$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: 8RKJaq1mAd4bF3RlLKnl8C0O7owF7l7/rOyKBVgS+Dk= Subject key identifier: 70:0F:98:D4:52:31:F6:8C:35:62:03:E5:75:56:0A:E5:F7:4E:B4:B7 Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0B81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0B7A Signing time: Sat 18 May 2024 19:27:34 +0000 Manifest this update: Sat 18 May 2024 19:27:34 +0000 Manifest next update: Sat 25 May 2024 19:27:34 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: jIyXZbbhCD1s2Z9gKO3zmsInwOOs5MkakXeGD9/1w08=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: Ykh/ajdiEQ6UqJC1nIow2mRMlvxbjVdtujI4Th0ysiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2945 (0xb81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: May 18 19:27:34 2024 GMT Not After : May 25 19:27:34 2024 GMT Subject: CN=66490126-7ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:3f:bd:c2:5e:a9:6c:42:fa:2d:0f:a8:7f: 01:13:3e:8a:c5:1b:23:85:25:08:03:5a:a6:9b:6c: ec:bd:ea:eb:b9:84:7a:c6:81:b2:6d:24:55:2c:46: 86:db:12:41:cd:77:f6:bc:90:73:0f:45:41:42:0b: 81:84:bd:5a:8d:74:f9:f1:35:9b:fe:f7:ad:0b:cb: 05:50:b7:aa:88:4b:32:80:9f:22:ad:73:53:06:9d: b3:dc:72:68:3b:f1:c0:5e:69:6e:10:69:a9:b0:e1: 9d:46:af:97:ab:42:4f:53:09:53:6e:20:03:b8:c7: f0:a7:39:62:d1:20:8d:4a:a3:84:63:e1:27:4a:bb: 4a:f6:f1:d7:65:88:35:ba:c0:f8:c9:1d:c5:9d:f8: e5:0c:b6:04:79:bf:73:9f:45:57:1e:0e:d6:04:4c: 40:d8:44:48:c1:e7:e1:0d:b5:9b:1b:5a:e3:1d:78: f6:e6:5e:39:bd:6f:53:d0:0e:cb:ca:bb:54:7e:f0: d0:68:78:03:e3:1f:45:96:ef:bd:df:6e:1e:35:27: fb:5e:f3:62:74:6f:c8:0a:9f:61:52:b9:ea:aa:2a: c5:89:08:6b:34:64:5e:0b:2d:b6:19:84:c3:c7:03: b9:70:62:e2:b4:b1:4a:b8:56:9e:23:79:3a:c9:f5: e3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0F:98:D4:52:31:F6:8C:35:62:03:E5:75:56:0A:E5:F7:4E:B4:B7 X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ac:af:be:28:ea:ef:cb:a2:52:a9:0e:ab:dd:c8:da:25:52: 99:26:46:0f:4b:de:b7:bf:ff:97:85:23:e5:6e:4c:bd:b9:69: 28:13:cf:f7:75:ca:01:17:72:d7:57:4b:0d:75:ca:fb:46:97: 3f:19:3d:5f:9e:28:a1:e0:be:36:cc:f5:fd:f2:c5:c4:95:1c: 1f:4d:68:bc:e2:ad:6c:34:f2:3d:8f:4d:63:fd:fb:4b:b8:e7: bc:81:dc:3b:64:f8:72:f6:e1:cd:77:80:1e:55:0d:33:79:f9: e8:ad:c1:72:0e:34:0a:ae:48:c4:af:d4:f6:7e:bc:68:be:17: d0:85:37:3f:43:45:79:70:01:20:f3:16:02:60:d3:2f:d5:85: 38:45:89:fa:2a:7b:bc:25:0e:04:8d:4d:e1:4d:91:fa:3f:9f: 67:da:ba:77:32:f1:58:10:26:1b:14:51:94:4c:08:2f:cd:5a: 18:7a:1e:50:ab:90:5d:7d:ad:48:d3:37:e0:ea:cc:18:f9:f5: 48:74:3d:56:9a:dd:dd:da:35:bf:87:83:9f:53:b2:26:02:71: 23:b3:ab:f8:2e:bc:8d:5b:3d:c1:0f:11:11:58:52:1b:13:75: c2:eb:d1:8c:8d:43:fe:20:d0:ff:ca:48:52:2c:66:3f:27:dd: b4:12:b4:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjQwNTE4MTkyNzM0WhcNMjQwNTI1MTkyNzM0WjAYMRYwFAYD VQQDEw02NjQ5MDEyNi03YWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1S4/vcJeqWxC+i0PqH8BEz6KxRsjhSUIA1qmm2zsverruYR6xoGybSRVLEaG 2xJBzXf2vJBzD0VBQguBhL1ajXT58TWb/vetC8sFULeqiEsygJ8irXNTBp2z3HJo O/HAXmluEGmpsOGdRq+Xq0JPUwlTbiADuMfwpzli0SCNSqOEY+EnSrtK9vHXZYg1 usD4yR3FnfjlDLYEeb9zn0VXHg7WBExA2ERIwefhDbWbG1rjHXj25l45vW9T0A7L yrtUfvDQaHgD4x9Flu+9324eNSf7XvNidG/ICp9hUrnqqirFiQhrNGReCy22GYTD xwO5cGLitLFKuFaeI3k6yfXjzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAPmNRS MfaMNWID5XVWCuX3TrS3MB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrrK++KOrvy6JSqQ6r3cjaJVKZJkYPS963v/+XhSPlbky9uWkoE8/3 dcoBF3LXV0sNdcr7Rpc/GT1fniih4L42zPX98sXElRwfTWi84q1sNPI9j01j/ftL uOe8gdw7ZPhy9uHNd4AeVQ0zefnorcFyDjQKrkjEr9T2frxovhfQhTc/Q0V5cAEg 8xYCYNMv1YU4RYn6Knu8JQ4EjU3hTZH6P59n2rp3MvFYECYbFFGUTAgvzVoYeh5Q q5Bdfa1I0zfg6swY+fVIdD1Wmt3d2jW/h4OfU7ImAnEjs6v4LryNWz3BDxERWFIb E3XC69GMjUP+IND/ykhSLGY/J920ErQX -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org