$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: A+l2Ib4t/WY4oZhjY0rxRizXITKXQGLJSw2/XbYt/Xg= Subject key identifier: 31:0F:F2:FE:CF:E7:6C:E3:27:98:F9:E6:F1:67:74:D2:83:25:BD:D2 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0AD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0AC9 Signing time: Fri 22 Nov 2024 19:09:22 +0000 Manifest this update: Fri 22 Nov 2024 19:09:22 +0000 Manifest next update: Fri 29 Nov 2024 19:09:22 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: 74eFZxghNPtrBruDg8DeEiSmfvep/Y2LBOfxa5Xn8Ho=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: acFvO9bu1rt0q/DWuZiDKhsK7ehrIUh6eT7Acr8ax4w=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: mdWU9Nw7uLjUwxluWYPCfhZ2OHszlUXX70G/VFtrvgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: Nov 22 19:09:22 2024 GMT Not After : Nov 29 19:09:22 2024 GMT Subject: CN=6740d6e2-c50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8e:0f:cc:8a:0f:ef:51:62:68:35:7e:c9:66: ff:78:44:ae:cb:cf:0b:fb:ac:f4:8d:23:63:c8:28: d3:8a:59:79:18:31:8e:ab:dc:83:ab:b1:96:58:51: 10:1a:75:90:2b:7c:50:bf:ba:d1:db:1a:35:e2:3e: a9:e7:9e:7f:c7:f4:7d:c7:db:d0:50:4e:44:6e:a7: c1:80:bc:dd:8e:d0:99:69:57:93:71:8d:87:86:a7: 62:48:f0:ca:19:04:9d:af:9e:95:0b:f8:6b:94:0a: a1:1b:55:ae:b5:f0:2f:bd:eb:8c:c8:48:55:aa:14: cc:a8:7d:24:ba:8a:fa:1f:77:26:4f:ff:b1:67:19: d5:77:16:b9:09:af:7b:69:f9:75:bd:b8:d9:20:07: 7b:5c:24:da:37:eb:60:9d:ed:fc:42:bc:d8:ab:57: eb:49:70:61:83:d7:da:05:24:95:4b:a7:50:05:32: 1e:af:5f:8b:97:20:3c:b1:77:a0:8b:56:ff:ce:15: 1d:b9:0d:69:6b:74:a4:3a:bf:8d:20:bc:15:de:93: 8b:9b:e7:37:61:74:a9:5b:aa:f2:da:1b:fd:d6:c9: ad:57:e0:7d:ad:df:e2:c9:9e:c8:63:a0:f3:0d:88: ca:95:11:a3:78:96:73:f2:96:31:48:07:d6:28:78: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0F:F2:FE:CF:E7:6C:E3:27:98:F9:E6:F1:67:74:D2:83:25:BD:D2 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:91:02:08:29:d7:b3:ff:b7:83:de:6e:23:8d:ae:a0:0f:74: 7f:c0:b4:c3:cf:0b:32:96:34:d9:f1:25:e5:0b:43:61:a1:cd: 7b:51:ce:be:63:c2:60:8b:4f:5c:ec:d7:61:58:6f:db:fc:73: 96:9a:04:31:3b:0e:49:76:06:37:4e:e5:97:b9:cc:55:86:c7: 2c:3e:6e:f4:86:e5:34:9e:f0:71:e8:81:ec:2f:e7:37:cd:94: cb:17:cf:47:1c:c6:79:59:cd:f8:bb:6b:fb:89:94:65:2c:8a: 04:99:e2:ad:de:6c:23:78:61:d3:0d:14:e3:d4:98:9d:7a:bd: ba:6b:9d:d0:13:f3:c2:9a:4d:d1:e1:9a:e1:22:28:af:6b:6a: 05:bb:bc:1a:e2:c7:18:74:71:e5:e5:9b:a3:a0:8f:5d:92:81: 60:2e:2c:73:6e:78:2e:89:32:a2:17:d4:36:fc:2a:34:6f:58: ca:fa:2f:d7:49:1d:6d:49:54:0f:d2:45:c9:64:b4:3d:f5:73: 8d:7e:5f:42:ec:97:14:72:5a:26:f6:41:cf:dc:89:16:c3:d1: 91:4f:0a:cf:f8:0c:5f:37:07:be:2a:66:6a:75:51:83:2d:6f: bd:55:22:49:35:a1:f3:96:9e:a3:e0:89:a0:54:0d:94:33:f0: e8:b5:db:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjQxMTIyMTkwOTIyWhcNMjQxMTI5MTkwOTIyWjAYMRYwFAYD VQQDEw02NzQwZDZlMi1jNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA144PzIoP71FiaDV+yWb/eESuy88L+6z0jSNjyCjTill5GDGOq9yDq7GWWFEQ GnWQK3xQv7rR2xo14j6p555/x/R9x9vQUE5EbqfBgLzdjtCZaVeTcY2HhqdiSPDK GQSdr56VC/hrlAqhG1WutfAvveuMyEhVqhTMqH0kuor6H3cmT/+xZxnVdxa5Ca97 afl1vbjZIAd7XCTaN+tgne38QrzYq1frSXBhg9faBSSVS6dQBTIer1+LlyA8sXeg i1b/zhUduQ1pa3SkOr+NILwV3pOLm+c3YXSpW6ry2hv91smtV+B9rd/iyZ7IY6Dz DYjKlRGjeJZz8pYxSAfWKHjVqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEP8v7P 52zjJ5j55vFndNKDJb3SMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUkQIIKdez/7eD3m4jja6gD3R/wLTDzwsyljTZ8SXlC0Nhoc17Uc6+ Y8Jgi09c7NdhWG/b/HOWmgQxOw5JdgY3TuWXucxVhscsPm70huU0nvBx6IHsL+c3 zZTLF89HHMZ5Wc34u2v7iZRlLIoEmeKt3mwjeGHTDRTj1Jider26a53QE/PCmk3R 4ZrhIiiva2oFu7wa4scYdHHl5ZujoI9dkoFgLixzbnguiTKiF9Q2/Co0b1jK+i/X SR1tSVQP0kXJZLQ99XONfl9C7JcUclom9kHP3IkWw9GRTwrP+AxfNwe+KmZqdVGD LW+9VSJJNaHzlp6j4ImgVA2UM/DotdsA -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org