$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: r1E9l0dvmJXIGB7JxUaGbsxAeplYNwxo0po3dsJLweY= Subject key identifier: E9:BA:E3:9F:85:DE:EE:60:CB:D3:50:8F:C1:EE:65:0C:19:6A:7F:08 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 366B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 3514 Signing time: Wed 20 Nov 2024 14:47:36 +0000 Manifest this update: Wed 20 Nov 2024 14:47:35 +0000 Manifest next update: Wed 27 Nov 2024 14:47:35 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: tHorrQhv/L5Q7cx7ZmG9KkTc5hmwvV1whhUnxGPuklk=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: LBNk1tfUJampIMab/HBL4IKi/kl38X1uItIjEED/pcI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: 47XFa+/O+1qqR8kJkOYUWNPtX/jddJ4oiNfmWLvRACU=) 4: 6ED98202912E11EFB357571EC4F9AE02.roa (hash: 0YkiAldVFq9RStOnEvt5eAn913EcE9/MLpaWW6415K8=) 5: 35575C68844811EAB301615FC4F9AE02.roa (hash: scAkB2YxvmpKM0vTyAyFR4YKIa6v02k7HMa7T8PXuMU=) 6: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: Yr03PVq8IWmvSQd8YplMKtRPvK8aE0RE5eBXhq1JqoE=) 7: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: 8qJxtIluB8sM+LZnkacpelPmvOz8hP9HI8PWhXk1wS0=) 8: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: 1uChfw6a7c78Tsk47WiN/3OWObxxNLMM+Pvz7qduz8c=) 9: 62F1B55EDC2B11EDB096B435C4F9AE02.roa (hash: GqOiWg5pPVhf3X3hTvW8lyS/vBT54lvlTVmRhdPhZpo=) 10: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: l6UBTddYJHs1/LWO/G11IXkxeJJ3Aag62DZxhCm7A54=) 11: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: 7uSEP+EaGOL6jhiRrZZDidMEE4Q6ZMSCeR2XEgAzR3g=) 12: 35E95924844811EAB301615FC4F9AE02.roa (hash: QffUMTUeuvtyF27iQo20k15LFogH2o21+do3RK9SDkw=) 13: 62464AACDC2B11EDB096B435C4F9AE02.roa (hash: Dnz30DAJVZekOhvq+//5DuLg0jOYzT0DGqPm+r3BNP0=) 14: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: 31E/ZBgEZp5hDhd3GcEv5U1+3VGXi8jHHKHblZde33E=) 15: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Kkanqfb0HHYlyfEyvZ64WJPtstPkb2JUboKtDpUj3Vw=) 16: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: 8b2oWDeo2NAVLwOXE4IA/dxtMM6fmKBuLK7hAntrx5c=) 17: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: hJAxgmR4Z+emMMwOy/r6GbMsFRX/U1CaozsenKNvc0Y=) 18: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: I2+kj9ESr7gvLOHQDl/+DMksQTAQFnymnLrvUXSFx3Q=) 19: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: r7v3xSqKRg362nT6+bK/58sR5Z8YroSxwlVV2Uh5tfU=) 20: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: Krb9ZcAkVTReFzizLQ3T9UA+S18Hy0Vo8CDdBjRYIGM=) 21: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: twh6qhZSVHLqsqE4ZeRMAhfEc2FEKfo/QNtTa8WFc90=) 22: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: hbcyS6DwPCtBqKVBG5WmrWNdNFB962BI6jMzmVkyHyk=) 23: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: NKaWR27X7N0yTdapOCDpWGOjKNUWONO9ba73Q3IbiMc=) 24: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: K0Np4Cl29ZUrHLxi4sReARlc3kr6lRG2EbDfgQGX3/A=) 25: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: pSsD3QiCjiwXaKzOdTSfuSM5BCqQA6q1WIOuV0AxvXw=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: /5ry63GzDrxpI6Kkb9gHRk8/jvRviawvIpgBTnsdspg=) 27: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: Svh+zqulap5hyqgsKeuAwzqAl3vJyRUhZqeALz03n0w=) 28: 61B7C08EDC2B11EDB096B435C4F9AE02.roa (hash: