$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: wyNG/E8TwGzyQlwX1gf+ZZtaWxISww8dbtusXecv3FQ= Subject key identifier: C9:4E:19:86:12:31:AF:CE:59:51:64:66:79:CF:B9:DA:53:95:AE:2C Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 41 Signing time: Thu 21 Nov 2024 05:29:56 +0000 Manifest this update: Thu 21 Nov 2024 05:29:56 +0000 Manifest next update: Thu 28 Nov 2024 05:29:56 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: A+sx9PePBAweooFAmGSYB5901tWGihwVAsdrvEWv6Qs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Nov 21 05:29:56 2024 GMT Not After : Nov 28 05:29:56 2024 GMT Subject: CN=673ec554-b38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:57:3e:97:53:2b:27:53:1c:70:2f:f6:d7:e7: c6:56:5a:92:15:89:61:9b:09:c1:49:e8:7a:11:72: 08:f2:9d:fc:c7:8b:2b:2e:b3:83:19:34:66:a0:be: 3d:ca:42:6d:f3:ff:e7:59:8d:41:c2:98:b6:46:c8: d7:68:91:3f:bb:3b:0d:20:87:fd:b9:3b:b4:f6:6b: 6d:28:77:07:49:c2:46:45:e8:77:bd:ba:7d:e7:aa: 60:3d:60:08:dd:3b:5f:02:54:7d:63:4b:cb:55:3e: 10:89:b5:95:38:5e:99:3f:b7:2c:16:97:0e:94:31: 71:d5:b6:8a:4c:21:ed:2c:74:09:fe:a6:c7:6b:c8: 4d:a5:0f:5d:3c:85:74:a2:9f:80:76:ca:60:b4:5f: 6c:ff:39:a6:0c:e1:3d:8e:c7:65:c0:30:ef:36:ad: 70:61:03:ca:64:e6:1b:1d:2f:d5:0e:86:bc:44:e0: cd:d3:de:a0:ea:02:0c:b9:c4:79:23:a5:f6:16:55: ff:1e:4c:80:48:4d:c8:61:da:4d:64:32:16:e3:43: 76:cc:c3:76:f2:11:b4:39:29:50:16:a3:38:e4:a3: bb:52:17:21:cf:04:72:3e:3c:d5:3d:3e:97:bd:cf: 8c:d8:38:57:96:ed:4b:34:ef:28:70:26:f9:b1:8e: 33:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4E:19:86:12:31:AF:CE:59:51:64:66:79:CF:B9:DA:53:95:AE:2C X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:af:c0:68:a4:2c:f5:3f:10:49:c2:a1:3f:b6:1d:e5:45:c1: dc:ac:db:b8:9f:55:df:83:48:83:c2:0d:23:0e:68:03:42:b5: 75:95:fb:e2:a1:36:83:ae:c0:91:1c:85:ac:a9:83:da:66:4e: bd:73:18:0c:b7:9a:e6:b6:b4:c1:1d:b0:a3:1c:67:a7:ee:ff: e3:21:7b:f0:60:6f:50:c8:c2:12:92:d2:ec:0e:b1:8a:81:fa: 11:1f:4c:bc:5d:dc:0d:a1:79:83:80:f1:33:dc:05:ad:37:5a: 9e:f6:cf:77:00:64:a7:d5:a3:c4:11:4b:ab:79:6b:51:2e:9e: 0e:b2:9c:3d:f7:af:14:af:a1:93:40:9d:a4:72:ea:3e:67:32: ef:de:f4:99:96:b8:04:60:df:5a:f2:4f:bd:e8:da:5d:95:4b: 2e:dd:f2:77:21:d6:e1:85:ae:6a:98:b5:bd:01:0b:fa:18:53: b5:f2:b5:53:33:4e:b2:13:04:8a:4f:55:87:de:97:c3:70:dd: 98:92:7e:6c:5e:0c:ec:0b:c4:36:5e:11:e4:b7:2e:b2:65:d9: 04:03:07:5b:b0:d2:a2:50:0a:b0:1a:85:a1:61:32:66:da:bc: 5d:95:a3:5e:a5:d2:a2:17:d8:05:e7:00:3d:fd:03:6e:4d:5d: d8:25:d5:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU4QjExMC8GA1UEBRMoOUQzQzMzQUNCMTEwM0U3MUZBMUZGM0U2MDEzRTlEQzMx MTIyNjlGQzAeFw0yNDExMjEwNTI5NTZaFw0yNDExMjgwNTI5NTZaMBgxFjAUBgNV BAMTDTY3M2VjNTU0LWIzOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRVz6XUysnUxxwL/bX58ZWWpIViWGbCcFJ6HoRcgjynfzHiysus4MZNGagvj3K Qm3z/+dZjUHCmLZGyNdokT+7Ow0gh/25O7T2a20odwdJwkZF6He9un3nqmA9YAjd O18CVH1jS8tVPhCJtZU4Xpk/tywWlw6UMXHVtopMIe0sdAn+psdryE2lD108hXSi n4B2ymC0X2z/OaYM4T2Ox2XAMO82rXBhA8pk5hsdL9UOhrxE4M3T3qDqAgy5xHkj pfYWVf8eTIBITchh2k1kMhbjQ3bMw3byEbQ5KVAWozjko7tSFyHPBHI+PNU9Ppe9 z4zYOFeW7Us07yhwJvmxjjMhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyU4ZhhIx r85ZUWRmec+52lOVriwwHwYDVR0jBBgwFoAUnTwzrLEQPnH6H/PmAT6dwxEiafww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRThCLzYyOTE3NjQ0NDVC NjExRUY4QUIzMEEzMUM0RjlBRTAyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblR3enJMRVFQbkg2SF9QbUFUNmR3eEVpYWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx RThCLzYyOTE3NjQ0NDVCNjExRUY4QUIzMEEzMUM0RjlBRTAyL25Ud3pyTEVRUG5I NkhfUG1BVDZkd3hFaWFmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALKvwGikLPU/EEnCoT+2HeVFwdys27ifVd+DSIPCDSMOaANCtXWV++Kh NoOuwJEchaypg9pmTr1zGAy3mua2tMEdsKMcZ6fu/+Mhe/Bgb1DIwhKS0uwOsYqB +hEfTLxd3A2heYOA8TPcBa03Wp72z3cAZKfVo8QRS6t5a1Eung6ynD33rxSvoZNA naRy6j5nMu/e9JmWuARg31ryT73o2l2VSy7d8nch1uGFrmqYtb0BC/oYU7XytVMz TrITBIpPVYfel8Nw3ZiSfmxeDOwLxDZeEeS3LrJl2QQDB1uw0qJQCrAahaFhMmba vF2Vo16l0qIX2AXnAD39A25NXdgl1U8= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org