$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: UhCLbhQrqPJAJm6PE2yGP6XGzF4spUkJSmePoNLP4U8= Subject key identifier: 4E:2C:5B:96:89:7B:99:BE:2D:E8:14:90:A3:98:73:C3:13:C9:B1:BC Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 43 Signing time: Sat 23 Nov 2024 05:23:32 +0000 Manifest this update: Sat 23 Nov 2024 05:23:32 +0000 Manifest next update: Sat 30 Nov 2024 05:23:31 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: JzhgTAyvp3XBk9IZJbOS2eG6nkHmTo9PsnBmNEadxl8=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Nov 23 05:23:32 2024 GMT Not After : Nov 30 05:23:31 2024 GMT Subject: CN=674166d4-d281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fb:25:2b:f0:7c:1a:a4:fa:a0:89:fa:7f:6e: 98:99:3e:60:64:07:a5:20:e1:8e:ae:41:2e:cd:a2: ef:2b:a5:47:e2:ba:4b:80:08:ef:35:e5:76:f2:ca: 5d:dd:eb:6a:3c:fa:7d:c8:49:c4:40:b5:1a:9c:15: fd:a4:b1:52:82:f3:06:5d:1c:5b:5e:fe:d0:96:ec: e6:83:67:22:af:79:0d:6a:19:86:90:25:e5:cc:09: f7:46:ee:b9:80:82:14:20:d3:5a:45:0a:3d:fd:e8: 60:8b:48:1e:a6:5f:27:b6:d9:79:b1:2f:bc:61:25: ce:43:f2:72:ca:2f:15:e0:65:96:ba:0e:7e:6e:5b: e3:f6:04:10:09:09:6b:40:63:de:87:2e:3a:fd:00: c3:44:1e:31:4c:54:da:1d:4c:4f:9b:14:70:3f:17: 2b:2f:48:1f:bd:6a:a6:ac:bf:b3:e5:bc:da:ec:c0: 99:6a:b8:af:fc:ce:99:06:f9:1d:73:6a:0d:47:19: 85:7a:3a:5b:ff:4a:b7:6c:15:94:23:c7:80:a5:b2: 6a:dc:f5:9b:12:ee:c8:b3:7b:b4:87:82:fd:41:b9: 80:84:0c:b1:d2:16:d5:7f:1d:00:0f:60:09:e1:24: 4d:79:24:ac:a9:1c:f9:31:bc:e2:8e:c8:7d:3a:65: f3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2C:5B:96:89:7B:99:BE:2D:E8:14:90:A3:98:73:C3:13:C9:B1:BC X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f4:7a:03:38:9f:24:66:63:c5:7b:eb:d6:b5:a9:0e:31:be: c3:f6:68:1c:22:6d:00:4e:94:b0:7a:87:a2:f2:e6:a4:3e:8a: c8:57:b5:2f:17:e6:c0:08:78:a3:48:cf:5b:ae:ac:ff:ae:34: 30:79:16:ec:7f:30:50:d3:77:8e:3c:82:09:7e:bf:14:9b:23: ab:43:69:84:62:0d:ff:ae:be:f7:b9:2a:36:52:dc:4a:3c:46: 4f:4b:2d:5c:e8:94:bc:4a:9b:72:aa:9c:fe:04:7b:09:98:f9: 38:9f:73:c0:57:5e:46:a9:f3:23:a6:9c:03:3f:f0:52:36:a5: 9a:99:35:f3:43:17:2e:ae:82:e8:7f:51:43:b0:80:d2:10:ac: 19:04:33:37:8b:d3:8b:2b:d9:72:a4:fa:e5:83:da:b0:31:3b: 2c:7f:f4:d7:89:33:ea:83:ba:6e:02:5d:c9:15:41:b9:96:70: 94:36:4f:27:35:29:59:d3:df:82:82:0f:fb:eb:52:1c:d0:a3: bb:31:f7:1a:ed:e9:6f:c1:61:0e:44:00:1b:d4:46:70:cb:17: 9a:e3:e9:71:95:47:7b:4f:8a:67:93:2a:f1:de:8a:bd:3a:61: 4c:c3:03:e7:64:79:cb:ce:9a:e2:10:8f:3a:61:97:09:d7:55: 79:5b:42:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjQ3MjExMC8GA1UEBRMoOUU1MTNBQ0M0RDdCOTAwMTRBODY3RkI1MkFGODkyMjlF MDBCQTRBQzAeFw0yNDExMjMwNTIzMzJaFw0yNDExMzAwNTIzMzFaMBgxFjAUBgNV BAMTDTY3NDE2NmQ0LWQyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU+yUr8HwapPqgifp/bpiZPmBkB6Ug4Y6uQS7Nou8rpUfiukuACO815Xbyyl3d 62o8+n3IScRAtRqcFf2ksVKC8wZdHFte/tCW7OaDZyKveQ1qGYaQJeXMCfdG7rmA ghQg01pFCj396GCLSB6mXye22XmxL7xhJc5D8nLKLxXgZZa6Dn5uW+P2BBAJCWtA Y96HLjr9AMNEHjFMVNodTE+bFHA/FysvSB+9aqasv7PlvNrswJlquK/8zpkG+R1z ag1HGYV6Olv/SrdsFZQjx4Clsmrc9ZsS7size7SHgv1BuYCEDLHSFtV/HQAPYAnh JE15JKypHPkxvOKOyH06ZfO7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTixblol7 mb4t6BSQo5hzwxPJsbwwHwYDVR0jBBgwFoAUnlE6zE17kAFKhn+1KviSKeALpKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyNDcyL0U2MkI3MzVBNDgx OTExRUZCOEJFNDUzNEM0RjlBRTAyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmxFNnpFMTdrQUZLaG4tMUt2aVNLZUFMcEt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy NDcyL0U2MkI3MzVBNDgxOTExRUZCOEJFNDUzNEM0RjlBRTAyL25sRTZ6RTE3a0FG S2huLTFLdmlTS2VBTHBLdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAH0egM4nyRmY8V769a1qQ4xvsP2aBwibQBOlLB6h6Ly5qQ+ishXtS8X 5sAIeKNIz1uurP+uNDB5Fux/MFDTd448ggl+vxSbI6tDaYRiDf+uvve5KjZS3Eo8 Rk9LLVzolLxKm3KqnP4EewmY+Tifc8BXXkap8yOmnAM/8FI2pZqZNfNDFy6uguh/ UUOwgNIQrBkEMzeL04sr2XKk+uWD2rAxOyx/9NeJM+qDum4CXckVQbmWcJQ2Tyc1 KVnT34KCD/vrUhzQo7sx9xrt6W/BYQ5EABvURnDLF5rj6XGVR3tPimeTKvHeir06 YUzDA+dkecvOmuIQjzphlwnXVXlbQic= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org