$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft File: NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft (raw, json) Hash identifier: 6bOwfkNpptcjRtxd+gF8eemwtshiRfWkfpfQAIcWQe0= Subject key identifier: A6:30:11:5E:EA:3B:CD:20:DC:13:81:8C:A8:0E:ED:78:6F:26:3D:D0 Authority key identifier: 34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A Certificate issuer: /CN=A91B927E/serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Certificate serial: 09E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft Manifest number: 1067 Signing time: Fri 22 Nov 2024 19:40:52 +0000 Manifest this update: Fri 22 Nov 2024 19:40:51 +0000 Manifest next update: Fri 29 Nov 2024 19:40:51 +0000 Files and hashes: 1: NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl (hash: DQ2LvL2eLcpwyhzm/CUvulpOMdL90BzaqBmgl4eGsOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2528 (0x9e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E/serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Validity Not Before: Nov 22 19:40:51 2024 GMT Not After : Nov 29 19:40:51 2024 GMT Subject: CN=6740de44-b87c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:ea:55:4e:1d:cc:08:aa:c3:f8:47:1c:db: bd:f0:bd:d4:05:e6:7c:d6:74:93:61:14:ed:a1:58: f1:e4:50:42:f7:b9:fc:72:e7:4a:98:24:17:a0:8b: a7:51:00:27:94:ad:f1:61:16:43:a6:33:e9:22:73: da:2e:8e:42:d2:4f:45:b6:c3:10:36:d9:72:6b:f9: ca:3c:65:3d:24:ea:67:92:b1:37:15:b2:e0:d8:90: 53:bf:d9:cc:52:b6:53:58:98:e8:93:49:76:44:68: f7:58:4c:51:4c:2f:39:a6:7f:fc:4b:65:67:22:10: ae:c9:be:1f:89:80:f0:a5:95:b4:e8:7e:06:73:be: e3:c0:cd:a1:99:8a:43:8a:ca:46:d1:64:da:2f:3b: 1b:ed:6e:85:d7:55:ee:4b:9f:46:84:22:5e:54:14: e3:7b:73:6b:64:23:5d:53:27:05:28:af:d6:f5:52: db:64:36:02:33:dd:6e:7b:fe:56:58:ca:c1:ea:f8: 20:69:10:17:dc:15:1f:23:4a:ab:a0:d9:8f:7f:75: a8:36:84:55:f5:6d:45:4f:b4:4e:64:7a:94:85:7e: 50:ff:e6:a1:18:99:d3:c8:3a:20:a5:59:30:e1:71: eb:ae:1e:ae:30:16:58:19:9e:e2:98:87:88:70:6e: 97:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:30:11:5E:EA:3B:CD:20:DC:13:81:8C:A8:0E:ED:78:6F:26:3D:D0 X509v3 Authority Key Identifier: keyid:34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:71:d4:1b:18:23:87:ab:77:ab:f4:85:e9:9e:44:2b:77:57: 32:1b:f1:75:39:14:56:dd:2b:1d:94:75:2c:dd:1e:0c:00:45: 0e:2b:71:1b:b7:cb:89:1c:5c:a7:b8:af:48:a2:2a:4b:95:85: 5f:87:13:79:d0:74:0e:2c:e7:7a:54:b9:5c:fd:e0:da:95:bf: 85:6f:36:10:98:22:cc:7d:d8:53:54:db:4a:41:0f:ca:7d:db: 41:b9:61:45:6c:6f:83:16:96:df:a4:8a:b3:cb:72:7e:1f:22: 62:61:63:85:12:68:1b:76:7b:6f:2c:d8:7b:fb:72:9c:b1:bc: 41:88:5f:0f:f9:18:fe:3c:8a:75:80:c1:82:94:3f:fd:78:84: 45:97:75:93:94:ac:5f:c5:72:a8:1b:d9:f1:9d:89:70:18:03: 64:d4:f4:51:d6:3f:be:99:a8:fb:f8:e8:2f:9e:89:8b:29:64: 79:4a:d2:29:b4:19:94:2b:6e:91:1e:7e:3d:88:c0:89:67:0d: 5f:5a:81:00:d9:29:72:b5:83:39:5d:30:7a:04:23:1d:fb:d3: 14:dd:11:26:9d:72:85:8f:0c:cc:13:9b:27:a0:6d:81:66:88: ee:4a:86:c8:c6:21:ef:40:6c:a8:cb:a0:0a:99:57:b6:4e:8b: f4:cc:49:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDM0NkRGMEVGNEQ4QkM2M0MzODI0RDZFNDkwMDY3NDYz MjU0N0IwOEEwHhcNMjQxMTIyMTk0MDUxWhcNMjQxMTI5MTk0MDUxWjAYMRYwFAYD VQQDEw02NzQwZGU0NC1iODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxvqVU4dzAiqw/hHHNu98L3UBeZ81nSTYRTtoVjx5FBC97n8cudKmCQXoIun UQAnlK3xYRZDpjPpInPaLo5C0k9FtsMQNtlya/nKPGU9JOpnkrE3FbLg2JBTv9nM UrZTWJjok0l2RGj3WExRTC85pn/8S2VnIhCuyb4fiYDwpZW06H4Gc77jwM2hmYpD ispG0WTaLzsb7W6F11XuS59GhCJeVBTje3NrZCNdUycFKK/W9VLbZDYCM91ue/5W WMrB6vggaRAX3BUfI0qroNmPf3WoNoRV9W1FT7ROZHqUhX5Q/+ahGJnTyDogpVkw 4XHrrh6uMBZYGZ7imIeIcG6XWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYwEV7q O80g3BOBjKgO7XhvJj3QMB8GA1UdIwQYMBaAFDRt8O9Ni8Y8OCTW5JAGdGMlR7CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhqdzRKTmJra0FaMFl5Vkhz SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05HM3c3MDJMeGp3NEpOYmtrQVowWXlWSHNJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI3RS9DQ0Q2RUQxQzY4REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhq dzRKTmJra0FaMFl5VkhzSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbcdQbGCOHq3er9IXpnkQrd1cyG/F1ORRW3SsdlHUs3R4MAEUOK3Eb t8uJHFynuK9IoipLlYVfhxN50HQOLOd6VLlc/eDalb+FbzYQmCLMfdhTVNtKQQ/K fdtBuWFFbG+DFpbfpIqzy3J+HyJiYWOFEmgbdntvLNh7+3KcsbxBiF8P+Rj+PIp1 gMGClD/9eIRFl3WTlKxfxXKoG9nxnYlwGANk1PRR1j++maj7+OgvnomLKWR5StIp tBmUK26RHn49iMCJZw1fWoEA2SlytYM5XTB6BCMd+9MU3REmnXKFjwzME5snoG2B ZojuSobIxiHvQGyoy6AKmVe2Tov0zEl3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org