$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft File: N2A9suBywKj9cROOJUCZ9MrYwW8.mft (raw, json) Hash identifier: MOrFGDu0jAl895inYm7w4vKlLrce3GGp7x7ygeaSl2E= Subject key identifier: 7D:15:DE:82:E6:13:FD:F4:74:DB:28:D1:7E:87:47:AB:8A:5F:14:C9 Authority key identifier: 37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F Certificate issuer: /CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft Manifest number: 01C3 Signing time: Thu 21 Nov 2024 01:48:47 +0000 Manifest this update: Thu 21 Nov 2024 01:48:47 +0000 Manifest next update: Thu 28 Nov 2024 01:48:46 +0000 Files and hashes: 1: N2A9suBywKj9cROOJUCZ9MrYwW8.crl (hash: wsn6gAgelkhLAVLBFy6NMFE8UCllbU1TP+WLcMp7Sl4=) 2: AB68CE76346511EDAC41E081C4F9AE02.roa (hash: me5m52MXo4l0JWieAZh5/5JLHzGNaxm9iecnfymMcU4=) 3: 14B312EC3AE711EDBF700472C4F9AE02.roa (hash: jkOQ3dPuDLNPKoML9QUoAglZcGE8mWGDMaT0FDV/Rrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Validity Not Before: Nov 21 01:48:47 2024 GMT Not After : Nov 28 01:48:46 2024 GMT Subject: CN=673e917f-0e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1a:28:08:a2:dd:bc:ef:75:a9:9c:94:43:55: 80:a1:66:f3:01:dc:f8:96:00:c2:09:c2:1f:8a:63: 11:b4:c7:73:cc:f0:7c:d3:97:8d:9c:cf:3b:ee:30: 22:dd:38:89:50:dd:85:79:92:f0:fd:5e:b6:c1:30: e0:83:28:16:66:b0:41:0b:d8:2e:6b:bf:41:1c:9c: 70:06:d7:bc:02:55:c8:9e:49:05:33:8b:d1:76:8d: a8:ce:d5:b0:f8:59:26:1d:de:15:b7:2b:40:60:29: 53:a2:d1:9c:2b:f8:2d:19:ab:70:a9:56:83:5f:a5: 0f:31:f8:67:c2:4e:64:0b:9f:93:27:9f:5d:92:bd: b7:01:e1:7c:a3:fa:d4:23:38:77:09:7e:32:e6:87: 55:48:f6:d7:89:e4:b8:26:17:d3:69:b4:a3:27:c0: 84:7d:9a:49:cc:01:2b:dd:6b:cb:db:10:f5:bb:d9: d1:cc:8e:5c:05:27:c3:45:d0:ac:09:38:2b:2e:40: ea:c0:8d:1b:24:4e:17:eb:a6:a3:9e:94:1d:57:c0: 07:1b:a7:cb:c6:01:57:2b:6d:b6:3e:63:43:cf:d9: 20:5b:b5:9d:21:a9:01:d7:c1:af:57:09:6e:d7:25: 4e:88:d3:22:e7:eb:48:be:9b:ef:2e:12:7b:b9:42: 1a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:15:DE:82:E6:13:FD:F4:74:DB:28:D1:7E:87:47:AB:8A:5F:14:C9 X509v3 Authority Key Identifier: keyid:37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2c:f0:d2:98:68:61:91:5c:36:33:ac:5b:ed:67:6e:a5:6c: ef:35:d4:ec:1b:c9:ce:fc:9a:e0:fd:7e:27:30:24:42:ae:1a: 16:9c:ca:95:29:7e:8b:29:0f:28:f6:69:33:7d:fd:f2:cf:c1: 98:ae:e7:e0:28:30:22:1a:49:ef:4c:0a:d6:f0:7e:4a:f4:e8: e6:e2:ed:a9:c5:c7:7f:58:b7:32:f5:61:c6:64:86:4b:02:e2: 1a:22:3e:71:f1:17:c7:58:82:fc:c7:52:ef:f9:5b:1d:a7:c7: d9:d1:e0:89:10:5b:c4:7f:d2:ae:8b:5a:e9:5f:a6:40:0e:ba: 0e:7d:a1:7b:06:01:76:ca:e8:e9:91:49:a9:2a:33:fa:dc:e1: a9:a4:36:4e:79:7d:69:5b:e1:cd:13:29:62:0f:39:29:c6:3e: 64:bd:8e:65:f5:95:cb:90:1e:14:07:10:08:8c:39:15:2c:82: 66:20:b4:d1:c8:a6:f6:40:08:3a:1d:35:b0:52:13:14:d7:7c: e2:f3:10:a8:a8:cf:f1:c7:19:0b:b4:79:db:1b:56:15:0d:95: 48:54:f2:2d:c3:95:df:d3:ce:64:68:a2:ad:dc:ca:25:76:11: 04:43:4d:ab:1f:91:73:bd:b1:42:21:96:0c:84:88:7a:c5:c9: 33:29:db:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0N0YxMTAvBgNVBAUTKDM3NjAzREIyRTA3MkMwQThGRDcxMTM4RTI1NDA5OUY0 Q0FEOEMxNkYwHhcNMjQxMTIxMDE0ODQ3WhcNMjQxMTI4MDE0ODQ2WjAYMRYwFAYD VQQDEw02NzNlOTE3Zi0wZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBooCKLdvO91qZyUQ1WAoWbzAdz4lgDCCcIfimMRtMdzzPB805eNnM877jAi 3TiJUN2FeZLw/V62wTDggygWZrBBC9gua79BHJxwBte8AlXInkkFM4vRdo2oztWw +FkmHd4VtytAYClTotGcK/gtGatwqVaDX6UPMfhnwk5kC5+TJ59dkr23AeF8o/rU Izh3CX4y5odVSPbXieS4JhfTabSjJ8CEfZpJzAEr3WvL2xD1u9nRzI5cBSfDRdCs CTgrLkDqwI0bJE4X66ajnpQdV8AHG6fLxgFXK222PmNDz9kgW7WdIakB18GvVwlu 1yVOiNMi5+tIvpvvLhJ7uUIaKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0V3oLm E/30dNso0X6HR6uKXxTJMB8GA1UdIwQYMBaAFDdgPbLgcsCo/XETjiVAmfTK2MFv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDQ3Ri9ENUNFNjI2QTM0 NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdLajljUk9PSlVDWjlNcll3 VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yQTlzdUJ5d0tqOWNST09KVUNaOU1yWXdXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDQ3Ri9ENUNFNjI2QTM0NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdL ajljUk9PSlVDWjlNcll3VzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkLPDSmGhhkVw2M6xb7WdupWzvNdTsG8nO/Jrg/X4nMCRCrhoWnMqV KX6LKQ8o9mkzff3yz8GYrufgKDAiGknvTArW8H5K9Ojm4u2pxcd/WLcy9WHGZIZL AuIaIj5x8RfHWIL8x1Lv+Vsdp8fZ0eCJEFvEf9Kui1rpX6ZADroOfaF7BgF2yujp kUmpKjP63OGppDZOeX1pW+HNEyliDzkpxj5kvY5l9ZXLkB4UBxAIjDkVLIJmILTR yKb2QAg6HTWwUhMU13zi8xCoqM/xxxkLtHnbG1YVDZVIVPItw5Xf085kaKKt3Mol dhEEQ02rH5FzvbFCIZYMhIh6xckzKdvj -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:57 2024 by rpki-client on console-ams.rpki-client.org