$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: 9sVaWl+AakGpEJEmi+7Os0ILp0/ikO7stdJ2VHfF3b4= Subject key identifier: D1:A1:AF:79:97:D4:F8:21:CD:B6:E1:18:02:35:E2:EF:2E:7C:BF:40 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 01A1 Signing time: Sat 23 Nov 2024 01:55:21 +0000 Manifest this update: Sat 23 Nov 2024 01:55:20 +0000 Manifest next update: Sat 30 Nov 2024 01:55:20 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: iTLGJx2G/JGJpctQd6a+VRlgkbwpaaO6CMHzhASBsd4=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 6f4mwYSjUSUujqQ+GQ2FcpkaNcT4+yFJky2zL1B9jBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Nov 23 01:55:20 2024 GMT Not After : Nov 30 01:55:20 2024 GMT Subject: CN=67413609-6641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:aa:97:19:23:84:d4:7c:17:0c:e8:0c:6a: 24:77:0e:18:39:00:d8:11:63:e9:37:dc:14:2e:c4: 36:2b:a4:0c:f1:97:ea:ee:88:8d:64:f6:a7:38:13: 00:43:09:fe:c9:45:c7:11:94:1e:a1:e2:85:c4:cc: ce:17:31:6a:8d:4f:b8:6c:d9:85:7c:e3:73:f1:0a: c3:2b:1c:f5:04:38:00:bb:ba:6e:44:f7:52:e4:39: d8:0d:b0:76:b7:51:a7:f4:70:9c:cc:13:80:a1:42: 49:82:03:9b:d2:a5:ae:eb:a3:47:a2:87:76:a4:cd: 4c:e6:2c:43:bc:af:ef:b0:35:8b:15:e8:a4:ef:20: 90:65:b5:e7:45:96:df:1c:37:63:c8:bc:14:a5:5a: b0:e1:cc:a4:9b:7a:2a:18:52:67:ee:c7:66:e5:7a: ff:b5:23:d8:af:df:29:f8:9c:ab:17:48:c9:b5:01: e8:ef:28:5d:65:03:66:4e:70:e2:d2:8c:e3:d9:40: 9b:e7:14:fb:31:b9:3f:35:d8:cb:39:4a:45:e5:c9: c7:13:73:c2:90:97:70:5c:9a:06:61:53:1b:48:40: 7a:4d:4b:be:08:9a:91:b0:e1:4c:85:7e:5b:80:48: 30:44:0d:39:ce:bf:5e:7f:ba:b4:d9:ab:26:65:54: 43:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A1:AF:79:97:D4:F8:21:CD:B6:E1:18:02:35:E2:EF:2E:7C:BF:40 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:47:47:39:42:15:c8:c5:3a:ae:0e:3e:ba:a5:04:5f:6e:8f: da:a7:fc:09:71:4e:2f:81:de:4d:6d:80:81:df:60:0c:3e:bf: bd:ae:ca:a8:e1:84:44:6c:9c:a6:b4:a0:ae:44:34:e0:69:99: 47:c0:bb:80:30:4a:67:bc:54:89:ca:17:db:19:e5:e5:c4:5b: ee:de:1c:6c:72:48:94:b0:6b:7d:3f:b7:b2:40:67:8f:68:22: 33:59:b3:75:08:02:91:ec:d3:5a:57:00:f8:81:48:a0:7e:ab: 3c:f8:18:a9:ab:32:b9:96:a5:eb:e4:74:2b:33:32:ae:c6:74: af:55:a1:63:70:a1:53:ac:b0:a5:4c:62:ab:99:29:0c:5f:92: 36:ca:13:05:44:20:07:7a:17:2a:83:6a:1e:7e:6d:87:96:ef: c7:71:f5:67:bf:68:b8:28:78:df:73:1a:41:7e:bf:42:33:3f: d9:23:14:04:6e:28:4c:75:3f:0e:e0:d7:9d:61:f3:dc:32:84: 97:d8:37:ce:af:fa:bc:2e:c7:0b:db:1b:1b:f1:89:6d:e9:63: a1:ba:a8:4f:01:f2:02:ea:20:83:2c:16:f6:a2:d1:12:6a:26: 68:86:40:ad:7e:99:b4:cc:b6:1c:2d:3a:eb:87:8c:56:d5:45: 3d:08:0a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjQxMTIzMDE1NTIwWhcNMjQxMTMwMDE1NTIwWjAYMRYwFAYD VQQDEw02NzQxMzYwOS02NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BaqlxkjhNR8FwzoDGokdw4YOQDYEWPpN9wULsQ2K6QM8Zfq7oiNZPanOBMA Qwn+yUXHEZQeoeKFxMzOFzFqjU+4bNmFfONz8QrDKxz1BDgAu7puRPdS5DnYDbB2 t1Gn9HCczBOAoUJJggOb0qWu66NHood2pM1M5ixDvK/vsDWLFeik7yCQZbXnRZbf HDdjyLwUpVqw4cykm3oqGFJn7sdm5Xr/tSPYr98p+JyrF0jJtQHo7yhdZQNmTnDi 0ozj2UCb5xT7Mbk/NdjLOUpF5cnHE3PCkJdwXJoGYVMbSEB6TUu+CJqRsOFMhX5b gEgwRA05zr9ef7q02asmZVRDLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGhr3mX 1PghzbbhGAI14u8ufL9AMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5R0c5QhXIxTquDj66pQRfbo/ap/wJcU4vgd5NbYCB32AMPr+9rsqo 4YREbJymtKCuRDTgaZlHwLuAMEpnvFSJyhfbGeXlxFvu3hxsckiUsGt9P7eyQGeP aCIzWbN1CAKR7NNaVwD4gUigfqs8+BipqzK5lqXr5HQrMzKuxnSvVaFjcKFTrLCl TGKrmSkMX5I2yhMFRCAHehcqg2oefm2Hlu/HcfVnv2i4KHjfcxpBfr9CMz/ZIxQE bihMdT8O4NedYfPcMoSX2DfOr/q8LscL2xsb8Ylt6WOhuqhPAfIC6iCDLBb2otES aiZohkCtfpm0zLYcLTrrh4xW1UU9CAp5 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org