$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft File: 01nlbdoAA8SD861qQMCA6Qy41HI.mft (raw, json) Hash identifier: 3eQeJAJa4hdisBJebceTQRCvbKQ1BVL1mSwyIFbQRVE= Subject key identifier: 42:30:AB:91:0C:C6:6E:E4:02:30:F8:71:01:63:24:9F:31:ED:35:76 Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft Manifest number: 4A Signing time: Thu 21 Nov 2024 05:24:31 +0000 Manifest this update: Thu 21 Nov 2024 05:24:31 +0000 Manifest next update: Thu 28 Nov 2024 05:24:31 +0000 Files and hashes: 1: 01nlbdoAA8SD861qQMCA6Qy41HI.crl (hash: 03CtP3juXwhuooG9Yn/5gYYZ4E7Lr+Gf5YFcdNLeGGA=) 2: 97530E023D0911EFA33E4A38C4F9AE02.roa (hash: bWCEf7xphHzCuEdSJWfNIfntO4HJguemBgMtzB7ylYA=) 3: 573BE4DE3D0811EF84157B26C4F9AE02.roa (hash: nywG68ULgKtBcMdjYbgBHpATJxb1PptzCmatC6Dkc8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Validity Not Before: Nov 21 05:24:31 2024 GMT Not After : Nov 28 05:24:31 2024 GMT Subject: CN=673ec40f-ae66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:22:92:e2:ff:8a:e0:22:36:9a:a6:5e:2b: a3:af:2a:8a:90:73:fe:62:e2:9f:24:ff:a2:e1:15: 77:c1:03:34:f8:c5:a6:d6:bc:a5:4d:42:b2:2a:6c: 2b:93:d5:60:df:b3:db:d8:ba:5a:23:aa:9c:99:e9: d7:6b:67:33:9f:24:8e:eb:6e:a6:9c:6f:50:e4:c4: 0c:e0:86:4c:6f:e4:95:c1:fa:d5:4c:17:91:c2:87: 70:99:e0:4d:b3:54:6e:77:f3:09:c9:62:d1:cf:8b: 60:37:a4:23:0a:28:57:59:43:6e:f1:a1:ff:ff:21: a4:45:2f:4d:42:14:d4:e7:0e:81:42:6e:82:50:a1: df:c2:48:8f:02:41:a8:7b:39:e0:38:40:43:4b:56: 00:8d:8c:df:fb:23:b5:58:3c:5d:45:5c:59:ce:68: 4b:28:47:d1:54:aa:7f:43:52:ee:a3:63:6f:3b:0e: 2c:7d:4b:48:24:93:84:39:e1:bd:81:3f:43:7f:53: 8c:bf:31:ff:66:ab:b2:52:ab:f6:a8:7c:42:63:84: 18:4f:76:eb:74:0e:15:ce:25:23:97:7f:62:d6:68: 5a:1d:ea:b9:45:ac:37:eb:17:a7:75:f8:4e:c2:38: 65:bd:14:99:e6:41:00:97:cc:21:24:07:9a:78:33: b0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:30:AB:91:0C:C6:6E:E4:02:30:F8:71:01:63:24:9F:31:ED:35:76 X509v3 Authority Key Identifier: keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:94:75:b1:10:ab:35:12:02:dc:6a:c1:86:a0:67:32:a4:79: 02:e1:47:39:42:2f:64:d4:46:1c:dc:76:3b:3a:0f:37:8c:37: 07:d0:dd:d4:e5:2e:f7:10:44:85:3e:4f:77:fe:1f:09:56:8d: c3:50:63:e5:71:e6:b4:19:94:a7:35:09:59:9a:9a:2d:61:5e: af:70:cd:5c:c9:e3:29:92:34:75:12:84:de:8a:cf:24:64:82: 10:19:4c:44:b0:27:dc:9c:f0:90:00:66:83:65:0a:e2:1a:7a: 98:13:1e:d9:db:1b:67:f4:12:1d:56:5a:fd:77:49:c4:a9:4f: 41:1b:32:3c:a5:9d:29:d9:fd:66:09:fc:e4:e2:c8:24:cc:59: 39:41:85:35:2e:e4:b2:f0:3a:36:14:bd:c2:4f:6a:19:d0:91: e7:81:5d:c4:2a:52:c2:e5:2f:3b:d1:ea:36:38:d2:42:ff:84: 75:2f:41:03:7b:c2:45:42:82:2b:ae:ec:d4:6f:e4:d9:17:e5: 8c:04:cd:89:e6:f9:a4:ef:09:d0:d5:89:ee:00:5d:a2:f6:f8: b0:85:76:c7:3f:4a:e0:24:97:6c:95:7d:da:37:7f:fe:8c:bd: 84:01:b6:7f:3b:5b:5b:ff:7e:34:21:d0:63:c3:75:c4:10:01: 02:08:1f:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUIxQjExMC8GA1UEBRMoRDM1OUU1NkREQTAwMDNDNDgzRjNBRDZBNDBDMDgwRTkw Q0I4RDQ3MjAeFw0yNDExMjEwNTI0MzFaFw0yNDExMjgwNTI0MzFaMBgxFjAUBgNV BAMTDTY3M2VjNDBmLWFlNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNciKS4v+K4CI2mqZeK6OvKoqQc/5i4p8k/6LhFXfBAzT4xabWvKVNQrIqbCuT 1WDfs9vYulojqpyZ6ddrZzOfJI7rbqacb1DkxAzghkxv5JXB+tVMF5HCh3CZ4E2z VG538wnJYtHPi2A3pCMKKFdZQ27xof//IaRFL01CFNTnDoFCboJQod/CSI8CQah7 OeA4QENLVgCNjN/7I7VYPF1FXFnOaEsoR9FUqn9DUu6jY287Dix9S0gkk4Q54b2B P0N/U4y/Mf9mq7JSq/aofEJjhBhPdut0DhXOJSOXf2LWaFod6rlFrDfrF6d1+E7C OGW9FJnmQQCXzCEkB5p4M7BjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQjCrkQzG buQCMPhxAWMknzHtNXYwHwYDVR0jBBgwFoAU01nlbdoAA8SD861qQMCA6Qy41HIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5QjFCL0Y5RkVFMDQ2M0NG ODExRUZBMzY3QzM4NUM0RjlBRTAyLzAxbmxiZG9BQThTRDg2MXFRTUNBNlF5NDFI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDFubGJkb0FBOFNEODYxcVFNQ0E2UXk0MUhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 QjFCL0Y5RkVFMDQ2M0NGODExRUZBMzY3QzM4NUM0RjlBRTAyLzAxbmxiZG9BQThT RDg2MXFRTUNBNlF5NDFISS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEaUdbEQqzUSAtxqwYagZzKkeQLhRzlCL2TURhzcdjs6DzeMNwfQ3dTl LvcQRIU+T3f+HwlWjcNQY+Vx5rQZlKc1CVmami1hXq9wzVzJ4ymSNHUShN6KzyRk ghAZTESwJ9yc8JAAZoNlCuIaepgTHtnbG2f0Eh1WWv13ScSpT0EbMjylnSnZ/WYJ /OTiyCTMWTlBhTUu5LLwOjYUvcJPahnQkeeBXcQqUsLlLzvR6jY40kL/hHUvQQN7 wkVCgiuu7NRv5NkX5YwEzYnm+aTvCdDVie4AXaL2+LCFdsc/SuAkl2yVfdo3f/6M vYQBtn87W1v/fjQh0GPDdcQQAQIIH3A= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org