$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json) Hash identifier: fBJBkF6vFRdrnansIB6yloPCZCflwqKi4fBXndytJlA= Subject key identifier: 88:E3:17:B6:25:FF:17:62:CF:FD:E7:77:BB:EB:AE:58:95:3B:2F:AC Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Certificate serial: 111A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft Manifest number: 1108 Signing time: Fri 22 Nov 2024 17:17:29 +0000 Manifest this update: Fri 22 Nov 2024 17:17:28 +0000 Manifest next update: Fri 29 Nov 2024 17:17:28 +0000 Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: pQym4b9ke0E+vWY+mruNtHAOoAUGDSp03h0YWy+CdD8=) 2: 4EF3836CF11C11EB8CA9C866C4F9AE02.roa (hash: fH/sz2m2s1/H8ir4lRWNKvgFkdVm+RXB2n5Wzz2ZOaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4378 (0x111a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Validity Not Before: Nov 22 17:17:28 2024 GMT Not After : Nov 29 17:17:28 2024 GMT Subject: CN=6740bca9-6d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ed:7d:17:12:ea:29:9a:ce:9d:a1:ec:7e:a3: 46:43:30:2b:30:60:55:5d:3a:2a:a2:09:ea:6d:60: 5c:d0:e8:8d:63:4c:4a:87:e8:05:d4:2f:ae:f3:c0: 73:bc:ef:16:fc:63:61:78:dd:80:fb:bc:23:d3:15: 03:ff:d5:83:95:0a:d6:92:9d:7e:55:5b:ee:4c:10: 81:11:4e:24:1d:5e:54:48:7b:0c:48:89:8f:f7:0a: c4:5d:11:00:53:de:dc:fe:17:d3:7e:e3:12:4b:69: 52:fc:cb:19:cc:df:52:34:15:e7:98:69:74:d7:12: 37:7b:1c:37:c3:7c:9f:96:db:71:5f:c7:89:36:79: d5:d4:38:02:a3:08:ec:61:c2:e3:8f:d6:fd:fa:d4: 40:1d:c1:dc:fb:f3:b8:72:7f:ef:ff:b1:4c:0f:2f: 14:ca:5e:79:8b:c8:87:9c:14:fe:d4:01:2f:70:e0: 75:1f:4c:8b:a1:9b:3c:3b:16:01:11:c6:9a:3f:86: b3:3c:0d:fe:bc:32:a5:70:b5:06:50:f2:1f:4b:b8: 01:4b:89:99:3c:30:3b:ac:ab:85:07:02:11:91:3e: 55:2b:e2:f3:c8:8d:1f:eb:3d:f1:a3:d5:86:bf:6f: 2b:aa:06:23:7c:b9:73:0f:91:58:6a:04:41:14:76: 45:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E3:17:B6:25:FF:17:62:CF:FD:E7:77:BB:EB:AE:58:95:3B:2F:AC X509v3 Authority Key Identifier: keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:af:54:90:ce:09:29:3c:b9:a8:11:5e:1b:19:a4:5c:b8:38: 06:4c:c1:9b:15:1f:c8:c5:b2:0c:82:d6:4b:a5:12:27:d3:12: 49:da:d3:66:2d:21:4e:8b:b1:24:e6:c6:09:e7:d7:65:06:b8: 42:97:b6:36:5e:8c:45:a5:c8:c3:4b:b4:cf:0c:70:61:bf:5a: 0a:79:54:06:7d:da:c5:46:2d:c5:dd:c4:72:ce:c3:52:a3:6d: 20:78:7b:32:0e:b5:f5:f6:dc:b5:b0:bb:72:18:83:c9:ba:4f: c2:d5:11:31:25:9b:48:7b:8a:3f:30:68:db:57:2a:bd:77:ab: c5:e9:6d:e9:2f:e0:20:f7:79:38:38:9e:b7:a5:7f:1f:5b:1e: 5c:2f:f9:cd:8d:8a:f6:73:37:70:76:7e:41:35:75:6c:00:a6: da:35:52:26:dc:4c:59:67:40:12:39:9e:d9:38:8f:e6:95:fe: c1:a9:4c:00:5e:6e:c2:7b:6b:b0:79:ac:ec:96:34:04:8d:08: 23:13:7e:a4:b7:7e:33:f2:9c:5c:d3:86:1c:1e:03:95:b2:3e: 36:b6:27:4b:a1:3c:dc:de:5e:6e:0a:19:ef:b9:04:6e:12:2b: d0:d8:47:cb:36:46:be:51:02:c4:48:6a:26:72:19:14:eb:72: 47:41:4a:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF ODJCRDQzOUEwHhcNMjQxMTIyMTcxNzI4WhcNMjQxMTI5MTcxNzI4WjAYMRYwFAYD VQQDEw02NzQwYmNhOS02ZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2u19FxLqKZrOnaHsfqNGQzArMGBVXToqognqbWBc0OiNY0xKh+gF1C+u88Bz vO8W/GNheN2A+7wj0xUD/9WDlQrWkp1+VVvuTBCBEU4kHV5USHsMSImP9wrEXREA U97c/hfTfuMSS2lS/MsZzN9SNBXnmGl01xI3exw3w3yflttxX8eJNnnV1DgCowjs YcLjj9b9+tRAHcHc+/O4cn/v/7FMDy8Uyl55i8iHnBT+1AEvcOB1H0yLoZs8OxYB EcaaP4azPA3+vDKlcLUGUPIfS7gBS4mZPDA7rKuFBwIRkT5VK+LzyI0f6z3xo9WG v28rqgYjfLlzD5FYagRBFHZFAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjjF7Yl /xdiz/3nd7vrrliVOy+sMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0 RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIr1SQzgkpPLmoEV4bGaRcuDgGTMGbFR/IxbIMgtZLpRIn0xJJ2tNm LSFOi7Ek5sYJ59dlBrhCl7Y2XoxFpcjDS7TPDHBhv1oKeVQGfdrFRi3F3cRyzsNS o20geHsyDrX19ty1sLtyGIPJuk/C1RExJZtIe4o/MGjbVyq9d6vF6W3pL+Ag93k4 OJ63pX8fWx5cL/nNjYr2czdwdn5BNXVsAKbaNVIm3ExZZ0ASOZ7ZOI/mlf7BqUwA Xm7Ce2uweazsljQEjQgjE36kt34z8pxc04YcHgOVsj42tidLoTzc3l5uChnvuQRu EivQ2EfLNka+UQLESGomchkU63JHQUoy -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org