$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: FvB8daUbvg1dhPjQSfj1haZFmsspomviVVVeWpfjemE= Subject key identifier: 80:D4:FD:62:5A:07:C8:5E:C6:83:A0:60:83:CB:B8:EE:6C:46:9E:B9 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1DC1 Signing time: Sat 18 May 2024 16:29:06 +0000 Manifest this update: Sat 18 May 2024 16:29:06 +0000 Manifest next update: Sat 25 May 2024 16:29:06 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: 2I6DbiqpgLf3+iJM9huyamoMuU1r35bCdwvmBu1f75Q=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: PL+MdMpe7QWO0nJJsSHMp4qiIEiznAficRKoTm9IDLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: May 18 16:29:06 2024 GMT Not After : May 25 16:29:06 2024 GMT Subject: CN=6648d752-e977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f9:95:24:21:2f:a5:4d:4a:b7:50:a0:66:fc: 01:9d:4c:22:71:46:7a:8f:32:c9:1f:d3:f2:3c:50: 7e:1f:20:2b:a1:68:1e:ad:a8:1f:3a:79:e4:36:cb: 05:e8:9b:8e:51:48:a5:3f:c0:5c:79:7f:dc:8f:79: 61:e6:61:b5:62:8a:d5:c8:c5:86:4d:69:9c:42:f4: 5e:c0:14:0e:c6:6f:e5:67:b7:9d:36:9e:8d:45:6a: 46:47:cb:8a:49:53:b4:07:c5:10:5f:f6:8a:8b:6a: 54:0d:ba:9d:cd:84:b7:7a:6e:a4:95:21:e3:6e:a5: db:a7:58:7a:57:2d:f9:af:39:00:d8:59:f0:7c:62: ac:bd:c3:e8:84:8b:b5:be:41:c4:2f:8f:b6:d2:1c: a4:95:41:7c:86:f0:9a:74:3d:60:b1:03:3a:97:8f: 29:17:ca:ab:4f:7b:ec:2b:66:01:2e:3a:55:a1:0f: 80:cd:d4:32:0b:80:cb:ff:b8:53:de:5d:02:61:f9: b7:2d:f9:dd:27:91:eb:d2:f7:ab:c7:7a:86:ad:99: af:e8:f3:d6:44:cc:f8:b1:c6:6e:5a:45:3c:9a:54: 8e:f3:af:d5:6e:61:f4:89:42:99:da:f2:73:23:3f: 70:0f:52:2d:a5:f8:d5:aa:ed:34:56:b5:54:a1:c7: dc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D4:FD:62:5A:07:C8:5E:C6:83:A0:60:83:CB:B8:EE:6C:46:9E:B9 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:29:05:76:f6:43:b0:f5:6f:a8:eb:55:b3:bf:9f:bc:5b:11: e2:58:da:23:f7:c5:ba:aa:58:31:70:c0:82:f0:2c:46:11:85: 31:a6:43:2a:91:6f:dd:c6:2d:a7:28:ed:36:df:eb:6b:08:5e: 19:04:5a:7b:ac:ea:75:0d:a5:89:be:0d:7f:6c:97:3e:d3:86: fc:91:a5:9a:6f:12:d1:93:a0:35:00:00:ef:43:b8:07:7c:f9: 91:48:d9:93:cc:31:33:28:47:70:5d:15:bf:e1:65:ab:53:3c: 15:da:07:ec:d5:03:4c:40:b3:e6:54:12:9a:7b:ab:0d:50:12: f3:49:2a:11:ec:1c:36:0f:ff:6c:31:88:c2:84:43:33:95:58: d0:7a:3e:f2:00:a0:5f:05:ae:31:3b:32:93:08:d0:21:3d:3f: 99:47:46:07:20:f8:74:9c:55:eb:18:a1:32:3a:75:b6:68:ab: b5:db:6a:e4:20:1c:85:38:d4:54:f3:c4:89:7e:95:e3:41:73: 89:78:1c:59:aa:a6:33:cf:23:8e:89:9c:08:3a:6a:c5:c6:a4: 6c:2a:2b:97:b8:d0:48:b5:0e:37:c6:35:17:9c:ac:ba:e6:42: 6e:41:14:66:3a:e5:e0:a0:4c:bc:81:2d:45:1d:c1:ac:4e:66: 98:c5:2b:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjQwNTE4MTYyOTA2WhcNMjQwNTI1MTYyOTA2WjAYMRYwFAYD VQQDEw02NjQ4ZDc1Mi1lOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfmVJCEvpU1Kt1CgZvwBnUwicUZ6jzLJH9PyPFB+HyAroWgeragfOnnkNssF 6JuOUUilP8BceX/cj3lh5mG1YorVyMWGTWmcQvRewBQOxm/lZ7edNp6NRWpGR8uK SVO0B8UQX/aKi2pUDbqdzYS3em6klSHjbqXbp1h6Vy35rzkA2FnwfGKsvcPohIu1 vkHEL4+20hyklUF8hvCadD1gsQM6l48pF8qrT3vsK2YBLjpVoQ+AzdQyC4DL/7hT 3l0CYfm3LfndJ5Hr0verx3qGrZmv6PPWRMz4scZuWkU8mlSO86/VbmH0iUKZ2vJz Iz9wD1ItpfjVqu00VrVUocfciwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDU/WJa B8hexoOgYIPLuO5sRp65MB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEKQV29kOw9W+o61Wzv5+8WxHiWNoj98W6qlgxcMCC8CxGEYUxpkMq kW/dxi2nKO023+trCF4ZBFp7rOp1DaWJvg1/bJc+04b8kaWabxLRk6A1AADvQ7gH fPmRSNmTzDEzKEdwXRW/4WWrUzwV2gfs1QNMQLPmVBKae6sNUBLzSSoR7Bw2D/9s MYjChEMzlVjQej7yAKBfBa4xOzKTCNAhPT+ZR0YHIPh0nFXrGKEyOnW2aKu122rk IByFONRU88SJfpXjQXOJeBxZqqYzzyOOiZwIOmrFxqRsKiuXuNBItQ43xjUXnKy6 5kJuQRRmOuXgoEy8gS1FHcGsTmaYxSst -----END CERTIFICATE-----Generated at Sat May 18 16:57:52 2024 by rpki-client on console-fra.rpki-client.org