$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft File: NZYOHhaeA_Rvr5H04_8TUUamMTo.mft (raw, json) Hash identifier: V7zKRYTotpSzwuzrMt/o2lmIZ8RBseKNmtP1FAfWrGo= Subject key identifier: 35:A3:5C:2F:A5:0D:BB:67:90:B1:C7:74:12:74:37:65:CA:A5:31:96 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 1317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft Manifest number: 1310 Signing time: Fri 22 Nov 2024 17:01:31 +0000 Manifest this update: Fri 22 Nov 2024 17:01:30 +0000 Manifest next update: Fri 29 Nov 2024 17:01:30 +0000 Files and hashes: 1: NZYOHhaeA_Rvr5H04_8TUUamMTo.crl (hash: gT2W0N4xCr1TguphaXXkGXFl3IZJeKlgH6N0+qnq2vU=) 2: 21333DA69B2E11E8908CC50FC4F9AE02.roa (hash: +1SNSIFs+P7lOAKW1zIJPA5+xtDNMIC4L/Fb0Zo2lHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4887 (0x1317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Nov 22 17:01:30 2024 GMT Not After : Nov 29 17:01:30 2024 GMT Subject: CN=6740b8ea-a0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:38:75:f5:d5:f8:a4:3b:0d:1f:1b:c9:a1:06: bc:7e:d1:bc:f8:80:b8:5c:9c:d2:88:c0:9f:ce:be: 0e:a9:fd:7c:9e:99:4e:d2:05:1d:b0:0c:f9:0f:b6: 88:9e:e0:55:d3:5d:a4:b3:b4:30:ce:05:d4:d3:89: 0d:44:9b:5f:c1:b2:77:d4:6e:37:85:3e:fb:c4:7e: 29:93:54:00:aa:2f:d3:6c:52:67:03:ea:e6:d9:fa: 02:cc:db:e4:5d:59:f7:fe:b5:ca:21:f3:f1:a6:4f: 3b:16:74:07:cb:cc:47:1d:14:fb:f6:d9:fc:22:54: 62:60:27:04:91:46:22:29:aa:41:24:80:df:3e:73: 85:ec:bf:c5:75:15:a0:be:44:4b:f4:63:d0:4b:a3: 13:e4:c4:46:3b:cb:a4:42:b8:fd:3d:87:2b:04:9f: c3:82:ef:ec:a5:25:d2:95:04:eb:dd:7c:1a:61:83: 8c:81:b1:8d:85:48:65:d3:57:cf:62:d0:ee:2c:70: d6:a4:e5:3b:48:bc:00:ca:0c:d2:7d:ad:bb:65:a8: 9a:cc:8a:a5:78:3f:30:97:ef:12:e9:b3:22:49:99: 66:a8:51:dd:49:24:7f:54:37:ff:4a:c4:6a:a8:04: 16:ca:08:3b:aa:46:87:d3:00:31:80:93:cc:26:6b: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A3:5C:2F:A5:0D:BB:67:90:B1:C7:74:12:74:37:65:CA:A5:31:96 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:bd:87:3e:41:f0:87:0f:81:ec:ee:b1:2d:32:01:95:a4:4f: 39:8a:f5:42:6c:1f:30:01:3b:28:35:67:4c:4e:5a:93:f6:f3: 8f:6b:db:0f:9f:4a:60:38:18:d1:1f:1b:97:ae:7e:e4:a6:06: 1d:30:cf:13:bd:88:a1:15:2d:51:d3:21:00:e3:dd:83:35:90: 0d:4c:fe:e0:de:72:eb:2c:89:e9:20:63:be:8c:e1:70:8b:34: fb:fb:f8:81:ca:5e:f7:64:20:f8:c8:3a:f1:8e:59:73:0c:5d: a5:cb:b7:03:ca:a5:60:24:14:4d:c0:f3:2a:41:8d:f0:e5:58: 6c:71:98:a0:ac:ab:ac:7a:26:7b:95:13:2b:65:33:56:9e:27: 12:a8:41:c1:40:82:10:8c:7a:d3:08:1e:d0:f8:27:96:df:02: 8c:e5:47:f5:64:a8:7e:6e:97:0b:7b:3f:9c:d3:85:1a:15:42: 05:b0:66:d1:5d:94:5f:a8:cc:61:f1:8f:2b:7e:4f:27:57:9c: d5:e4:11:01:d4:dc:64:14:8c:42:df:d9:f0:f6:f1:54:fd:33: 92:4b:12:33:f1:57:8e:1f:16:60:5d:5b:be:57:ac:9a:e1:be: 58:b0:81:8b:0b:46:f0:54:95:bb:4b:fa:46:a7:28:6c:29:50: d0:b7:99:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjQxMTIyMTcwMTMwWhcNMjQxMTI5MTcwMTMwWjAYMRYwFAYD VQQDEw02NzQwYjhlYS1hMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjh19dX4pDsNHxvJoQa8ftG8+IC4XJzSiMCfzr4Oqf18nplO0gUdsAz5D7aI nuBV012ks7QwzgXU04kNRJtfwbJ31G43hT77xH4pk1QAqi/TbFJnA+rm2foCzNvk XVn3/rXKIfPxpk87FnQHy8xHHRT79tn8IlRiYCcEkUYiKapBJIDfPnOF7L/FdRWg vkRL9GPQS6MT5MRGO8ukQrj9PYcrBJ/Dgu/spSXSlQTr3XwaYYOMgbGNhUhl01fP YtDuLHDWpOU7SLwAygzSfa27ZaiazIqleD8wl+8S6bMiSZlmqFHdSSR/VDf/SsRq qAQWygg7qkaH0wAxgJPMJmtP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWjXC+l DbtnkLHHdBJ0N2XKpTGWMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkJBNS9FNjQ4NEFDRTlCMkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFf UnZyNUgwNF84VFVVYW1NVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzvYc+QfCHD4Hs7rEtMgGVpE85ivVCbB8wATsoNWdMTlqT9vOPa9sP n0pgOBjRHxuXrn7kpgYdMM8TvYihFS1R0yEA492DNZANTP7g3nLrLInpIGO+jOFw izT7+/iByl73ZCD4yDrxjllzDF2ly7cDyqVgJBRNwPMqQY3w5VhscZigrKuseiZ7 lRMrZTNWnicSqEHBQIIQjHrTCB7Q+CeW3wKM5Uf1ZKh+bpcLez+c04UaFUIFsGbR XZRfqMxh8Y8rfk8nV5zV5BEB1NxkFIxC39nw9vFU/TOSSxIz8VeOHxZgXVu+V6ya 4b5YsIGLC0bwVJW7S/pGpyhsKVDQt5nE -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org