$ rpki-client -vvf rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft File: nyv9fYAM-hPpBIrhALSFFDASb9M.mft (raw, json) Hash identifier: tR5WOQaHdq9CY/gpIWBopzQYUv4SAnUDc37rltCrjPE= Subject key identifier: BA:2B:C0:76:83:17:12:33:72:72:CC:86:30:31:9D:46:39:48:7A:11 Authority key identifier: 9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 Certificate issuer: /CN=A913EFAB/serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Certificate serial: 045C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft Manifest number: 0457 Signing time: Sun 19 May 2024 01:52:06 +0000 Manifest this update: Sun 19 May 2024 01:52:05 +0000 Manifest next update: Sun 26 May 2024 01:52:05 +0000 Files and hashes: 1: nyv9fYAM-hPpBIrhALSFFDASb9M.crl (hash: Atal6fGS1nz5WIGVdlwcYRQ7XtiqnIQ4Aqy+bKvDPAo=) 2: 06D647D4057811EC8BCE3783C4F9AE02.roa (hash: tH2fTvWFHZMzm+iLIKf6rcIULPULlPmbU+0W/u+xowk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EFAB/serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Validity Not Before: May 19 01:52:05 2024 GMT Not After : May 26 01:52:05 2024 GMT Subject: CN=66495b46-f681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:d5:c3:a2:93:a8:e8:64:6a:a4:24:6c:18: 4c:d6:12:15:3d:92:c1:83:92:ae:3d:b8:3e:db:96: e6:e7:a5:c7:89:08:4a:38:90:74:87:ff:e5:22:08: f9:32:80:a3:2f:82:8d:d9:62:0a:77:e3:0f:3a:bd: df:56:99:84:e2:73:05:69:0f:b6:2f:39:1e:0e:e7: a0:9f:c6:91:5d:4d:1d:93:c0:3e:66:3f:c9:a1:70: 06:fe:45:7f:e5:f9:bf:a7:29:78:99:81:40:27:33: e1:74:70:18:19:47:cc:ab:64:59:26:0f:e5:6f:24: 1d:27:a2:85:d4:34:f7:e2:3c:90:f8:2e:4c:59:fe: 75:13:8d:77:6a:ad:f2:ec:e3:d3:99:c9:dc:13:94: 96:5e:d0:ca:a4:fb:e0:4d:65:61:bb:c7:c1:ba:2a: 68:df:55:63:ab:91:cd:e8:f8:08:14:f7:e9:9e:c6: 04:55:58:ef:42:ef:8c:a9:60:41:d2:50:9f:b7:58: b9:bc:98:d1:74:12:cb:00:4b:70:e4:37:66:c7:30: 0a:90:51:07:31:ec:fd:bc:17:1a:34:70:6a:99:03: df:14:18:7e:24:c5:0a:73:da:41:1c:a5:7e:96:dd: 30:7f:d9:1b:7b:45:ea:7e:09:ed:69:56:f9:ab:44: 9a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2B:C0:76:83:17:12:33:72:72:CC:86:30:31:9D:46:39:48:7A:11 X509v3 Authority Key Identifier: keyid:9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:7d:18:99:e2:f6:53:fa:64:a5:aa:5b:ee:a4:be:41:f4:2e: ed:30:b9:64:be:43:a7:b1:5b:19:b1:a3:de:f9:f8:2e:25:e5: 85:b2:6b:9c:88:ba:0d:43:dd:ef:d5:69:c4:52:6e:b6:9a:c0: d3:75:33:5d:03:b3:84:2f:56:8f:0b:d3:c7:85:98:07:49:2d: f7:8e:ca:6c:48:bb:6c:61:50:35:54:dd:c5:87:d5:8b:11:af: cd:22:3d:a1:ba:db:21:2f:c4:5c:b3:d2:d0:9d:85:f6:31:6c: 4c:0d:08:9b:93:12:05:6a:d6:18:b0:64:73:46:65:08:c9:19: c1:e7:22:90:50:d7:3a:ff:6f:4c:ef:d0:4d:5f:53:f2:b3:78: 19:59:fd:99:15:71:b5:03:4d:d5:bb:c4:6e:55:01:50:68:c9: 9a:1b:4f:e0:08:fa:7b:d8:f6:cc:25:d8:95:34:a0:6d:d8:61: 5a:86:4f:d4:98:f9:1d:ef:d0:31:37:a8:51:76:62:65:91:a6: c3:af:66:4d:b7:45:e0:2b:a0:c7:64:a2:26:41:1b:bb:5c:44: 15:e7:52:f3:97:a3:77:38:52:05:94:c1:35:e1:6e:27:64:60: ca:ab:73:2f:22:8a:0f:fb:9e:2a:1b:0f:50:5d:86:f7:d0:96: 83:b1:5c:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGQUIxMTAvBgNVBAUTKDlGMkJGRDdEODAwQ0ZBMTNFOTA0OEFFMTAwQjQ4NTE0 MzAxMjZGRDMwHhcNMjQwNTE5MDE1MjA1WhcNMjQwNTI2MDE1MjA1WjAYMRYwFAYD VQQDEw02NjQ5NWI0Ni1mNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKjVw6KTqOhkaqQkbBhM1hIVPZLBg5KuPbg+25bm56XHiQhKOJB0h//lIgj5 MoCjL4KN2WIKd+MPOr3fVpmE4nMFaQ+2LzkeDuegn8aRXU0dk8A+Zj/JoXAG/kV/ 5fm/pyl4mYFAJzPhdHAYGUfMq2RZJg/lbyQdJ6KF1DT34jyQ+C5MWf51E413aq3y 7OPTmcncE5SWXtDKpPvgTWVhu8fBuipo31Vjq5HN6PgIFPfpnsYEVVjvQu+MqWBB 0lCft1i5vJjRdBLLAEtw5DdmxzAKkFEHMez9vBcaNHBqmQPfFBh+JMUKc9pBHKV+ lt0wf9kbe0XqfgntaVb5q0SapQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLorwHaD FxIzcnLMhjAxnUY5SHoRMB8GA1UdIwQYMBaAFJ8r/X2ADPoT6QSK4QC0hRQwEm/T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUZBQi9FODJEMDZGRTA1 NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1oUHBCSXJoQUxTRkZEQVNi OU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL255djlmWUFNLWhQcEJJcmhBTFNGRkRBU2I5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUZBQi9FODJEMDZGRTA1NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1o UHBCSXJoQUxTRkZEQVNiOU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqfRiZ4vZT+mSlqlvupL5B9C7tMLlkvkOnsVsZsaPe+fguJeWFsmuc iLoNQ93v1WnEUm62msDTdTNdA7OEL1aPC9PHhZgHSS33jspsSLtsYVA1VN3Fh9WL Ea/NIj2hutshL8Rcs9LQnYX2MWxMDQibkxIFatYYsGRzRmUIyRnB5yKQUNc6/29M 79BNX1Pys3gZWf2ZFXG1A03Vu8RuVQFQaMmaG0/gCPp72PbMJdiVNKBt2GFahk/U mPkd79AxN6hRdmJlkabDr2ZNt0XgK6DHZKImQRu7XEQV51Lzl6N3OFIFlME14W4n ZGDKq3MvIooP+54qGw9QXYb30JaDsVw1 -----END CERTIFICATE-----Generated at Sun May 19 02:59:06 2024 by rpki-client on console-ams.rpki-client.org