$ rpki-client -vvf rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft File: NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft (raw, json) Hash identifier: 7909/07re4VnzjUx9+yNovg1GxxWI3ZueJaLr+LASoA= Subject key identifier: 01:7F:E9:71:0B:5E:06:15:03:55:5A:10:B5:1D:04:0B:23:6F:1E:CF Authority key identifier: 37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 Certificate issuer: /CN=A913CADE/serialNumber=3725B2E97DD45DC0B7521C0A1BB5E40609B05D96 Certificate serial: 15EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft Manifest number: 15E6 Signing time: Sat 18 May 2024 17:13:25 +0000 Manifest this update: Sat 18 May 2024 17:13:24 +0000 Manifest next update: Sat 25 May 2024 17:13:24 +0000 Files and hashes: 1: NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl (hash: 7tptaEKjrh0zKp5sK6OROBmk4VkeZqTUEzM9znfQUWU=) 2: DDDE13B8FAE811E7A715F157C4F9AE02.roa (hash: u8ortcT9MVFR9wLoP95O/siQb9jiYn8AeoW1F/za0m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5614 (0x15ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CADE/serialNumber=3725B2E97DD45DC0B7521C0A1BB5E40609B05D96 Validity Not Before: May 18 17:13:24 2024 GMT Not After : May 25 17:13:24 2024 GMT Subject: CN=6648e1b4-1b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6f:fb:2c:ec:5a:79:e7:a4:ab:ba:c7:c7:ea: 69:ad:5d:43:37:94:ce:4d:70:1b:cd:0c:d6:10:60: 00:9d:4c:be:02:87:be:99:24:be:a0:60:02:83:2d: e0:2d:73:47:ab:88:02:2f:82:8a:3f:4d:5d:01:a8: f1:c1:70:ad:bc:cf:e4:e3:08:33:b3:57:9b:62:bd: dd:e3:06:1e:17:4a:24:07:f4:fb:53:e7:16:b0:98: 20:44:23:c8:05:2d:12:f2:18:a4:d8:f3:57:1e:66: ff:c2:78:aa:17:ce:59:e6:97:af:af:c5:2e:15:b7: d8:d4:a2:61:78:58:bf:56:af:fe:07:4f:97:97:a5: 75:e6:37:7a:04:02:93:b7:05:43:c3:79:5d:b9:47: c9:40:13:45:23:3c:d6:27:10:45:45:ac:a0:35:75: 70:36:d8:52:e3:72:a5:5e:3e:27:91:93:bb:80:85: fb:bb:1c:bf:ac:8b:de:38:41:5e:9b:1b:d9:ed:31: ba:d6:76:46:18:0b:6d:f0:2f:ce:db:a0:4b:e0:33: 3f:ee:0e:85:d8:54:2d:50:f9:39:d7:0c:92:fe:db: 0a:1e:e3:d0:63:2f:7a:52:56:89:00:69:f8:3d:b6: d6:a6:ef:95:cb:ed:1c:e1:0e:a4:4a:7e:5a:4c:26: ed:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7F:E9:71:0B:5E:06:15:03:55:5A:10:B5:1D:04:0B:23:6F:1E:CF X509v3 Authority Key Identifier: keyid:37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:fc:b1:97:40:74:65:40:f3:ec:86:76:9b:a6:0e:b8:11:42: 81:50:1c:3e:56:43:6f:a4:b5:32:1d:f9:b6:b9:1f:5c:91:db: cb:61:2e:1d:4a:d4:60:a4:5c:52:1f:32:48:7d:60:ff:b2:54: 79:40:b1:da:77:d2:d4:09:af:84:cf:f3:5e:3d:36:74:68:1f: 18:17:4c:aa:7b:b9:8f:32:46:57:2b:a5:82:62:58:2f:c5:02: 94:7a:e5:c3:a9:16:28:21:79:5c:db:3a:29:a7:c1:db:d9:a7: 8a:c8:c9:41:02:79:f1:54:42:d0:6f:51:99:e6:c6:c5:36:57: 05:7b:f2:0c:a4:b7:09:56:dd:a5:d6:ee:08:4b:1f:4e:f8:37: ea:66:e0:26:5a:5f:7c:ab:50:cc:8b:13:0a:41:3e:22:e6:60: eb:ae:eb:4a:88:ef:56:bb:22:c6:f8:9b:ef:cf:85:34:c2:40: 63:19:6b:91:ab:ba:97:be:d7:1a:96:8e:0a:c5:b7:e7:8e:7d: b3:5c:79:f3:9c:9c:f9:69:88:72:4d:92:71:9d:48:77:40:5b: 83:97:62:5c:fd:ac:0b:ff:02:3e:db:99:bf:d9:af:03:ae:53: b6:0c:c6:31:d4:c7:2e:0a:79:b9:72:7d:09:91:9e:95:5d:1f: 1a:2b:c8:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBREUxMTAvBgNVBAUTKDM3MjVCMkU5N0RENDVEQzBCNzUyMUMwQTFCQjVFNDA2 MDlCMDVEOTYwHhcNMjQwNTE4MTcxMzI0WhcNMjQwNTI1MTcxMzI0WjAYMRYwFAYD VQQDEw02NjQ4ZTFiNC0xYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2/7LOxaeeekq7rHx+pprV1DN5TOTXAbzQzWEGAAnUy+Aoe+mSS+oGACgy3g LXNHq4gCL4KKP01dAajxwXCtvM/k4wgzs1ebYr3d4wYeF0okB/T7U+cWsJggRCPI BS0S8hik2PNXHmb/wniqF85Z5pevr8UuFbfY1KJheFi/Vq/+B0+Xl6V15jd6BAKT twVDw3lduUfJQBNFIzzWJxBFRaygNXVwNthS43KlXj4nkZO7gIX7uxy/rIveOEFe mxvZ7TG61nZGGAtt8C/O26BL4DM/7g6F2FQtUPk51wyS/tsKHuPQYy96UlaJAGn4 PbbWpu+Vy+0c4Q6kSn5aTCbtVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF/6XEL XgYVA1VaELUdBAsjbx7PMB8GA1UdIwQYMBaAFDclsul91F3At1IcChu15AYJsF2W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FERS9GMDJBQjE3Q0ZB RTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhjQzNVaHdLRzdYa0JnbXdY WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055V3k2WDNVWGNDM1Vod0tHN1hrQmdtd1haWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FERS9GMDJBQjE3Q0ZBRTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhj QzNVaHdLRzdYa0JnbXdYWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb/LGXQHRlQPPshnabpg64EUKBUBw+VkNvpLUyHfm2uR9ckdvLYS4d StRgpFxSHzJIfWD/slR5QLHad9LUCa+Ez/NePTZ0aB8YF0yqe7mPMkZXK6WCYlgv xQKUeuXDqRYoIXlc2zopp8Hb2aeKyMlBAnnxVELQb1GZ5sbFNlcFe/IMpLcJVt2l 1u4ISx9O+DfqZuAmWl98q1DMixMKQT4i5mDrrutKiO9WuyLG+Jvvz4U0wkBjGWuR q7qXvtcalo4Kxbfnjn2zXHnznJz5aYhyTZJxnUh3QFuDl2Jc/awL/wI+25m/2a8D rlO2DMYx1McuCnm5cn0JkZ6VXR8aK8hT -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org