$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: gCuvujU5CcUbytMSaIVq/MfgUck15mDRIwJFahCt7rw= Subject key identifier: 6C:A2:93:E2:4A:8C:69:D9:62:D2:B9:C4:BB:33:48:58:C2:33:6A:E7 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 0165 Signing time: Sat 23 Nov 2024 02:35:48 +0000 Manifest this update: Sat 23 Nov 2024 02:35:48 +0000 Manifest next update: Sat 30 Nov 2024 02:35:48 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: 3GaApF6l2mWSDOce3jAt3y5iU/iAehcylvThB+ffduI=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: Zh/Tjd/SF+RsN/kVNLHh3aj6ikiB7pm8zxWkTBX3Oxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Nov 23 02:35:48 2024 GMT Not After : Nov 30 02:35:48 2024 GMT Subject: CN=67413f84-8217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:e4:fc:63:56:a9:dc:9f:43:de:07:f5:11: e4:1d:6c:6b:f8:56:ed:f9:2e:90:df:2d:72:a1:94: 9a:ab:99:5b:a6:79:e5:11:4b:d8:25:19:84:d2:31: bd:61:ab:83:dd:68:58:e3:cb:47:b0:73:43:b0:5a: 54:c5:7e:5b:6e:ec:40:8d:f5:5a:7e:17:cb:3e:37: 6f:33:3d:ef:ff:06:7b:6e:dc:e9:54:e6:2c:3e:f9: 6f:d2:18:9e:84:77:ef:cd:e2:79:48:ee:d6:02:7c: 97:c2:34:a7:6f:df:f1:72:72:dc:04:84:31:1d:4c: 64:32:15:61:79:93:13:97:7c:0e:1d:fb:d8:cd:90: 01:f8:60:28:50:d5:0b:ec:6e:dd:fc:3d:b4:52:6c: b9:f3:ae:dd:63:ae:e0:22:80:94:7e:e8:6d:4e:21: bb:18:d2:c7:a7:8d:07:bb:20:86:63:f0:8b:df:2f: 31:46:b1:0c:d1:04:3b:62:22:1a:51:14:ed:bf:61: 53:91:be:79:04:e1:08:b3:fb:9f:14:84:f1:b4:87: 02:0f:ee:fb:f3:bf:56:91:40:2a:e2:5d:49:bc:ed: fe:17:bc:89:8b:ef:76:e9:a2:61:2b:9f:14:0b:91: 33:85:2f:35:f6:41:9b:ea:a1:02:2d:c1:7b:8d:29: 91:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A2:93:E2:4A:8C:69:D9:62:D2:B9:C4:BB:33:48:58:C2:33:6A:E7 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:32:c5:b8:67:99:df:c4:bd:64:2f:22:5b:44:5a:40:ce:9f: 69:13:c2:74:96:34:f0:2c:60:75:c8:28:76:ff:86:86:aa:06: e7:90:76:a0:19:37:a1:2b:c2:c4:43:f2:45:e6:8b:c1:66:8e: 72:4a:ca:fe:4b:0a:08:dc:5f:73:d2:8a:1f:f2:0d:3d:2d:ba: ed:b2:16:08:17:59:63:80:0e:7e:96:66:6c:7a:3c:7e:9c:ef: 01:98:26:c0:1f:b3:76:59:dc:e9:6e:6d:da:a6:5d:a4:58:b8: f8:c8:cb:f2:13:49:9b:71:94:e0:e7:ec:1f:ad:78:d6:72:1b: d4:a1:1f:a9:80:cd:91:f6:c0:f4:54:f8:5d:77:94:ff:21:c1: 7d:a0:ca:60:fb:e7:49:65:94:00:87:1e:f8:88:dc:d5:7f:71: c5:4f:f9:6c:8d:04:a2:38:04:d0:80:f3:d3:68:3d:0f:7d:70: b2:ec:25:7c:af:96:cd:66:c8:ca:dc:63:f2:59:f1:17:1b:ff: 24:97:5c:3f:9c:ff:c0:01:c0:80:93:0a:b9:5f:e7:36:1c:35: 99:56:8e:93:de:58:98:54:b3:79:a6:a7:21:ff:e8:99:a0:04: 99:c0:8f:d8:58:ac:16:bd:55:9b:bc:a4:6a:ed:a4:70:f3:6a: 65:2b:50:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjQxMTIzMDIzNTQ4WhcNMjQxMTMwMDIzNTQ4WjAYMRYwFAYD VQQDEw02NzQxM2Y4NC04MjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVzk/GNWqdyfQ94H9RHkHWxr+Fbt+S6Q3y1yoZSaq5lbpnnlEUvYJRmE0jG9 YauD3WhY48tHsHNDsFpUxX5bbuxAjfVafhfLPjdvMz3v/wZ7btzpVOYsPvlv0hie hHfvzeJ5SO7WAnyXwjSnb9/xcnLcBIQxHUxkMhVheZMTl3wOHfvYzZAB+GAoUNUL 7G7d/D20Umy5867dY67gIoCUfuhtTiG7GNLHp40HuyCGY/CL3y8xRrEM0QQ7YiIa URTtv2FTkb55BOEIs/ufFITxtIcCD+77879WkUAq4l1JvO3+F7yJi+926aJhK58U C5EzhS819kGb6qECLcF7jSmRSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyik+JK jGnZYtK5xLszSFjCM2rnMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/MsW4Z5nfxL1kLyJbRFpAzp9pE8J0ljTwLGB1yCh2/4aGqgbnkHag GTehK8LEQ/JF5ovBZo5ySsr+SwoI3F9z0oof8g09LbrtshYIF1ljgA5+lmZsejx+ nO8BmCbAH7N2Wdzpbm3apl2kWLj4yMvyE0mbcZTg5+wfrXjWchvUoR+pgM2R9sD0 VPhdd5T/IcF9oMpg++dJZZQAhx74iNzVf3HFT/lsjQSiOATQgPPTaD0PfXCy7CV8 r5bNZsjK3GPyWfEXG/8kl1w/nP/AAcCAkwq5X+c2HDWZVo6T3liYVLN5pqch/+iZ oASZwI/YWKwWvVWbvKRq7aRw82plK1Ce -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org