$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: wj0Q85PqvwiS5ehDtE9LAz4Vh9U6dZOQjHKZRVHtC20= Subject key identifier: C8:22:40:94:94:03:A3:94:5F:F0:B8:FF:12:7B:E8:19:9C:80:69:71 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 18 Signing time: Wed 23 Oct 2024 06:47:53 +0000 Manifest this update: Wed 23 Oct 2024 06:47:53 +0000 Manifest next update: Wed 30 Oct 2024 06:47:53 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: L8w3/FmM/F/NiDsG6r25b1dV0orlL4IuJuLzWkLkf2w=) 2: DF9032C086FC11EFB8F21533C4F9AE02.roa (hash: ah12vxDCIjJ63SOO0SSaZz08aLDFFA1kIue2J5FKGUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Oct 23 06:47:53 2024 GMT Not After : Oct 30 06:47:53 2024 GMT Subject: CN=67189c19-86f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2e:2b:63:a5:b7:8a:88:1e:30:57:16:57:c2: d7:ae:3d:dd:47:e5:d8:a1:26:42:72:f3:d4:cd:cb: 1f:b6:7a:d1:a8:c1:14:92:50:8e:5c:27:5d:cb:12: eb:84:42:0a:76:f4:1e:50:b5:bd:fd:65:f7:0f:75: c5:7b:67:cb:e6:ff:1b:8d:cb:8b:82:a0:51:de:5a: c4:aa:4b:5e:36:ca:49:84:f3:8d:7b:f2:f4:31:b4: dc:b4:94:33:47:e3:c3:32:76:e3:f4:e1:78:7c:9a: a1:78:b9:e3:bd:ab:48:4f:82:18:7e:af:81:9d:f5: 11:49:77:c2:b2:e7:18:19:76:1c:d7:71:2c:be:07: c1:6d:40:81:96:04:84:28:c0:b7:c0:e7:ad:ad:d0: 64:ac:f0:e1:f6:c7:58:e5:d0:e3:db:32:60:0c:4b: e6:35:f2:05:ae:91:df:91:94:9d:19:54:79:e3:b1: d0:7c:84:e4:5c:10:ed:08:ec:e8:2f:fc:c6:fb:38: 30:06:e6:9d:24:6b:42:c5:58:5a:bc:41:42:06:1d: ce:42:aa:08:8f:ed:cc:c8:25:27:5d:60:16:86:8e: a2:75:9c:ee:66:38:29:67:fd:b6:8f:c0:86:86:85: a4:36:56:de:95:31:67:cd:e2:b1:97:36:0a:4a:7a: a4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:22:40:94:94:03:A3:94:5F:F0:B8:FF:12:7B:E8:19:9C:80:69:71 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:cc:68:32:21:f2:f4:f3:db:ca:6c:3f:ef:c8:e8:32:77:96: 07:b7:c5:a3:28:a2:de:39:da:57:5f:32:5e:57:7a:9f:fa:6b: 1d:de:dd:eb:86:ea:48:50:ed:ad:a6:ae:b6:ab:51:30:b0:02: 7d:63:44:e1:60:8f:32:82:ed:be:f3:ac:c8:d3:22:15:54:a7: 3f:c6:f8:7c:49:e8:54:35:29:5d:e1:3a:bc:23:d4:44:2f:ee: 0e:a9:06:71:39:d4:4b:93:b3:5f:9b:16:31:c7:64:52:b9:21: bd:0e:bf:76:c8:25:aa:ad:e4:20:91:b1:a2:a0:57:73:74:36: 33:17:7c:8e:7d:14:46:30:e4:85:17:6a:0a:2d:b5:6d:a9:4c: 7c:85:f0:37:27:2e:bb:8e:e2:c1:f9:19:48:37:d8:26:45:0c: 07:95:ed:2b:2c:72:de:e6:98:1a:b1:7d:d4:ff:ea:f3:e9:c4: 97:b1:21:8f:64:7b:b2:80:f8:ea:4d:ff:19:53:53:d8:4e:ea: c6:a5:d1:13:a4:a7:d0:03:52:bf:1e:47:b9:e1:6f:0d:b0:ad: 93:7e:cf:4a:b8:2c:d9:30:6e:e3:fc:97:dd:37:de:14:7c:a2: 1c:59:88:15:0f:8c:7d:75:7a:21:e6:00:9c:6a:91:b5:10:07: f2:67:9b:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoMzU3NDc5MEQ4REY4MkIzQjU1MUUzQjcwMjU3MUJBRjU1 QTlFOTk2MTAeFw0yNDEwMjMwNjQ3NTNaFw0yNDEwMzAwNjQ3NTNaMBgxFjAUBgNV BAMTDTY3MTg5YzE5LTg2ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLLitjpbeKiB4wVxZXwteuPd1H5dihJkJy89TNyx+2etGowRSSUI5cJ13LEuuE Qgp29B5Qtb39ZfcPdcV7Z8vm/xuNy4uCoFHeWsSqS142ykmE84178vQxtNy0lDNH 48MyduP04Xh8mqF4ueO9q0hPghh+r4Gd9RFJd8Ky5xgZdhzXcSy+B8FtQIGWBIQo wLfA562t0GSs8OH2x1jl0OPbMmAMS+Y18gWukd+RlJ0ZVHnjsdB8hORcEO0I7Ogv /Mb7ODAG5p0ka0LFWFq8QUIGHc5CqgiP7czIJSddYBaGjqJ1nO5mOCln/baPwIaG haQ2Vt6VMWfN4rGXNgpKeqTbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyCJAlJQD o5Rf8Lj/EnvoGZyAaXEwHwYDVR0jBBgwFoAUNXR5DY34KztVHjtwJXG69VqemWEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzZCNUQyQTdDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1X RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTlhSNURZMzRLenRWSGp0d0pYRzY5VnFlbVdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE NDBCLzZCNUQyQTdDODU1QjExRUZCMDU3NkQ0MEM0RjlBRTAyL05YUjVEWTM0S3p0 VkhqdHdKWEc2OVZxZW1XRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFHMaDIh8vTz28psP+/I6DJ3lge3xaMoot452ldfMl5Xep/6ax3e3euG 6khQ7a2mrrarUTCwAn1jROFgjzKC7b7zrMjTIhVUpz/G+HxJ6FQ1KV3hOrwj1EQv 7g6pBnE51EuTs1+bFjHHZFK5Ib0Ov3bIJaqt5CCRsaKgV3N0NjMXfI59FEYw5IUX agottW2pTHyF8DcnLruO4sH5GUg32CZFDAeV7Sssct7mmBqxfdT/6vPpxJexIY9k e7KA+OpN/xlTU9hO6sal0ROkp9ADUr8eR7nhbw2wrZN+z0q4LNkwbuP8l9033hR8 ohxZiBUPjH11eiHmAJxqkbUQB/JnmxU= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org