$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: TbMlK4dzaEujCSeYsTTXXvX83y9BwffAlo66cNZDSGA= Subject key identifier: 41:55:E3:87:90:36:5B:C3:B6:00:4E:8D:AF:35:75:9A:59:33:BE:6C Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1DBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1D89 Signing time: Fri 22 Nov 2024 16:08:08 +0000 Manifest this update: Fri 22 Nov 2024 16:08:07 +0000 Manifest next update: Fri 29 Nov 2024 16:08:07 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: 4U8XYJGMLiWP+CUBt+1InGB2YSIyIRXgUKJ8d2+ibHE=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: T96ePwaxRSdFBmc3Y6k58ry+6iGVCBzjCHazC1p/+dY=) 3: 0CE1846A9F5111EA9DED6709C4F9AE02.roa (hash: B/bCJO6T7u46j6kLkR9XNeEfqPoDNHNxyEx5pB7FwHs=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: PZql/d1vwq6a5me1tWglT8kuvqcERq7TMmDMG3CMCJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7615 (0x1dbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Nov 22 16:08:07 2024 GMT Not After : Nov 29 16:08:07 2024 GMT Subject: CN=6740ac68-16ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:38:12:ae:72:cc:a8:16:9a:b7:de:08:74: 43:73:45:30:c3:7c:0a:17:3d:de:85:a1:73:b1:ac: 8d:82:d9:3e:5f:10:85:47:99:03:a0:90:a0:e7:bb: d6:b6:07:9c:b3:89:6c:1b:63:6d:72:af:64:4b:d4: e4:1c:08:c1:f7:83:2f:dc:02:eb:09:69:5c:d8:42: e4:c1:39:b0:68:a8:f6:8c:f3:87:48:af:8a:96:02: 4d:42:af:d7:cb:c2:1c:3c:39:7f:6d:f7:74:77:9e: d0:d6:2f:7c:1a:60:bb:ff:cc:8d:5c:5f:72:07:37: fc:5a:76:4f:b5:cc:37:65:8a:dd:79:68:28:bf:e6: 39:85:2e:30:a3:1c:37:cd:c8:76:a9:54:c7:52:fd: 19:e4:52:71:81:8d:ab:40:cf:8d:a6:a0:39:6a:df: 85:c4:5d:aa:f0:be:61:11:24:34:80:28:4e:6e:94: a2:97:b1:e2:06:eb:ce:50:8b:cc:bb:c2:cc:90:31: 2f:fc:b5:18:84:b6:c2:dc:d9:b2:3d:0e:d2:a6:d0: b9:9e:fd:47:d1:0e:34:88:13:a5:79:f8:49:40:1b: b5:cf:dc:0a:cc:c6:f8:95:45:8c:1e:67:08:6d:23: de:7c:88:6c:82:c7:dc:52:f2:a0:ee:69:7e:b5:ca: 40:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:55:E3:87:90:36:5B:C3:B6:00:4E:8D:AF:35:75:9A:59:33:BE:6C X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:2b:e0:81:be:ed:0a:a6:83:9c:23:c7:0e:7a:b3:f7:02:59: 52:7c:cb:6a:5a:99:80:75:e3:18:28:71:5a:09:b4:d7:55:0d: 93:8d:6e:1e:66:15:8d:99:09:e2:d9:d9:05:2a:07:fe:d9:8c: 84:1e:b8:08:d3:ce:3c:ae:59:4d:db:cc:ae:84:29:bb:14:4b: 25:19:f0:ec:98:a6:91:38:e1:5e:b8:16:78:93:01:f0:66:3c: 44:0f:03:2e:60:37:f1:d5:f4:2d:47:a3:b5:46:61:81:e0:50: 46:8e:3f:78:a5:89:9f:5e:0c:5b:97:f6:58:71:57:2b:ca:f8: 19:f2:41:70:0f:bf:df:9d:ba:06:05:e7:c3:1a:c4:00:86:d3: 43:11:dd:f6:8f:b3:fb:ed:49:a1:88:0e:ce:25:ce:85:b3:e2: b5:2b:7d:25:8b:77:93:da:70:42:23:e5:d2:35:8e:0b:b5:8b: 11:df:33:75:43:45:04:42:19:ae:4e:97:df:ae:66:48:5b:20: a6:44:2d:7b:18:e9:a6:e8:7c:63:6d:3e:9c:86:c7:75:26:d0: 87:5d:16:0e:0d:d8:67:33:83:d7:fa:00:14:79:c6:72:c7:54: b5:2d:5e:6b:60:b0:9b:5a:9c:18:44:d2:c4:c9:f7:76:e6:77: fa:41:9d:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjQxMTIyMTYwODA3WhcNMjQxMTI5MTYwODA3WjAYMRYwFAYD VQQDEw02NzQwYWM2OC0xNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3v44Eq5yzKgWmrfeCHRDc0Uww3wKFz3ehaFzsayNgtk+XxCFR5kDoJCg57vW tgecs4lsG2Ntcq9kS9TkHAjB94Mv3ALrCWlc2ELkwTmwaKj2jPOHSK+KlgJNQq/X y8IcPDl/bfd0d57Q1i98GmC7/8yNXF9yBzf8WnZPtcw3ZYrdeWgov+Y5hS4woxw3 zch2qVTHUv0Z5FJxgY2rQM+NpqA5at+FxF2q8L5hESQ0gChObpSil7HiBuvOUIvM u8LMkDEv/LUYhLbC3NmyPQ7SptC5nv1H0Q40iBOlefhJQBu1z9wKzMb4lUWMHmcI bSPefIhsgsfcUvKg7ml+tcpANQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFV44eQ NlvDtgBOja81dZpZM75sMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtK+CBvu0KpoOcI8cOerP3AllSfMtqWpmAdeMYKHFaCbTXVQ2TjW4e ZhWNmQni2dkFKgf+2YyEHrgI0848rllN28yuhCm7FEslGfDsmKaROOFeuBZ4kwHw ZjxEDwMuYDfx1fQtR6O1RmGB4FBGjj94pYmfXgxbl/ZYcVcryvgZ8kFwD7/fnboG BefDGsQAhtNDEd32j7P77UmhiA7OJc6Fs+K1K30li3eT2nBCI+XSNY4LtYsR3zN1 Q0UEQhmuTpffrmZIWyCmRC17GOmm6HxjbT6chsd1JtCHXRYODdhnM4PX+gAUecZy x1S1LV5rYLCbWpwYRNLEyfd25nf6QZ2u -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org