$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: l5vhgopKJ/0iI0v3M0nw/ewfZjjTxO9vppOGSYyHmMo= Subject key identifier: 26:76:64:CA:1E:FC:26:70:D0:C0:0C:93:67:B7:09:F7:7A:C0:6C:B4 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 0148 Signing time: Sat 23 Nov 2024 02:36:30 +0000 Manifest this update: Sat 23 Nov 2024 02:36:29 +0000 Manifest next update: Sat 30 Nov 2024 02:36:29 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: QVkmQPjZSDFqGOO0YgzTo4efv9O3GOrzQFnd+bumxlY=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: iTyxeo6fdLY6zYqk38GBrAnxGbLRbpbsfA4HbHTb8W0=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: f/RigGqDQyE5cV9YFdD69wWLUqqtBXkgZ1bqVEllexY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Nov 23 02:36:29 2024 GMT Not After : Nov 30 02:36:29 2024 GMT Subject: CN=67413fad-6ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ee:d3:55:89:cf:8c:72:52:ce:44:84:61:f7: 40:fa:6d:21:76:c6:7d:b6:fc:b0:24:93:94:d9:ef: 65:83:cc:e1:eb:22:88:38:14:07:3b:62:5e:93:8a: 6a:86:28:cf:4e:10:21:46:63:61:25:53:f4:78:86: 1d:30:47:59:83:92:f4:ac:16:9b:53:f2:f4:6b:41: ef:97:cc:80:62:18:3e:1b:83:80:49:ac:91:54:b6: 3d:d7:92:ad:1c:17:dd:48:4b:14:70:d3:7a:26:c7: 4a:43:36:04:f8:69:d5:93:9e:91:4e:62:04:9b:ec: c4:4e:79:b3:ca:32:fe:3b:ba:ba:e3:95:c7:68:7e: d2:cd:b3:bb:ef:29:77:ed:39:b0:04:ca:99:17:65: 58:85:db:c9:98:4c:11:98:56:d7:99:b1:33:d3:13: b0:9b:25:03:99:b6:6e:5c:de:67:20:8f:de:d6:b2: ce:53:92:2b:67:28:ca:67:5f:18:91:79:e0:99:e7: af:56:c3:f5:13:37:ab:87:ab:be:45:0d:65:31:2e: eb:f3:78:6b:10:82:22:b6:67:ce:26:60:45:17:d9: f2:d1:55:89:f2:91:9d:9f:da:ee:b2:5e:e2:4c:7c: e6:ea:6a:4e:ec:18:ef:a5:c0:83:9c:f7:9b:bf:f4: f8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:76:64:CA:1E:FC:26:70:D0:C0:0C:93:67:B7:09:F7:7A:C0:6C:B4 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:cb:52:cf:3f:59:df:3a:2d:cd:cf:38:07:45:da:38:71:df: 4c:ba:03:99:81:95:fc:27:88:d5:4c:65:f8:e1:12:7c:d5:58: 53:3d:b6:dd:56:2c:70:f0:15:bb:f1:ab:28:ea:4a:7d:91:f8: 6f:4d:61:ca:20:cd:cb:f8:c9:4e:29:79:04:ee:fd:dc:93:18: eb:c2:99:d4:c1:db:91:b0:d9:df:c1:41:b2:da:af:2f:0d:7f: ad:03:bd:94:3f:ae:2d:0a:e7:85:92:2f:6c:e2:0f:17:19:b1: b4:b6:74:8e:4c:de:d7:bc:93:83:75:5b:6a:e3:8e:c6:37:29: f9:9b:f3:80:29:7a:cd:ab:91:16:30:cd:a3:a4:a8:3e:f0:7a: 56:5e:92:64:c5:70:53:21:5d:74:c4:d5:d4:20:5b:dd:cc:23: 9f:30:89:4f:24:84:f8:bc:85:3d:41:55:a8:a5:6e:14:d7:21: 18:f3:c6:b1:48:45:d4:26:fb:cf:fa:94:74:38:79:b7:f3:2b: c7:1c:4f:0f:87:4a:b9:cb:47:4a:64:16:a1:ab:7e:39:0e:37: 23:79:4f:9b:0d:cb:38:9c:d7:96:38:cc:c7:a6:5c:e2:e4:2d: 3c:00:4b:26:e2:cc:b4:25:04:bb:f3:d1:9b:79:ac:1b:b9:50: 3f:20:67:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjQxMTIzMDIzNjI5WhcNMjQxMTMwMDIzNjI5WjAYMRYwFAYD VQQDEw02NzQxM2ZhZC02Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAne7TVYnPjHJSzkSEYfdA+m0hdsZ9tvywJJOU2e9lg8zh6yKIOBQHO2Jek4pq hijPThAhRmNhJVP0eIYdMEdZg5L0rBabU/L0a0Hvl8yAYhg+G4OASayRVLY915Kt HBfdSEsUcNN6JsdKQzYE+GnVk56RTmIEm+zETnmzyjL+O7q645XHaH7SzbO77yl3 7TmwBMqZF2VYhdvJmEwRmFbXmbEz0xOwmyUDmbZuXN5nII/e1rLOU5IrZyjKZ18Y kXngmeevVsP1Ezerh6u+RQ1lMS7r83hrEIIitmfOJmBFF9ny0VWJ8pGdn9rusl7i THzm6mpO7BjvpcCDnPebv/T4zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ2ZMoe /CZw0MAMk2e3Cfd6wGy0MB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARy1LPP1nfOi3NzzgHRdo4cd9MugOZgZX8J4jVTGX44RJ81VhTPbbd Vixw8BW78aso6kp9kfhvTWHKIM3L+MlOKXkE7v3ckxjrwpnUwduRsNnfwUGy2q8v DX+tA72UP64tCueFki9s4g8XGbG0tnSOTN7XvJODdVtq447GNyn5m/OAKXrNq5EW MM2jpKg+8HpWXpJkxXBTIV10xNXUIFvdzCOfMIlPJIT4vIU9QVWopW4U1yEY88ax SEXUJvvP+pR0OHm38yvHHE8Ph0q5y0dKZBahq345DjcjeU+bDcs4nNeWOMzHplzi 5C08AEsm4sy0JQS789GbeawbuVA/IGeP -----END CERTIFICATE-----Generated at Sat Nov 23 03:59:00 2024 by rpki-client on console-ams.rpki-client.org