$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: nL/eW31Qxcs6/0oTnHl+SGiqVSWj+XqzA0mA8nB1Y7s= Subject key identifier: 49:5F:B6:0C:05:3F:A0:DC:76:5E:AD:FA:CF:93:22:67:E7:4C:6C:83 Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 014C Signing time: Sat 23 Nov 2024 02:31:08 +0000 Manifest this update: Sat 23 Nov 2024 02:31:08 +0000 Manifest next update: Sat 30 Nov 2024 02:31:08 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: LuxrWSznBolhzuJV7bGKcO+hylP0e9fl9Lgs0vs7ds0=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: XONGVvjvwqUG2k0rcMxU+8QUhjI2+qT2DM4JudN4zmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Nov 23 02:31:08 2024 GMT Not After : Nov 30 02:31:08 2024 GMT Subject: CN=67413e6c-29bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:41:87:9b:9a:ca:56:1d:ac:ec:d6:3c:29: ea:26:e9:8a:11:30:da:d0:f4:3e:aa:2c:e8:19:16: 18:6b:cb:73:71:e0:a8:c5:58:99:09:a9:29:26:bc: c6:63:b3:5a:99:54:3f:97:45:35:67:e0:b2:25:e9: d0:2c:72:55:d8:bf:01:b3:e2:1b:7c:89:ef:b2:bb: 36:89:90:9a:ff:7c:75:59:ab:0e:c0:35:69:5e:8d: 42:0d:cd:32:bb:85:7c:48:10:12:c6:55:df:5a:99: 29:64:f0:b7:27:a5:ad:b1:19:87:04:c8:72:ca:bf: 0e:9f:1d:e0:d3:f8:8d:0c:22:31:73:ab:c6:22:58: 6b:fe:39:54:cf:a1:54:ef:c0:d6:3b:81:26:ec:04: da:a7:96:a7:1b:b2:5d:67:f0:2f:97:07:08:98:20: eb:56:43:13:1a:82:39:56:fb:db:4c:1f:bf:48:6d: d3:48:43:20:c0:2a:d1:85:a9:07:a1:d3:0b:ac:bf: bb:95:4c:ed:26:3e:23:93:45:0d:b9:e4:67:e5:0c: c4:53:09:cb:62:42:0f:49:0e:f5:2f:c4:8b:40:0d: 7a:ef:f4:34:31:2f:32:f9:b9:2d:af:53:78:52:57: 4b:79:91:82:e4:ff:33:1f:11:13:96:ee:87:bd:b0: 03:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5F:B6:0C:05:3F:A0:DC:76:5E:AD:FA:CF:93:22:67:E7:4C:6C:83 X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:de:9f:05:db:4d:a9:38:30:d2:fe:f6:c4:f2:d5:25:e5:19: a9:a2:33:5e:aa:19:33:bf:2d:40:5d:f7:a0:d9:06:96:28:33: af:aa:41:54:4b:65:05:05:d5:4f:ab:44:73:7a:ff:01:ea:d8: d1:4b:5c:7f:90:ca:0d:e4:9e:e1:45:49:01:72:7f:ce:44:3d: f1:6a:4b:46:3d:b6:4c:ff:c2:d8:1a:d0:57:70:1c:fe:aa:f5: 0e:8f:f9:b3:0e:fc:dc:0f:22:d7:43:34:df:9a:bb:64:ee:9e: a0:6e:f7:63:92:ed:1d:95:0c:2b:e6:af:dc:b0:ae:ed:bd:73: fb:fc:f8:f8:95:12:cc:15:3d:57:ec:63:5e:02:3d:21:93:10: 57:ad:2e:8e:b0:f5:77:28:49:6a:20:3e:51:2e:d4:86:50:b8: 76:fa:b3:c8:b6:1f:45:61:02:7a:33:df:77:8b:95:9a:3f:0f: 68:07:77:a2:56:ee:18:83:71:2f:33:f8:7f:a1:ad:03:31:7d: 0f:90:53:24:21:65:cd:c5:1e:c3:d7:50:43:c6:78:63:c9:ad: df:75:0f:48:84:eb:19:bf:87:b3:31:01:cb:7c:56:05:ae:e0: 87:ed:e3:03:1d:9c:71:11:e8:66:05:f2:14:9a:aa:78:90:ef: dd:cd:d8:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjQxMTIzMDIzMTA4WhcNMjQxMTMwMDIzMTA4WjAYMRYwFAYD VQQDEw02NzQxM2U2Yy0yOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HtBh5uaylYdrOzWPCnqJumKETDa0PQ+qizoGRYYa8tzceCoxViZCakpJrzG Y7NamVQ/l0U1Z+CyJenQLHJV2L8Bs+IbfInvsrs2iZCa/3x1WasOwDVpXo1CDc0y u4V8SBASxlXfWpkpZPC3J6WtsRmHBMhyyr8Onx3g0/iNDCIxc6vGIlhr/jlUz6FU 78DWO4Em7ATap5anG7JdZ/AvlwcImCDrVkMTGoI5VvvbTB+/SG3TSEMgwCrRhakH odMLrL+7lUztJj4jk0UNueRn5QzEUwnLYkIPSQ71L8SLQA167/Q0MS8y+bktr1N4 UldLeZGC5P8zHxETlu6HvbADgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElftgwF P6Dcdl6t+s+TImfnTGyDMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv3p8F202pODDS/vbE8tUl5RmpojNeqhkzvy1AXfeg2QaWKDOvqkFU S2UFBdVPq0Rzev8B6tjRS1x/kMoN5J7hRUkBcn/ORD3xaktGPbZM/8LYGtBXcBz+ qvUOj/mzDvzcDyLXQzTfmrtk7p6gbvdjku0dlQwr5q/csK7tvXP7/Pj4lRLMFT1X 7GNeAj0hkxBXrS6OsPV3KElqID5RLtSGULh2+rPIth9FYQJ6M993i5WaPw9oB3ei Vu4Yg3EvM/h/oa0DMX0PkFMkIWXNxR7D11BDxnhjya3fdQ9IhOsZv4ezMQHLfFYF ruCH7eMDHZxxEehmBfIUmqp4kO/dzdgj -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org