$ rpki-client -vvf rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft File: nJp0feAK9FuI94QRKOidsT0jFyk.mft (raw, json) Hash identifier: CYSjhQxTiB4xep7bnL2xV01ftY+BqSkB2TkQbaIm5Ow= Subject key identifier: EE:C3:43:AB:3C:BE:8C:B1:62:38:BD:3A:19:F2:7F:01:0E:F3:E7:85 Authority key identifier: 9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 Certificate issuer: /CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729 Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft Manifest number: 0512 Signing time: Sun 19 May 2024 01:04:05 +0000 Manifest this update: Sun 19 May 2024 01:04:04 +0000 Manifest next update: Sun 26 May 2024 01:04:04 +0000 Files and hashes: 1: nJp0feAK9FuI94QRKOidsT0jFyk.crl (hash: EgNiKIperJ3tpg4q81tNP2kNnbcgWZHnAe4SUwmA3IY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729 Validity Not Before: May 19 01:04:04 2024 GMT Not After : May 26 01:04:04 2024 GMT Subject: CN=66495005-5488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b6:a1:df:f9:ff:c4:2d:d5:52:3b:28:96:4c: 33:59:f4:ff:d5:77:7a:ed:d4:23:b3:2d:e0:a2:57: 85:2b:cc:69:e5:cd:32:a6:3a:ae:86:ae:59:56:44: bc:b9:6d:54:4b:51:d0:f6:07:19:a7:45:9d:33:4d: 87:c6:40:17:1f:1a:31:1c:55:c4:5d:22:e1:5e:86: 0a:d6:9a:95:4a:d4:4a:b4:48:a1:71:48:c2:88:79: 47:a0:44:09:44:d4:90:dd:e5:de:12:b8:e8:90:41: 45:6e:92:9f:26:2c:b6:d5:47:a7:dc:f2:71:49:9b: b7:4d:4d:94:92:dc:57:88:80:ee:f1:1b:ea:bc:20: 63:97:d2:60:f7:e5:cb:13:c1:bc:5c:34:a8:41:02: bb:62:68:32:e5:4f:a0:5b:6b:43:6f:33:fe:2c:00: d6:44:8d:53:7b:60:14:0c:2f:ad:f3:be:9e:92:b5: 8e:c4:c9:84:4e:cd:43:32:5b:c6:3f:15:e8:40:a3: 7d:bd:6a:0d:9e:58:eb:e6:c2:88:79:97:df:1c:27: 85:f0:b6:fd:88:ec:46:b1:3c:f3:44:df:ec:a9:bd: ef:a7:a4:1c:42:9f:1b:e1:ba:4e:16:3a:60:58:95: 0d:45:3c:91:6a:3d:30:82:18:2b:62:cf:e3:6e:a8: 70:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C3:43:AB:3C:BE:8C:B1:62:38:BD:3A:19:F2:7F:01:0E:F3:E7:85 X509v3 Authority Key Identifier: keyid:9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:d7:2c:b7:e0:b0:72:4d:f0:af:72:67:c5:8a:2a:24:b2:c0: 05:22:20:f4:04:70:4f:21:2c:2e:d5:11:25:43:b1:15:32:c7: 3c:65:41:57:d5:a8:52:6d:74:2d:30:50:92:9c:96:6d:d9:b5: 8a:18:98:20:a6:f3:bf:0d:16:41:ac:98:e9:81:dd:23:2c:62: d8:82:96:91:58:38:d5:20:dd:b4:2e:59:92:71:0e:96:7b:ad: 12:e8:30:59:b3:0a:54:2d:4a:5e:87:0c:19:75:87:9c:c7:41: df:56:89:6e:58:f6:ed:73:89:e7:e1:22:fb:92:ee:7d:b5:7e: c2:55:4f:42:ec:34:0c:10:39:32:cd:3f:25:f9:c9:ad:28:59: 24:ca:3b:a3:61:81:35:ce:60:9e:6e:0e:01:74:a2:97:bf:2c: b9:85:b2:cc:f3:74:54:b2:5c:6d:72:37:0e:5e:ad:77:eb:c9: 08:2d:92:75:00:32:b6:69:76:d3:b4:f4:7f:75:9f:53:f6:e1: 5f:68:d3:e9:fe:0b:28:14:4b:6c:d8:36:c4:6c:32:b1:fc:5b: b4:a1:7a:8f:1f:d1:6e:47:f3:3e:aa:97:d7:e7:e5:29:12:c6: f0:70:89:24:70:a7:bd:98:13:33:fe:c3:1a:17:32:19:bf:92: bf:9e:75:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQzExMTAvBgNVBAUTKDlDOUE3NDdERTAwQUY0NUI4OEY3ODQxMTI4RTg5REIx M0QyMzE3MjkwHhcNMjQwNTE5MDEwNDA0WhcNMjQwNTI2MDEwNDA0WjAYMRYwFAYD VQQDEw02NjQ5NTAwNS01NDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbah3/n/xC3VUjsolkwzWfT/1Xd67dQjsy3goleFK8xp5c0ypjquhq5ZVkS8 uW1US1HQ9gcZp0WdM02HxkAXHxoxHFXEXSLhXoYK1pqVStRKtEihcUjCiHlHoEQJ RNSQ3eXeErjokEFFbpKfJiy21Uen3PJxSZu3TU2UktxXiIDu8RvqvCBjl9Jg9+XL E8G8XDSoQQK7Ymgy5U+gW2tDbzP+LADWRI1Te2AUDC+t876ekrWOxMmETs1DMlvG PxXoQKN9vWoNnljr5sKIeZffHCeF8Lb9iOxGsTzzRN/sqb3vp6QcQp8b4bpOFjpg WJUNRTyRaj0wghgrYs/jbqhw9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7DQ6s8 voyxYji9OhnyfwEO8+eFMB8GA1UdIwQYMBaAFJyadH3gCvRbiPeEESjonbE9Ixcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFDMS9GRTY4RDNDNEI5 OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlGdUk5NFFSS09pZHNUMGpG eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KcDBmZUFLOUZ1STk0UVJLT2lkc1QwakZ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFDMS9GRTY4RDNDNEI5OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlG dUk5NFFSS09pZHNUMGpGeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDM1yy34LByTfCvcmfFiiokssAFIiD0BHBPISwu1RElQ7EVMsc8ZUFX 1ahSbXQtMFCSnJZt2bWKGJggpvO/DRZBrJjpgd0jLGLYgpaRWDjVIN20LlmScQ6W e60S6DBZswpULUpehwwZdYecx0HfVoluWPbtc4nn4SL7ku59tX7CVU9C7DQMEDky zT8l+cmtKFkkyjujYYE1zmCebg4BdKKXvyy5hbLM83RUslxtcjcOXq1368kILZJ1 ADK2aXbTtPR/dZ9T9uFfaNPp/gsoFEts2DbEbDKx/Fu0oXqPH9FuR/M+qpfX5+Up EsbwcIkkcKe9mBMz/sMaFzIZv5K/nnWz -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org