$ rpki-client -vvf rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft File: NhKQaSiZCCzeI_UEU6QVXgqreXg.mft (raw, json) Hash identifier: QFS/uCmrJE9duzuAPXWL6brp2+MqYIXE+UoWlkkGOQA= Subject key identifier: C4:96:AE:55:1D:17:37:B2:39:44:0B:3D:B4:0E:85:70:43:93:50:0E Authority key identifier: 36:12:90:69:28:99:08:2C:DE:23:F5:04:53:A4:15:5E:0A:AB:79:78 Certificate issuer: /CN=A911894F/serialNumber=361290692899082CDE23F50453A4155E0AAB7978 Certificate serial: 25A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft Manifest number: 258F Signing time: Fri 31 May 2024 16:05:48 +0000 Manifest this update: Fri 31 May 2024 16:05:47 +0000 Manifest next update: Fri 07 Jun 2024 16:05:47 +0000 Files and hashes: 1: NhKQaSiZCCzeI_UEU6QVXgqreXg.crl (hash: aNWFTfMc8D2gaIIDJwWGLkk89tarzdcb2Clk/eUAZss=) 2: 802FBE707FEB11EB8B5E2817C4F9AE02.roa (hash: gDPmhuG/wdMnafUf5dBasLWrj/x8i3ETlWBwiJtNRys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.crl rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9632 (0x25a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911894F/serialNumber=361290692899082CDE23F50453A4155E0AAB7978 Validity Not Before: May 31 16:05:47 2024 GMT Not After : Jun 7 16:05:47 2024 GMT Subject: CN=6659f55c-2a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6e:2a:ba:19:18:eb:85:28:3a:a8:52:a2:4d: 3d:9d:04:5b:8f:fc:3c:a7:c0:e2:2c:96:3c:d9:14: 82:d9:a5:96:e0:06:9b:e7:3d:97:77:53:4d:9e:74: 0f:ac:c9:1c:13:81:bd:9d:cb:b2:a6:50:fa:3b:2e: 67:0a:1d:d2:35:fc:19:87:d2:3e:a1:52:10:02:a2: 54:ec:da:8d:5a:d2:bb:bb:d4:a0:25:42:d9:9d:23: 00:b0:e0:99:3d:2d:d1:7e:12:39:5a:83:63:d1:20: fa:87:48:0b:56:08:78:63:6c:e3:55:c2:84:02:b1: 26:0c:f0:96:07:db:8f:b5:cb:13:b3:d0:fe:a4:8c: df:35:df:a8:59:4e:ea:55:1c:9e:80:5b:3b:73:dd: 67:f5:55:9c:1b:8c:fd:e9:c4:a0:33:0c:b5:ef:1e: 45:58:72:e2:76:89:2f:8f:ef:62:99:a4:ae:c5:ce: 55:86:72:b7:63:19:86:7b:81:ec:b0:66:64:48:e8: 63:3e:72:62:1d:60:c1:77:29:b7:76:33:f8:42:8d: ee:07:2c:76:13:ad:c2:dc:98:09:02:17:ea:34:9a: 2a:3c:fe:95:f2:b4:3f:88:fc:77:79:1e:fe:3e:30: 7d:da:ff:9d:c5:b0:0c:4f:17:9c:52:78:dc:63:3b: 49:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:96:AE:55:1D:17:37:B2:39:44:0B:3D:B4:0E:85:70:43:93:50:0E X509v3 Authority Key Identifier: keyid:36:12:90:69:28:99:08:2C:DE:23:F5:04:53:A4:15:5E:0A:AB:79:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:68:1d:b0:80:3d:fd:00:2a:6a:a2:4f:92:21:32:ac:5a:56: 