$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: iozpJXx1Y56i/2ytmgeCvytUSHsVHqNGmlDJp1jGf9M= Subject key identifier: 9A:B8:71:C5:97:D4:8F:1F:76:33:CD:3E:A4:CA:65:85:80:38:C8:99 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 20 Signing time: Sun 15 Sep 2024 10:23:09 +0000 Manifest this update: Sun 15 Sep 2024 10:23:09 +0000 Manifest next update: Sun 22 Sep 2024 10:23:08 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: vWT8qCQQrSGDfNcdMZj2v58xIXwCxauOuKNif9sAeKY=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Sep 15 10:23:09 2024 GMT Not After : Sep 22 10:23:08 2024 GMT Subject: CN=66e6b58d-594d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0a:21:6d:65:82:c1:df:6d:2a:08:d2:e8:f9: 50:5e:21:ed:9b:a8:7e:53:25:52:52:4c:34:a8:de: 10:48:0a:a9:09:00:60:c0:63:ba:0b:b9:c8:18:37: 06:31:09:b5:ee:28:05:18:65:0b:9e:8e:5b:4b:0b: 4c:3a:c3:73:50:2a:51:55:e5:c9:68:2c:22:29:cf: a4:e0:b0:3e:b3:f6:9f:73:8c:5d:3c:b0:f5:a7:b8: c7:f8:2f:93:c2:6c:20:93:7c:d6:c9:4c:08:fc:eb: da:88:1f:83:96:ee:6c:1c:16:74:55:f7:35:24:31: 1c:e3:85:c4:64:ec:12:31:e9:64:e7:3f:3b:0f:08: ab:e5:90:86:34:1f:15:0d:61:d5:7e:46:4a:70:d4: 83:4b:a8:29:0e:8f:fa:90:7b:63:ad:a4:8f:da:65: 9b:f6:1b:d2:5a:45:ac:67:d0:73:db:88:05:e0:a3: cf:27:7c:5d:85:af:9e:ca:3f:72:c1:c4:69:8c:b0: 41:b8:7f:b5:bb:41:05:e6:b6:18:9f:a2:b2:f1:0f: 3b:96:2c:d7:02:36:31:1b:99:43:99:55:e1:ff:32: 6a:f2:e0:2b:80:b7:18:7b:07:bd:f0:4a:ae:a8:1b: 56:8f:bc:89:35:33:e4:97:de:13:a6:1f:ce:b2:ad: 23:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B8:71:C5:97:D4:8F:1F:76:33:CD:3E:A4:CA:65:85:80:38:C8:99 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a9:c0:38:1c:eb:f6:d7:06:ec:2f:5f:d5:b5:50:c4:a4:8c: 68:43:b4:2e:2d:34:f7:b3:f0:7d:4a:78:12:6f:f2:f0:0a:d1: e7:63:c1:63:3c:89:78:d1:95:ee:62:02:b9:a3:fe:09:9c:05: 2d:94:b1:a0:a1:e9:ee:5c:d7:5c:ac:59:36:53:49:58:33:dc: 5d:0f:2b:6d:2c:8a:7f:fb:1f:68:b4:61:1a:56:6a:13:44:7e: bc:23:df:ff:12:a4:40:5d:e4:da:4a:fc:5b:f3:1f:fc:d0:82: 19:e2:37:d1:6e:4f:34:0c:58:4d:c5:fb:44:f6:5a:bb:dc:09: c4:e6:38:1c:cf:99:0e:8e:b8:c6:72:00:9d:58:59:43:61:9c: f9:14:4b:62:1a:af:6b:89:a8:2d:c6:25:86:c7:0a:59:fc:0c: c0:34:d1:5b:39:a4:0f:4d:ce:1a:d6:07:f4:65:96:c4:31:e0: 78:6b:e5:7b:76:fc:1a:62:3c:4e:9d:81:9c:12:e1:7f:51:8a: c5:c6:77:48:6b:7e:08:2c:19:e9:b5:1e:86:b4:a1:bb:25:d7: 32:03:44:87:6b:6f:04:4d:1d:1f:8a:4a:9b:dd:09:31:df:96: fa:9a:bb:43:8d:90:55:61:1e:53:5a:50:90:97:14:f7:e7:3d: df:8d:e7:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjQ3MjExMC8GA1UEBRMoOUU1MTNBQ0M0RDdCOTAwMTRBODY3RkI1MkFGODkyMjlF MDBCQTRBQzAeFw0yNDA5MTUxMDIzMDlaFw0yNDA5MjIxMDIzMDhaMBgxFjAUBgNV BAMTDTY2ZTZiNThkLTU5NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjCiFtZYLB320qCNLo+VBeIe2bqH5TJVJSTDSo3hBICqkJAGDAY7oLucgYNwYx CbXuKAUYZQuejltLC0w6w3NQKlFV5cloLCIpz6TgsD6z9p9zjF08sPWnuMf4L5PC bCCTfNbJTAj869qIH4OW7mwcFnRV9zUkMRzjhcRk7BIx6WTnPzsPCKvlkIY0HxUN YdV+Rkpw1INLqCkOj/qQe2OtpI/aZZv2G9JaRaxn0HPbiAXgo88nfF2Fr57KP3LB xGmMsEG4f7W7QQXmthiforLxDzuWLNcCNjEbmUOZVeH/Mmry4CuAtxh7B73wSq6o G1aPvIk1M+SX3hOmH86yrSN/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmrhxxZfU jx92M80+pMplhYA4yJkwHwYDVR0jBBgwFoAUnlE6zE17kAFKhn+1KviSKeALpKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyNDcyL0U2MkI3MzVBNDgx OTExRUZCOEJFNDUzNEM0RjlBRTAyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmxFNnpFMTdrQUZLaG4tMUt2aVNLZUFMcEt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy NDcyL0U2MkI3MzVBNDgxOTExRUZCOEJFNDUzNEM0RjlBRTAyL25sRTZ6RTE3a0FG S2huLTFLdmlTS2VBTHBLdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAACpwDgc6/bXBuwvX9W1UMSkjGhDtC4tNPez8H1KeBJv8vAK0edjwWM8 iXjRle5iArmj/gmcBS2UsaCh6e5c11ysWTZTSVgz3F0PK20sin/7H2i0YRpWahNE frwj3/8SpEBd5NpK/FvzH/zQghniN9FuTzQMWE3F+0T2WrvcCcTmOBzPmQ6OuMZy AJ1YWUNhnPkUS2Iar2uJqC3GJYbHCln8DMA00Vs5pA9NzhrWB/RllsQx4Hhr5Xt2 /BpiPE6dgZwS4X9RisXGd0hrfggsGem1Hoa0obsl1zIDRIdrbwRNHR+KSpvdCTHf lvqau0ONkFVhHlNaUJCXFPfnPd+N51M= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:44 2024 by rpki-client on console-fra.rpki-client.org