$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: N0dTNmawC/ZmAGIXQYQs1gQ12R0VCmP2E4wCcxpmEzY= Subject key identifier: 68:72:EB:AE:36:87:43:A2:92:A3:42:12:68:19:4C:3E:48:63:E0:49 Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 042D Signing time: Fri 22 Nov 2024 23:53:17 +0000 Manifest this update: Fri 22 Nov 2024 23:53:16 +0000 Manifest next update: Fri 29 Nov 2024 23:53:16 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: 9TyerALoWDlSk+vuDziekIGJ46pKBWU8fnMmfCaS9gQ=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: Sa14PRGt0bBOrLuIs7j8Gc0qLkwHSO6EtTYwSlnujqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: Nov 22 23:53:16 2024 GMT Not After : Nov 29 23:53:16 2024 GMT Subject: CN=6741196d-2a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:01:28:c3:c5:a5:ac:6a:49:a7:12:18:44:07: 84:86:f8:f3:2f:01:3a:cf:7e:2b:8e:33:af:77:8b: 21:5d:4f:e5:78:7c:1f:9f:9c:c2:cd:be:14:bb:95: 54:4b:1d:65:c2:34:83:bf:7d:c3:6a:9a:e3:34:a5: f4:0e:80:89:8c:30:69:6e:0d:e4:e7:8d:67:0e:87: ed:a4:d4:9e:43:d9:5a:cc:ab:77:83:26:47:bd:32: c6:36:47:30:5b:2f:8d:30:5d:fd:95:99:46:f7:9f: 6b:b2:be:50:fb:51:48:ed:3d:07:dc:39:e6:99:94: fb:48:3e:84:cc:ee:36:c0:40:5d:22:4a:00:d6:66: 69:a6:06:06:6f:c8:e2:45:0e:ff:66:e1:51:60:6f: 43:41:36:e8:f8:40:bf:c1:7e:d8:6c:92:e8:af:f7: 73:30:f0:ce:7b:5c:74:21:3e:40:e9:42:93:04:6f: 8a:b5:71:65:30:2f:c4:62:84:9e:8f:83:d3:1d:5e: 72:7a:49:36:5a:75:32:da:38:74:05:ce:0d:7f:68: 5c:79:64:b5:f7:d9:bd:60:f5:c8:93:b4:9a:70:e0: d1:76:30:c6:37:cf:57:89:af:3b:66:fd:6f:69:d2: 33:03:c5:f1:2b:94:47:11:60:8d:61:ad:e4:ed:57: 54:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:72:EB:AE:36:87:43:A2:92:A3:42:12:68:19:4C:3E:48:63:E0:49 X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:87:93:fd:e0:27:6d:b1:ef:34:53:61:ea:0e:92:a8:b0:dc: 56:0e:1c:ac:f9:da:79:7b:aa:c3:7c:bb:98:60:37:f3:d7:86: 17:ea:ff:d4:d6:0b:db:21:8f:99:d6:a8:ed:d5:e7:40:64:9d: 2a:d6:6e:03:31:c4:a1:47:c2:3c:be:5f:9d:69:90:1d:fd:73: d6:35:52:36:a6:88:1d:52:3f:2a:69:2f:1b:0b:67:74:b9:73: 3f:7a:0d:00:2d:01:75:22:02:f8:71:57:6b:b4:c3:57:a2:56: 2e:fa:f7:4b:e0:09:90:3b:bf:31:2d:ea:da:d5:4e:1d:16:33: 1d:6f:e4:7d:63:0b:8a:9d:ed:96:d2:82:a6:11:71:2e:61:82: d5:10:db:0b:14:f9:76:4d:99:eb:d1:cf:9e:27:95:a4:c0:56: e9:42:1b:7e:56:de:a6:75:4d:36:24:0e:5b:c8:f2:1e:cb:1a: d9:ef:25:cb:b5:a8:89:bd:ad:97:ee:65:5d:94:1c:06:b6:84: 1a:47:f9:7f:d5:91:c5:be:af:e3:47:a0:31:9e:e4:ab:75:fd: 81:d7:4a:31:18:e8:19:d3:2c:e3:3a:08:97:57:3f:58:62:8b: 46:a8:a4:e6:6e:3a:4c:69:ac:48:47:0a:6c:dc:74:71:55:79: b5:6c:f3:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjQxMTIyMjM1MzE2WhcNMjQxMTI5MjM1MzE2WjAYMRYwFAYD VQQDEw02NzQxMTk2ZC0yYTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQEow8WlrGpJpxIYRAeEhvjzLwE6z34rjjOvd4shXU/leHwfn5zCzb4Uu5VU Sx1lwjSDv33DaprjNKX0DoCJjDBpbg3k541nDoftpNSeQ9lazKt3gyZHvTLGNkcw Wy+NMF39lZlG959rsr5Q+1FI7T0H3DnmmZT7SD6EzO42wEBdIkoA1mZppgYGb8ji RQ7/ZuFRYG9DQTbo+EC/wX7YbJLor/dzMPDOe1x0IT5A6UKTBG+KtXFlMC/EYoSe j4PTHV5yekk2WnUy2jh0Bc4Nf2hceWS199m9YPXIk7SacODRdjDGN89Xia87Zv1v adIzA8XxK5RHEWCNYa3k7VdUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhy6642 h0OikqNCEmgZTD5IY+BJMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBih5P94Cdtse80U2HqDpKosNxWDhys+dp5e6rDfLuYYDfz14YX6v/U 1gvbIY+Z1qjt1edAZJ0q1m4DMcShR8I8vl+daZAd/XPWNVI2pogdUj8qaS8bC2d0 uXM/eg0ALQF1IgL4cVdrtMNXolYu+vdL4AmQO78xLera1U4dFjMdb+R9YwuKne2W 0oKmEXEuYYLVENsLFPl2TZnr0c+eJ5WkwFbpQht+Vt6mdU02JA5byPIeyxrZ7yXL taiJva2X7mVdlBwGtoQaR/l/1ZHFvq/jR6AxnuSrdf2B10oxGOgZ0yzjOgiXVz9Y YotGqKTmbjpMaaxIRwps3HRxVXm1bPPd -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org