$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: 9vWGxtydeM8iLYrxRoJVQpg7Ql/5HcJ0ZRciJQkg4HU= Subject key identifier: 9D:C4:31:7A:F6:71:8A:01:89:7A:2D:63:A4:D6:BB:BB:5A:77:35:25 Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 76 Signing time: Sun 19 May 2024 07:23:44 +0000 Manifest this update: Sun 19 May 2024 07:23:44 +0000 Manifest next update: Sun 26 May 2024 07:23:44 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: YXt0iBFqfhxnYeRrQpgvQRkN3dbBt7WYmosF8OGPtvM=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: C2POHe2THL0rS7QQam/RFbi9UJ+UKw6cNCZQX+7fstc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: May 19 07:23:44 2024 GMT Not After : May 26 07:23:44 2024 GMT Subject: CN=6649a900-335c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0b:c8:29:9b:b8:d3:e6:f8:f8:3b:79:ab:ae: ae:6a:86:56:a0:b7:b4:75:56:41:05:9f:cf:3d:7b: d7:f2:7f:f5:91:2b:a8:fd:6b:c4:41:b7:54:80:cd: 06:0e:ee:de:20:25:4d:d9:ed:08:44:e0:58:cd:31: ad:85:8b:05:46:3f:76:01:05:dc:1f:22:cf:02:dc: 63:70:77:53:dd:d7:31:26:c2:8d:ab:a6:65:ed:09: 41:bc:ec:f1:bb:3a:4e:5d:2a:e3:23:e2:3a:6a:45: 91:5a:9b:26:74:da:57:36:59:a2:a5:e5:93:e2:f2: d5:7a:28:9d:22:5c:d4:b5:b0:01:e8:37:53:38:5b: e2:e6:23:b0:84:d8:10:31:b9:42:ef:32:39:47:03: e2:a0:75:fd:c4:7f:58:e8:00:a3:dd:fb:12:c8:68: 48:5f:e7:0c:88:52:34:8b:2d:95:f9:7a:fc:86:16: 74:c2:db:aa:76:c3:a6:82:6a:b7:34:b9:a4:30:f9: 7a:52:21:b8:e3:19:42:bc:e8:ff:2f:c7:07:b4:34: 31:9b:a3:41:fc:7f:56:d4:ae:b3:72:d4:4c:82:44: 4d:6c:5d:3a:f6:81:54:86:6a:dd:6b:0d:d1:56:0d: d6:e4:6a:6c:ba:34:a3:81:20:34:0b:d2:9f:c6:ff: 60:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C4:31:7A:F6:71:8A:01:89:7A:2D:63:A4:D6:BB:BB:5A:77:35:25 X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:52:79:1f:d5:91:9b:b6:63:2c:04:be:58:4e:75:4e:66:0e: 84:84:e9:f8:96:fd:11:ab:c6:69:69:8e:2d:0d:8d:0c:5a:97: 9f:93:d4:fb:d3:9e:9b:8a:f3:56:f8:95:5e:32:8a:6a:f8:4f: 58:25:13:5a:d9:d5:61:1e:25:23:84:15:8b:1c:c9:19:c3:5d: de:56:8c:9b:e7:a1:62:4f:98:88:42:1f:7d:72:6b:20:ff:83: 66:80:0e:70:26:d4:da:d3:86:37:d0:c3:18:da:df:be:d0:a3: 0b:d7:6f:3e:45:f5:05:b5:dc:29:0d:2b:03:d8:39:11:d2:ca: f6:5c:2f:07:15:aa:a6:0d:fb:0f:3c:81:95:57:00:c1:e1:0b: 0f:5f:37:31:36:59:5d:bf:ee:b4:4e:df:fd:ce:ee:39:29:da: 3b:77:ce:dc:60:46:76:1d:af:93:94:21:39:15:0c:9c:b2:9f: ea:a8:1d:eb:2d:8f:7c:c0:82:87:02:2a:dd:ff:d0:89:cb:14: cf:fd:a2:e8:02:7d:57:ec:84:56:a7:f3:26:a0:98:10:cf:78: 0a:b4:51:60:4c:5a:ff:d0:c7:df:1b:ce:25:80:47:36:67:b6: 2e:33:9d:2b:ff:52:80:a1:33:66:85:95:50:fc:ba:06:24:66: 95:f8:ec:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REM1NjExMC8GA1UEBRMoOUU2QTBBQTQzOUNGRTM0N0IwNEY3NDY4NDBBNkU0MzRD NTA5QjFBNzAeFw0yNDA1MTkwNzIzNDRaFw0yNDA1MjYwNzIzNDRaMBgxFjAUBgNV BAMTDTY2NDlhOTAwLTMzNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0C8gpm7jT5vj4O3mrrq5qhlagt7R1VkEFn889e9fyf/WRK6j9a8RBt1SAzQYO 7t4gJU3Z7QhE4FjNMa2FiwVGP3YBBdwfIs8C3GNwd1Pd1zEmwo2rpmXtCUG87PG7 Ok5dKuMj4jpqRZFamyZ02lc2WaKl5ZPi8tV6KJ0iXNS1sAHoN1M4W+LmI7CE2BAx uULvMjlHA+Kgdf3Ef1joAKPd+xLIaEhf5wyIUjSLLZX5evyGFnTC26p2w6aCarc0 uaQw+XpSIbjjGUK86P8vxwe0NDGbo0H8f1bUrrNy1EyCRE1sXTr2gVSGat1rDdFW Ddbkamy6NKOBIDQL0p/G/2DTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUncQxevZx igGJei1jpNa7u1p3NSUwHwYDVR0jBBgwFoAUnmoKpDnP40ewT3RoQKbkNMUJsacw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQzU2L0NEQkNGNjNBNjY5 MzExRUU5OENFQUE1MEM0RjlBRTAyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNh Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbm1vS3BEblA0MGV3VDNSb1FLYmtOTVVKc2FjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE QzU2L0NEQkNGNjNBNjY5MzExRUU5OENFQUE1MEM0RjlBRTAyL25tb0twRG5QNDBl d1QzUm9RS2JrTk1VSnNhYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGtSeR/VkZu2YywEvlhOdU5mDoSE6fiW/RGrxmlpji0NjQxal5+T1PvT npuK81b4lV4yimr4T1glE1rZ1WEeJSOEFYscyRnDXd5WjJvnoWJPmIhCH31yayD/ g2aADnAm1NrThjfQwxja377QowvXbz5F9QW13CkNKwPYORHSyvZcLwcVqqYN+w88 gZVXAMHhCw9fNzE2WV2/7rRO3/3O7jkp2jt3ztxgRnYdr5OUITkVDJyyn+qoHest j3zAgocCKt3/0InLFM/9ougCfVfshFan8yagmBDPeAq0UWBMWv/Qx98bziWARzZn ti4znSv/UoChM2aFlVD8ugYkZpX47LU= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org