5d:61:a9:72:16:de:60:41:e9:99:50:0c:d1:28:96:a2:33:40: bc:8a:42:c0:d4:8c:b1:60:97:75:38:1b:30:3c:7f:85:52:e3: 7c:6a:25:fa:ed:1b:c7:08:a3:ca:2c:ba:4e:41:d4:62:6b:2f: 3b:3a:7d:27:10:6a:5b:e5:d8:4a:5e:86:95:6a:58:e0:87:73: 71:39:a9:b3:f3:55:85:28:5b:d9:b4:fc:bb:3a:8c:98:2d:bc: ab:43:47:89:49:21:3a:e6:18:dd:a2:e5:ec:e9:eb:ad:0a:4e: c7:6e:81:4a:70:fd:9c:3d:06:7f:c2:0a:80:e8:8f:97:0d:76: 8f:4c:76:6c:ad:f8:c0:97:2c:a1:89:99:29:34:5b:ce:91:8b: ae:dc:4d:e8:13:21:e3:78:63:37:90:8c:d9:c0:ef:41:e0:ae: 4f:cb:7e:8d:25:31:78:78:8c:2a:1b:bd:48:16:21:10:4c:a3: e3:19:cb:e3:55:da:22:60:64:74:18:2f:6a:67:a3:70:c5:11: 0b:f7:21:fd:b1:10:6f:01:02:f6:10:a3:7c:1a:7c:07:32:31: 6e:73:b6:e2:20:2e:9b:83:19:0d:17:fd:b2:f6:7b:e0:85:b1: ca:3b:ab:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg5NEYxMTAvBgNVBAUTKDM2MTI5MDY5Mjg5OTA4MkNERTIzRjUwNDUzQTQxNTVF MEFBQjc5NzgwHhcNMjQwNTMxMTYwNTQ3WhcNMjQwNjA3MTYwNTQ3WjAYMRYwFAYD VQQDEw02NjU5ZjU1Yy0yYTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG4quhkY64UoOqhSok09nQRbj/w8p8DiLJY82RSC2aWW4Aab5z2Xd1NNnnQP rMkcE4G9ncuyplD6Oy5nCh3SNfwZh9I+oVIQAqJU7NqNWtK7u9SgJULZnSMAsOCZ PS3RfhI5WoNj0SD6h0gLVgh4Y2zjVcKEArEmDPCWB9uPtcsTs9D+pIzfNd+oWU7q VRyegFs7c91n9VWcG4z96cSgMwy17x5FWHLidokvj+9imaSuxc5VhnK3YxmGe4Hs sGZkSOhjPnJiHWDBdym3djP4Qo3uByx2E63C3JgJAhfqNJoqPP6V8rQ/iPx3eR7+ PjB92v+dxbAMTxecUnjcYztJpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSWrlUd FzeyOUQLPbQOhXBDk1AOMB8GA1UdIwQYMBaAFDYSkGkomQgs3iP1BFOkFV4Kq3l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODk0Ri85NjNDRjBDRUVD NUUxMUU0OEU3RDAxMTlDNEY5QUUwMi9OaEtRYVNpWkNDemVJX1VFVTZRVlhncXJl WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oS1FhU2laQ0N6ZUlfVUVVNlFWWGdxcmVYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODk0Ri85NjNDRjBDRUVDNUUxMUU0OEU3RDAxMTlDNEY5QUUwMi9OaEtRYVNpWkND emVJX1VFVTZRVlhncXJlWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3aB2wgD39ACpqok+SITKsWlZdYalyFt5gQemZUAzRKJaiM0C8ikLA 1IyxYJd1OBswPH+FUuN8aiX67RvHCKPKLLpOQdRiay87On0nEGpb5dhKXoaValjg h3NxOamz81WFKFvZtPy7OoyYLbyrQ0eJSSE65hjdouXs6eutCk7HboFKcP2cPQZ/ wgqA6I+XDXaPTHZsrfjAlyyhiZkpNFvOkYuu3E3oEyHjeGM3kIzZwO9B4K5Py36N JTF4eIwqG71IFiEQTKPjGcvjVdoiYGR0GC9qZ6NwxREL9yH9sRBvAQL2EKN8GnwH MjFuc7biIC6bgxkNF/2y9nvghbHKO6ti -----END CERTIFICATE-----Generated at Fri May 31 17:44:21 2024 by rpki-client on console-fra.rpki-client.org