:cc:42:4a:90:58:cf:60:c4:2c:19:62:14:33: a4:7c:50:eb:30:a9:67:26:1e:7d:ba:79:08:ba:50: d0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7A:A6:3A:95:94:D7:02:8E:9E:02:27:4B:52:6C:1F:30:B9:12:C3 X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:39:24:61:01:d7:41:f1:c4:e6:7b:19:86:51:17:51:33:33: 8e:ba:49:e0:2a:64:7a:6b:fd:ea:e7:bc:a0:a6:f5:e0:6c:a2: fd:62:5f:c5:af:ee:2c:22:0e:71:fb:39:a4:41:99:65:ab:23: d6:86:83:c1:18:cd:3d:4d:c2:8c:7e:60:e0:6c:ba:23:af:5d: 7d:f4:9e:d7:f0:2d:6b:db:d1:ec:14:68:e2:0e:81:7a:bd:fd: 41:29:c6:e3:bc:26:45:d3:4a:79:45:6a:b6:f9:43:f8:a2:7d: 56:de:cd:a8:03:96:be:00:67:52:f0:00:c7:22:7e:98:10:9c: 97:34:de:e7:84:99:b9:2c:5a:b0:54:b5:60:d5:7c:56:b7:86: d5:c1:a1:19:b6:51:b6:58:ab:07:74:6c:e6:c6:55:e7:2f:d0: 90:b1:3a:ff:12:5b:dd:d0:4c:d3:f0:74:49:a6:48:69:cd:18: 95:ce:2d:18:8e:00:d1:aa:51:2f:df:af:f2:c5:0c:d3:6a:8f: 76:a2:67:9c:f8:05:31:e4:47:71:78:c7:fe:41:fc:29:e1:b1: 1b:de:c2:0f:5d:fa:5c:58:30:1e:a6:dc:a1:7a:1b:65:d2:26: ca:c2:fe:19:de:d2:e9:d0:47:3d:7a:0f:ea:d4:02:ea:66:1c: 97:a0:fa:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjQxMTIzMDEzNDUxWhcNMjQxMTMwMDEzNDUxWjAYMRYwFAYD VQQDEw02NzQxMzEzYi00ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CEC/ckxTRZPDiT8xv2r1zRXI5PzyXwvHhuaGukOaY7uNd1BhKD812/JO2n3 gt4+EC0gvEGhrUojP1OgVSKbPOOoSU9lqJjirhoiKx9prnOCYCLmBL8vVbszuXkU PZ1z2F+FdrtnaCbmQhQU08Q2xBRSqtf+LzI4MbVsP0jdxSMo4yVZnxzEET+QHSkz PR0A3T6uOTndiiKYvcKK5vTIsKOIUff2GLzg+dhxx5AamSxUyU64qFcZvYtnwZfw yp2/US1HlRvdBhHJKz2fnBYKqAQxgybPREQcX1/sUqZUrgra1cxCSpBYz2DELBli FDOkfFDrMKlnJh59unkIulDQuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE16pjqV lNcCjp4CJ0tSbB8wuRLDMB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0OSRhAddB8cTmexmGURdRMzOOukngKmR6a/3q57ygpvXgbKL9Yl/F r+4sIg5x+zmkQZllqyPWhoPBGM09TcKMfmDgbLojr1199J7X8C1r29HsFGjiDoF6 vf1BKcbjvCZF00p5RWq2+UP4on1W3s2oA5a+AGdS8ADHIn6YEJyXNN7nhJm5LFqw VLVg1XxWt4bVwaEZtlG2WKsHdGzmxlXnL9CQsTr/Elvd0EzT8HRJpkhpzRiVzi0Y jgDRqlEv36/yxQzTao92omec+AUx5EdxeMf+Qfwp4bEb3sIPXfpcWDAeptyhehtl 0ibKwv4Z3tLp0Ec9eg/q1ALqZhyXoPry -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org