DqzkLxKVvK4huIuJVgp9owytPLWfNX9jgYBJjFmMTrs=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: ITrdVs65XiKT5eY7TYbNYiODzMY+u/b74/g0UqMYEiM=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: T8DpA+KoY5SlE2bbdf8haxYxrxa9m5STIimA7EMRnII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13931 (0x366b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Nov 20 14:47:35 2024 GMT Not After : Nov 27 14:47:35 2024 GMT Subject: CN=673df687-229c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:b7:59:23:e5:51:6a:e3:01:50:60:ff:c1: 33:b1:ed:7f:37:69:b8:69:40:89:fb:ce:5d:bb:ab: b4:f4:d3:32:7e:a4:9c:d1:07:af:24:f7:69:03:cc: 28:b4:a9:99:d1:c4:58:c0:a2:e1:65:f0:2a:75:a4: 98:9c:c0:44:e7:b8:10:90:e9:b1:2a:f1:3d:09:71: 74:bc:a9:22:d6:bc:ae:8c:fa:d0:db:45:41:f4:2f: 25:c1:7f:b6:db:bf:81:78:e8:47:a5:3a:32:f6:72: ba:da:d1:b8:cd:51:94:f5:39:c4:9f:b4:54:63:2a: 1e:39:9d:12:21:43:b3:fd:13:fa:0a:14:1f:6d:a0: c6:c4:79:57:de:b4:15:6e:99:e3:ed:e1:76:9e:a1: 3a:5d:0c:67:7a:f3:55:e6:b6:ff:b0:ac:55:46:bf: c2:26:b3:10:2a:42:e5:cf:94:0d:1d:e9:60:27:9d: 63:a1:ac:53:d0:96:5a:6b:af:03:4b:9d:6f:86:34: 19:a6:7d:b0:03:cc:8b:fa:5d:28:4e:92:ac:61:27: e5:3a:ec:aa:ff:bd:90:74:ab:56:c9:7f:fc:d9:c3: 2a:c4:63:6a:50:be:80:78:39:7a:51:fc:25:73:de: b3:35:f2:3d:0f:82:50:ca:81:5f:a6:8b:33:af:80: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:BA:E3:9F:85:DE:EE:60:CB:D3:50:8F:C1:EE:65:0C:19:6A:7F:08 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ff:75:6a:7a:1d:90:a1:e3:98:87:ea:32:a5:3b:93:a9:dd: 05:7a:62:16:2b:82:4c:1e:ec:e4:3e:c3:fb:7e:d0:b5:9a:a4: 99:a5:56:9f:d3:6b:23:30:60:f0:7b:3b:57:d5:27:5c:62:a6: 08:4c:de:fe:9a:8b:36:19:bb:37:69:80:73:d1:59:49:32:14: 33:21:65:46:5b:31:7b:d2:f1:fc:6a:c3:74:33:a1:cf:54:80: 56:a3:1f:ec:11:01:30:4f:8e:0b:4c:b5:73:35:81:75:18:d5: 40:c2:db:8b:45:e3:42:2e:01:a6:74:7e:5b:49:0c:c9:cf:03: 7a:4d:88:07:22:3e:83:ce:3a:b5:bf:31:3d:77:38:a6:00:d3: b1:db:65:01:81:6f:0b:de:d0:5a:de:fa:70:98:49:0c:07:97: b3:e8:9a:c1:15:86:b3:ba:20:f5:a1:aa:81:fb:aa:52:7b:e5: 62:66:7c:60:c1:32:32:12:b5:22:39:8a:d1:d3:4c:84:58:f1: 09:32:4d:1b:97:1f:c2:c5:44:1b:b9:24:7f:6b:45:00:c9:30: 3d:b1:18:fc:bc:5c:24:8c:0a:ac:b3:f6:26:a5:bc:20:60:e7: f6:fb:9a:96:b4:22:0b:89:fa:e7:ae:70:df:42:69:b2:52:57: 76:92:ce:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQxMTIwMTQ0NzM1WhcNMjQxMTI3MTQ0NzM1WjAYMRYwFAYD VQQDEw02NzNkZjY4Ny0yMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0e3WSPlUWrjAVBg/8Ezse1/N2m4aUCJ+85du6u09NMyfqSc0QevJPdpA8wo tKmZ0cRYwKLhZfAqdaSYnMBE57gQkOmxKvE9CXF0vKki1ryujPrQ20VB9C8lwX+2 27+BeOhHpToy9nK62tG4zVGU9TnEn7RUYyoeOZ0SIUOz/RP6ChQfbaDGxHlX3rQV bpnj7eF2nqE6XQxnevNV5rb/sKxVRr/CJrMQKkLlz5QNHelgJ51joaxT0JZaa68D S51vhjQZpn2wA8yL+l0oTpKsYSflOuyq/72QdKtWyX/82cMqxGNqUL6AeDl6Ufwl c96zNfI9D4JQyoFfposzr4A9MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOm645+F 3u5gy9NQj8HuZQwZan8IMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA/3Vqeh2QoeOYh+oypTuTqd0FemIWK4JMHuzkPsP7ftC1mqSZpVaf 02sjMGDweztX1SdcYqYITN7+mos2Gbs3aYBz0VlJMhQzIWVGWzF70vH8asN0M6HP VIBWox/sEQEwT44LTLVzNYF1GNVAwtuLReNCLgGmdH5bSQzJzwN6TYgHIj6Dzjq1 vzE9dzimANOx22UBgW8L3tBa3vpwmEkMB5ez6JrBFYazuiD1oaqB+6pSe+ViZnxg wTIyErUiOYrR00yEWPEJMk0blx/CxUQbuSR/a0UAyTA9sRj8vFwkjAqss/Ympbwg YOf2+5qWtCILifrnrnDfQmmyUld2ks7o -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:00 2024 by rpki-client on console-fra.rpki-client.org