$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: /xSFDAh+ec9fmuT7uL/0PeC1txKiqPCKd1dEDJpQy/I= Subject key identifier: DE:CA:D1:F7:B2:41:36:81:7C:40:F0:43:DD:AA:38:5E:60:6D:21:7B Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 7F Signing time: Thu 21 Nov 2024 04:45:58 +0000 Manifest this update: Thu 21 Nov 2024 04:45:57 +0000 Manifest next update: Thu 28 Nov 2024 04:45:57 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: SGODamHBrYqWGd2IWTEeTMxFSkrd0ba8p8Dya+dqCrs=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: sKM3XWxgShyOJLKm7YJ4ZHKrS+hkWvA5sgaxqZc+rRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Nov 21 04:45:57 2024 GMT Not After : Nov 28 04:45:57 2024 GMT Subject: CN=673ebb06-1ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:53:d8:27:cf:49:c6:ca:0c:19:26:ac:eb:fc: 99:3c:dc:9a:45:a7:fa:38:11:6e:7a:52:0d:f2:77: 9b:18:cb:cd:a1:22:25:d0:91:de:fa:02:b5:5c:e8: 1a:b7:0a:e8:b4:8e:26:03:fc:35:88:83:7d:b2:69: fa:72:f4:7c:53:cc:65:74:c6:9b:83:17:08:4f:f2: c3:bd:cc:cf:65:81:65:6c:45:73:e8:c7:8d:de:03: 34:69:21:d7:ce:00:fd:8a:0f:ee:4d:a4:2e:59:45: 38:32:f8:d7:b1:c1:c4:22:b7:96:93:5b:7a:06:17: ba:72:5f:7f:ae:7b:2a:e5:3a:2e:db:9a:38:54:c4: 19:7a:6c:a4:12:11:5f:29:f5:72:3d:2a:30:93:3e: dd:a7:e7:90:5d:17:42:a2:3a:2e:a8:8a:1e:26:86: 29:49:17:41:68:6f:08:db:f4:4c:e7:58:ae:fa:03: ea:35:33:c9:e9:ce:b7:d5:c4:fb:d1:02:24:05:c6: f0:5a:c1:03:33:e9:ff:a1:b0:4b:ec:10:d8:ac:3d: b3:fe:4e:b4:bc:b3:4d:1a:fc:28:e3:18:04:f4:72: c2:80:e1:73:c4:19:2d:e0:93:0f:84:ce:52:54:3d: 4e:8c:84:2d:4a:f6:9c:81:37:6e:d1:d9:e1:3d:74: 3b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CA:D1:F7:B2:41:36:81:7C:40:F0:43:DD:AA:38:5E:60:6D:21:7B X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5c:6e:e8:38:a2:34:ad:52:96:81:62:1a:06:2a:95:58:0c: ca:95:cb:e3:7e:db:02:e2:dc:aa:29:12:4d:21:e9:00:60:d8: 34:d6:c7:a9:97:01:b2:da:5b:e1:29:e1:00:c6:9e:5e:ae:9c: e6:58:b7:f6:b2:ba:ec:b9:10:1d:5f:bd:fe:96:c8:b3:d5:ce: c7:86:f6:6d:8e:9c:c7:d6:36:63:17:8e:95:67:ef:3f:f3:dc: c2:76:ba:4e:5d:06:02:30:b8:07:d8:97:8c:5b:18:df:8f:21: 87:8f:53:c8:c8:ce:00:28:f5:d0:db:bc:8c:d7:75:6f:f6:67: 79:f4:1e:67:57:28:5f:06:45:c7:c6:c6:39:e2:75:f1:00:4b: fd:4e:00:3b:64:92:9e:b3:27:9f:37:2c:36:93:a9:6d:d7:70: 5f:95:2a:fe:7e:c2:8b:b2:fb:fd:71:0f:2a:6c:47:e0:6a:cc: 01:f9:b7:48:4c:64:e4:28:4e:89:82:e1:0a:66:e4:36:0c:c7: 14:bb:dc:85:0d:9d:60:33:8b:ae:90:0f:7b:49:98:20:8f:ad: 75:26:35:2f:27:b3:7a:8c:4a:03:2b:7f:ce:01:c0:13:e9:4b: 08:58:b5:fe:60:9f:1a:1b:2e:15:b3:42:42:d9:72:3e:bb:12: 65:af:e1:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjQxMTIxMDQ0NTU3WhcNMjQxMTI4MDQ0NTU3WjAYMRYwFAYD VQQDEw02NzNlYmIwNi0xZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFPYJ89JxsoMGSas6/yZPNyaRaf6OBFuelIN8nebGMvNoSIl0JHe+gK1XOga twrotI4mA/w1iIN9smn6cvR8U8xldMabgxcIT/LDvczPZYFlbEVz6MeN3gM0aSHX zgD9ig/uTaQuWUU4MvjXscHEIreWk1t6Bhe6cl9/rnsq5Tou25o4VMQZemykEhFf KfVyPSowkz7dp+eQXRdCojouqIoeJoYpSRdBaG8I2/RM51iu+gPqNTPJ6c631cT7 0QIkBcbwWsEDM+n/obBL7BDYrD2z/k60vLNNGvwo4xgE9HLCgOFzxBkt4JMPhM5S VD1OjIQtSvacgTdu0dnhPXQ78QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7K0fey QTaBfEDwQ92qOF5gbSF7MB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsXG7oOKI0rVKWgWIaBiqVWAzKlcvjftsC4tyqKRJNIekAYNg01sep lwGy2lvhKeEAxp5erpzmWLf2srrsuRAdX73+lsiz1c7HhvZtjpzH1jZjF46VZ+8/ 89zCdrpOXQYCMLgH2JeMWxjfjyGHj1PIyM4AKPXQ27yM13Vv9md59B5nVyhfBkXH xsY54nXxAEv9TgA7ZJKesyefNyw2k6lt13BflSr+fsKLsvv9cQ8qbEfgaswB+bdI TGTkKE6JguEKZuQ2DMcUu9yFDZ1gM4uukA97SZggj611JjUvJ7N6jEoDK3/OAcAT 6UsIWLX+YJ8aGy4Vs0JC2XI+uxJlr+F5 -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org