$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: 7tBq9bIyeauONdmqO8lsn1QocUuZxwdX25U7Vyh74Ug= Subject key identifier: F9:BF:CE:A3:6D:8E:5D:1D:5B:E0:FD:82:D0:7C:42:4F:A9:AD:13:1A Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: A4 Signing time: Thu 21 Nov 2024 04:26:33 +0000 Manifest this update: Thu 21 Nov 2024 04:26:32 +0000 Manifest next update: Thu 28 Nov 2024 04:26:32 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: A25hs+zcr8lU8IGiITBc+a27xpx3f7/DqH5ODMYv+Rc=) 2: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: KEgLk+hGlo+ZizW1vX2gzUtxbx7GiIfh4Mia0eW5+6w=) 3: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: JxI86Wejjp4xvatXjkIX7nssbC2BudoqYiXNb8glC5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Nov 21 04:26:32 2024 GMT Not After : Nov 28 04:26:32 2024 GMT Subject: CN=673eb678-d776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b3:e6:5c:eb:3a:29:89:43:6c:00:89:95:5d: 5f:51:8c:c2:97:16:1d:40:7b:d0:60:df:a1:17:ca: 18:0c:2d:9c:18:1a:81:eb:a8:9f:f0:76:b4:5e:14: e5:ce:b2:a2:83:e0:4b:f4:12:d1:ff:6a:a8:2e:8f: 89:4f:c0:75:40:73:0d:7d:68:16:30:f1:eb:70:a8: a3:9a:62:46:2d:f0:be:e4:f6:ec:ea:27:4c:5d:88: 98:b9:fe:c1:80:54:29:25:ed:6e:f2:bb:e2:78:f0: 14:9d:13:7b:fc:10:a1:2f:17:c9:27:37:2d:28:26: 3f:bd:72:7a:b0:aa:dc:31:09:8a:36:0f:19:2f:a3: 19:5f:4f:8a:53:56:87:d9:b7:24:58:ab:60:94:65: 4b:31:b7:33:9e:64:ae:4f:a8:2d:43:f8:d6:c6:9f: c0:6a:e1:04:96:21:5d:a8:1d:4c:55:71:e1:1d:ee: 6e:d8:b8:82:38:ca:41:cd:22:d0:d4:31:84:2b:3d: dc:16:80:d8:85:26:dc:13:14:ae:82:56:c2:47:d7: 7a:fe:3c:02:4e:4d:f1:1f:f5:39:7e:96:ca:a4:3f: 1b:6c:cf:2f:c3:af:ba:7a:c3:b4:90:7f:ff:75:a9: 43:f8:06:6e:f6:85:63:f6:eb:2b:2d:2e:72:80:ca: f7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:BF:CE:A3:6D:8E:5D:1D:5B:E0:FD:82:D0:7C:42:4F:A9:AD:13:1A X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:92:51:c4:33:27:97:d4:92:a8:4b:d6:c0:4f:92:00:37:16: 25:d7:64:c5:53:84:c3:8b:97:63:ab:8c:7f:9b:83:4d:55:ac: bd:a5:4a:f2:c1:41:8e:79:92:33:a4:87:53:7f:bf:56:1a:df: 1b:a0:89:21:3c:04:1f:7c:00:ae:f2:f8:01:7a:50:92:e8:bf: 18:72:65:b7:cf:56:c7:45:23:e9:5d:2e:1f:4a:3e:89:51:2e: b1:e4:d1:1c:2b:8d:b8:08:50:52:f6:86:a5:c7:3a:c0:82:4e: 3e:e9:ab:4e:65:bc:b9:4b:8e:c5:50:a3:ad:0a:3b:bd:47:5d: de:c4:5f:cf:de:af:54:10:2a:69:a5:8e:f3:e1:89:7b:5c:b1: 46:ea:13:9d:56:34:82:0b:d9:b8:d3:ca:fb:1d:18:59:6a:52: c4:c2:c3:e5:81:54:db:e3:e6:c0:72:8a:1c:55:5c:81:32:d4: 05:2c:e9:d2:0b:46:f0:89:17:59:35:c8:f4:82:b3:9d:22:a9: 04:13:76:5d:38:10:1f:a1:02:f6:62:a2:98:18:6b:12:0a:b3: f8:23:77:b9:69:d8:98:0c:94:af:bd:0d:bf:60:8c:75:b9:dd: d6:bb:f3:82:02:e6:df:d9:65:99:1d:d7:10:32:10:62:3d:32: b4:52:83:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjQxMTIxMDQyNjMyWhcNMjQxMTI4MDQyNjMyWjAYMRYwFAYD VQQDEw02NzNlYjY3OC1kNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7PmXOs6KYlDbACJlV1fUYzClxYdQHvQYN+hF8oYDC2cGBqB66if8Ha0XhTl zrKig+BL9BLR/2qoLo+JT8B1QHMNfWgWMPHrcKijmmJGLfC+5Pbs6idMXYiYuf7B gFQpJe1u8rviePAUnRN7/BChLxfJJzctKCY/vXJ6sKrcMQmKNg8ZL6MZX0+KU1aH 2bckWKtglGVLMbcznmSuT6gtQ/jWxp/AauEEliFdqB1MVXHhHe5u2LiCOMpBzSLQ 1DGEKz3cFoDYhSbcExSuglbCR9d6/jwCTk3xH/U5fpbKpD8bbM8vw6+6esO0kH// dalD+AZu9oVj9usrLS5ygMr3+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPm/zqNt jl0dW+D9gtB8Qk+prRMaMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYklHEMyeX1JKoS9bAT5IANxYl12TFU4TDi5djq4x/m4NNVay9pUry wUGOeZIzpIdTf79WGt8boIkhPAQffACu8vgBelCS6L8YcmW3z1bHRSPpXS4fSj6J US6x5NEcK424CFBS9oalxzrAgk4+6atOZby5S47FUKOtCju9R13exF/P3q9UECpp pY7z4Yl7XLFG6hOdVjSCC9m408r7HRhZalLEwsPlgVTb4+bAcoocVVyBMtQFLOnS C0bwiRdZNcj0grOdIqkEE3ZdOBAfoQL2YqKYGGsSCrP4I3e5adiYDJSvvQ2/YIx1 ud3Wu/OCAubf2WWZHdcQMhBiPTK0UoPi -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:05 2024 by rpki-client on console-fra.rpki-client.org