$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: iSRj9f0+zfMODf5hmXJAwCgS9Uj3ufgMneLNVQFWG38= Subject key identifier: 8B:BE:A0:64:A3:3E:1E:23:AA:CF:09:84:74:74:C0:7A:21:69:98:AB Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 06A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0686 Signing time: Fri 22 Nov 2024 21:55:22 +0000 Manifest this update: Fri 22 Nov 2024 21:55:22 +0000 Manifest next update: Fri 29 Nov 2024 21:55:22 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: w/pU87Qd6Ew43GWQu6tZBaAT5RLrZvx/jyKeYa50VBk=) 2: 96FC6944591111EEBFB2384AC4F9AE02.roa (hash: rvYTS1aH1b3AcodzlLApwdGnHpabMmYS9OY5Ugpek7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Nov 22 21:55:22 2024 GMT Not After : Nov 29 21:55:22 2024 GMT Subject: CN=6740fdca-13cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:00:bd:ea:24:9d:3b:1d:cc:ad:66:10:bc: aa:2c:c1:18:86:b6:ae:74:2e:39:24:1e:46:25:0c: f8:2d:11:30:53:77:8e:15:51:69:ad:5b:31:d8:4e: 44:7c:fb:de:12:2f:47:87:aa:cb:f5:c5:04:7d:8a: a8:35:65:40:b9:a8:10:cd:da:e2:03:00:3e:35:91: 0e:1f:6a:18:d4:eb:4e:de:3c:e5:61:56:8a:77:f2: 81:b2:af:a5:de:aa:52:4a:1a:8a:17:3d:70:e1:a8: 97:d9:4a:02:32:24:91:1e:75:93:3f:13:67:e7:f8: ba:c0:d0:e3:f6:9c:9d:d1:52:cc:c6:d7:52:60:2b: 40:ca:7d:bf:8e:06:5e:b4:81:64:8b:9c:89:14:d2: c8:7d:8d:81:be:fe:0d:9a:c9:9d:6c:b6:15:dd:35: ef:04:f8:b0:5a:38:b4:ee:c0:ac:61:b1:0e:f6:24: f8:13:fa:8d:93:0b:c5:13:17:98:99:04:60:d0:72: 03:26:19:eb:ef:6e:f5:74:f6:26:d8:5c:76:ef:63: dd:d2:ad:21:96:67:c1:88:55:07:43:1e:49:7e:41: 6a:23:a0:87:59:d3:43:21:6f:be:33:37:a6:a1:b1: 19:3f:01:c2:06:eb:af:e2:2b:ee:7e:ef:1d:42:9a: d2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BE:A0:64:A3:3E:1E:23:AA:CF:09:84:74:74:C0:7A:21:69:98:AB X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:50:19:b4:b9:4c:26:1a:38:6b:4d:12:d5:2b:50:72:ac:8d: d6:55:7b:c9:ec:f2:85:d5:f2:36:2f:9c:ff:28:db:d5:13:71: 24:46:ce:f0:b9:0c:83:45:7e:15:2e:f5:4f:ae:a3:4b:ad:62: b4:3c:69:61:84:5c:4c:33:73:9c:49:c6:0b:1a:cf:b3:ea:aa: 2a:a1:dc:18:0f:ce:d0:d8:77:69:d8:1f:70:50:0b:fb:14:40: 74:71:f5:49:ba:6b:a3:be:27:c0:5b:84:93:e4:bd:2f:7f:3d: ad:57:fd:e7:6b:15:85:eb:8c:ce:8f:ed:1f:e5:28:9f:5d:be: 8b:05:6e:64:4d:1d:73:1d:df:42:72:88:e0:81:af:88:a5:71: 65:a1:f3:3f:fc:66:61:b4:e5:a8:4d:05:6c:02:fc:32:ba:b4: 4b:68:74:8f:ec:16:f4:90:ed:31:e9:57:45:cb:f8:05:67:6f: 5f:3c:bf:32:3d:43:3f:d1:92:2d:c6:24:4f:8d:c6:06:7a:1e: 77:74:18:05:3c:9d:b5:ae:b2:bc:76:aa:91:0d:ed:2b:36:a2: 86:25:d6:82:6b:84:94:52:34:8c:22:63:0c:57:a1:83:51:60: 98:12:24:dd:bc:96:b8:a6:20:39:df:d7:76:a0:38:9c:96:b2: 17:c8:3e:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjQxMTIyMjE1NTIyWhcNMjQxMTI5MjE1NTIyWjAYMRYwFAYD VQQDEw02NzQwZmRjYS0xM2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf0AveoknTsdzK1mELyqLMEYhraudC45JB5GJQz4LREwU3eOFVFprVsx2E5E fPveEi9Hh6rL9cUEfYqoNWVAuagQzdriAwA+NZEOH2oY1OtO3jzlYVaKd/KBsq+l 3qpSShqKFz1w4aiX2UoCMiSRHnWTPxNn5/i6wNDj9pyd0VLMxtdSYCtAyn2/jgZe tIFki5yJFNLIfY2Bvv4NmsmdbLYV3TXvBPiwWji07sCsYbEO9iT4E/qNkwvFExeY mQRg0HIDJhnr7271dPYm2Fx272Pd0q0hlmfBiFUHQx5JfkFqI6CHWdNDIW++Mzem obEZPwHCBuuv4ivufu8dQprSQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu+oGSj Ph4jqs8JhHR0wHohaZirMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMUBm0uUwmGjhrTRLVK1ByrI3WVXvJ7PKF1fI2L5z/KNvVE3EkRs7w uQyDRX4VLvVPrqNLrWK0PGlhhFxMM3OcScYLGs+z6qoqodwYD87Q2Hdp2B9wUAv7 FEB0cfVJumujvifAW4ST5L0vfz2tV/3naxWF64zOj+0f5SifXb6LBW5kTR1zHd9C cojgga+IpXFlofM//GZhtOWoTQVsAvwyurRLaHSP7Bb0kO0x6VdFy/gFZ29fPL8y PUM/0ZItxiRPjcYGeh53dBgFPJ21rrK8dqqRDe0rNqKGJdaCa4SUUjSMImMMV6GD UWCYEiTdvJa4piA539d2oDiclrIXyD69 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org