$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: N03XQXrjy7j8uV3+5azAzknWxhpfxQGpFPlQ5cnPd2M= Subject key identifier: 26:E0:C9:82:F5:10:4D:F5:BE:31:4F:CB:13:1E:4E:43:15:C5:D9:74 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 080D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 0808 Signing time: Fri 22 Nov 2024 20:35:08 +0000 Manifest this update: Fri 22 Nov 2024 20:35:08 +0000 Manifest next update: Fri 29 Nov 2024 20:35:08 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: aAp8pR9fe/th/FsBsAB6qV1n28qkzPWjDwlwfIWdy8c=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: 7JqfyMrbJ4CL7Io5TdtHAHWsu8lXWZvGXH4eXClkDWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2061 (0x80d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Nov 22 20:35:08 2024 GMT Not After : Nov 29 20:35:08 2024 GMT Subject: CN=6740eafc-318b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e3:f0:15:4e:a8:ff:4a:12:66:58:ac:c4:87: 82:6e:b0:4c:7a:7c:4f:5c:a0:10:53:80:f7:7d:02: 2f:7f:0f:8b:4d:2c:9d:af:ba:a6:2a:9d:da:c9:a4: d8:4d:bc:73:24:26:43:9e:4f:c4:15:36:77:2d:e5: e1:92:7f:e0:32:a2:f4:d6:51:77:19:9d:4c:f3:33: 13:f8:1c:2b:3d:28:ea:d3:4e:a4:84:5a:ce:c5:1f: 33:f2:02:c5:77:9f:e3:09:78:01:82:07:36:8a:f2: 8d:85:15:9e:be:09:2b:6b:75:79:7f:f6:a4:b6:42: d0:ea:dc:56:7c:f7:e4:3a:94:b8:e7:50:1c:e6:d0: ee:6b:c8:3d:8e:d1:c5:29:e9:e8:9f:6b:07:40:62: f4:70:52:07:cb:d2:53:c3:60:10:35:34:9b:ed:83: dc:08:6d:5d:a0:4e:d3:ad:9b:22:f1:ed:0b:79:5a: bb:ee:20:ce:66:53:46:fc:1f:69:c2:dd:cb:03:cd: 3f:fb:03:55:3f:0c:89:f9:4e:4d:22:77:7b:a2:8d: 40:40:bc:c2:7e:bb:ed:3a:43:af:cc:d9:22:78:21: e1:9f:fd:82:c3:b2:c2:e7:d8:02:20:7d:13:44:d4: f1:df:07:9b:1b:cc:0b:61:ad:74:09:37:72:37:f4: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E0:C9:82:F5:10:4D:F5:BE:31:4F:CB:13:1E:4E:43:15:C5:D9:74 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:01:26:2e:0e:29:f2:e0:01:21:42:9a:1e:2b:fa:56:c5:ed: ea:7f:96:c8:8b:4a:ff:c0:97:78:e0:18:f0:cb:8d:31:72:5f: e5:1f:da:62:83:d5:9d:4b:42:f6:68:78:26:5e:3f:f6:e1:cb: 4a:ae:9b:56:fa:99:df:47:01:dc:98:cf:cf:96:50:43:65:09: 11:6d:bd:bd:71:9d:a9:79:4c:25:3c:2b:91:79:39:ba:07:ed: 8e:82:ba:e2:06:c6:91:bd:79:98:63:31:07:df:ba:2f:11:08: 96:8d:7f:d7:14:7c:45:78:e1:4f:d2:57:c5:19:76:c2:40:68: ed:b2:54:01:6d:07:61:42:b5:b7:1d:ed:49:f9:87:98:64:63: 97:13:b3:a1:fb:8e:56:15:3a:d6:75:0c:99:97:da:72:80:43: 0a:dd:7c:14:95:34:d0:ad:6c:a8:6e:ae:fa:68:61:ec:46:9c: 00:e8:a1:68:3d:72:e4:50:f2:2b:91:25:ff:b4:28:cb:d1:b7: 82:96:9a:87:c5:59:02:3c:c1:d4:a2:64:3e:7a:66:41:db:d3: 9d:47:d6:c3:6e:81:a1:25:d6:08:f1:9c:22:8e:84:08:3d:8a: fc:e6:db:48:d6:ce:f9:38:b9:80:10:35:73:09:5a:7d:4a:c2: e8:a9:99:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjQxMTIyMjAzNTA4WhcNMjQxMTI5MjAzNTA4WjAYMRYwFAYD VQQDEw02NzQwZWFmYy0zMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+PwFU6o/0oSZlisxIeCbrBMenxPXKAQU4D3fQIvfw+LTSydr7qmKp3ayaTY TbxzJCZDnk/EFTZ3LeXhkn/gMqL01lF3GZ1M8zMT+BwrPSjq006khFrOxR8z8gLF d5/jCXgBggc2ivKNhRWevgkra3V5f/aktkLQ6txWfPfkOpS451Ac5tDua8g9jtHF Kenon2sHQGL0cFIHy9JTw2AQNTSb7YPcCG1doE7TrZsi8e0LeVq77iDOZlNG/B9p wt3LA80/+wNVPwyJ+U5NInd7oo1AQLzCfrvtOkOvzNkieCHhn/2Cw7LC59gCIH0T RNTx3webG8wLYa10CTdyN/RjRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbgyYL1 EE31vjFPyxMeTkMVxdl0MB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ASYuDiny4AEhQpoeK/pWxe3qf5bIi0r/wJd44Bjwy40xcl/lH9pi g9WdS0L2aHgmXj/24ctKrptW+pnfRwHcmM/PllBDZQkRbb29cZ2peUwlPCuReTm6 B+2OgrriBsaRvXmYYzEH37ovEQiWjX/XFHxFeOFP0lfFGXbCQGjtslQBbQdhQrW3 He1J+YeYZGOXE7Oh+45WFTrWdQyZl9pygEMK3XwUlTTQrWyobq76aGHsRpwA6KFo PXLkUPIrkSX/tCjL0beClpqHxVkCPMHUomQ+emZB29OdR9bDboGhJdYI8ZwijoQI PYr85ttI1s75OLmAEDVzCVp9SsLoqZkk -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org