$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: l37kfDhJ0+7KlLAXwtSpeqs08hSd/TeltrmQTl8DMak= Subject key identifier: 1C:10:DD:50:70:23:93:1B:10:C9:1C:03:4D:55:97:F1:35:19:68:CD Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 0778 Signing time: Wed 20 Nov 2024 20:53:44 +0000 Manifest this update: Wed 20 Nov 2024 20:53:43 +0000 Manifest next update: Wed 27 Nov 2024 20:53:43 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: hGXnC/IQ5QYXxKelPdS6J3LLVK0qDTD/pbujYoMHFoo=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: AGcGZOH2g6bV+K3FrKli6KkriXvPqSvE3RitkoEmp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Nov 20 20:53:43 2024 GMT Not After : Nov 27 20:53:43 2024 GMT Subject: CN=673e4c57-9fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c3:96:9c:1b:d7:8f:73:f8:8a:4e:99:a3:ad: 41:8e:6e:fd:d5:82:e2:02:89:a8:62:14:78:06:85: 39:92:83:c4:78:d9:6e:98:03:be:25:0b:0c:98:f7: 01:db:8c:b4:b4:f9:51:74:38:6d:fc:94:60:30:3b: 23:19:cf:ac:33:4b:9a:34:6f:57:9c:e0:c1:22:5a: 4f:95:fa:4d:77:8e:27:60:c7:11:ae:8b:bd:bb:ea: ed:6f:e6:8b:76:9d:e0:12:72:28:e3:f6:47:7c:97: 1f:88:1d:1b:cb:66:44:69:fc:96:a8:6a:d1:d2:6f: 56:c7:8e:7f:32:10:66:03:05:2e:b5:f2:c2:69:98: d8:f2:12:ed:67:ed:49:fd:08:87:ba:e4:16:f1:0d: 4e:ec:37:be:32:73:61:89:1e:66:2b:4e:cd:29:11: e0:2a:c6:92:a0:2c:35:7c:84:48:52:81:a6:98:79: 2c:07:e7:d9:21:e4:3f:07:42:3c:6b:ea:90:30:12: 02:71:c5:d2:cc:70:12:98:52:07:9c:15:c8:4a:89: 74:ee:99:93:aa:9e:5c:7e:2c:22:71:16:b4:5a:32: 1d:97:f8:0f:d1:b0:08:22:24:ac:3d:d8:22:0e:fb: 43:46:09:79:63:87:66:79:b0:ab:66:01:20:4c:51: 9d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:10:DD:50:70:23:93:1B:10:C9:1C:03:4D:55:97:F1:35:19:68:CD X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:6f:42:08:07:83:2a:fa:06:35:be:b6:3d:fa:1a:54:26:7a: 93:92:4b:af:3b:1d:ff:3e:94:7e:4a:72:94:ef:f2:bc:d7:56: c4:b7:10:7d:e3:3b:9f:0e:d8:90:01:99:65:b3:bd:72:23:4e: ed:ec:8c:29:72:32:2c:04:dc:0b:41:7a:b3:e2:7a:81:58:57: 0f:a3:37:fb:44:c9:71:52:03:c2:16:19:31:15:3c:be:18:9c: 5b:65:a4:b0:c6:4d:57:7a:fd:b2:56:1c:5e:af:15:9b:82:0a: f8:c3:95:7a:bd:a1:c8:91:64:ed:05:c7:35:ca:44:4f:50:35: 94:af:4a:4f:e2:35:28:28:47:0f:9a:95:cc:db:7b:d5:b3:46: 73:ad:ea:c9:c5:90:5a:42:76:f5:32:26:bf:fe:a1:45:12:71: 25:79:91:37:9c:13:39:c5:72:61:e8:88:f9:58:b7:33:32:a9: 7e:5b:f8:0d:00:4f:36:fe:9d:85:07:e4:d2:6e:0d:34:fb:17: 45:4b:e5:3c:51:58:73:76:1a:10:e7:a2:31:ad:78:09:71:80: 16:cc:01:92:f1:1a:bd:f9:8f:32:51:6e:06:f7:97:b7:21:15: ba:1b:65:2a:bf:3e:f3:14:3c:c2:7a:f7:8d:c2:e2:ae:7f:c8: 91:6d:76:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjQxMTIwMjA1MzQzWhcNMjQxMTI3MjA1MzQzWjAYMRYwFAYD VQQDEw02NzNlNGM1Ny05ZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMOWnBvXj3P4ik6Zo61Bjm791YLiAomoYhR4BoU5koPEeNlumAO+JQsMmPcB 24y0tPlRdDht/JRgMDsjGc+sM0uaNG9XnODBIlpPlfpNd44nYMcRrou9u+rtb+aL dp3gEnIo4/ZHfJcfiB0by2ZEafyWqGrR0m9Wx45/MhBmAwUutfLCaZjY8hLtZ+1J /QiHuuQW8Q1O7De+MnNhiR5mK07NKRHgKsaSoCw1fIRIUoGmmHksB+fZIeQ/B0I8 a+qQMBICccXSzHASmFIHnBXISol07pmTqp5cfiwicRa0WjIdl/gP0bAIIiSsPdgi DvtDRgl5Y4dmebCrZgEgTFGduQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwQ3VBw I5MbEMkcA01Vl/E1GWjNMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxb0IIB4Mq+gY1vrY9+hpUJnqTkkuvOx3/PpR+SnKU7/K811bEtxB9 4zufDtiQAZlls71yI07t7IwpcjIsBNwLQXqz4nqBWFcPozf7RMlxUgPCFhkxFTy+ GJxbZaSwxk1Xev2yVhxerxWbggr4w5V6vaHIkWTtBcc1ykRPUDWUr0pP4jUoKEcP mpXM23vVs0ZzrerJxZBaQnb1Mia//qFFEnEleZE3nBM5xXJh6Ij5WLczMql+W/gN AE82/p2FB+TSbg00+xdFS+U8UVhzdhoQ56IxrXgJcYAWzAGS8Rq9+Y8yUW4G95e3 IRW6G2Uqvz7zFDzCeveNwuKuf8iRbXa+ -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org