$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: RX3TO9EnJu0eWr6sCFg/vPiLE9eonbH68clJAlyHSv8= Subject key identifier: F8:B2:CB:F4:26:2B:01:70:F1:FA:4B:62:33:A6:B3:6B:82:9C:32:56 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 05D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 05CB Signing time: Sun 19 May 2024 00:06:31 +0000 Manifest this update: Sun 19 May 2024 00:06:30 +0000 Manifest next update: Sun 26 May 2024 00:06:30 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: MPuXTipHGhOIrK+l3iAPXgdUCPS9ZnfBngbRI79Q0aQ=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: YpKPPRjvZay6AfBO/f+Z23/o4Pt74yWgYQZvoPLBwlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1489 (0x5d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: May 19 00:06:30 2024 GMT Not After : May 26 00:06:30 2024 GMT Subject: CN=66494287-14e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:8f:9b:ae:c1:63:ff:f2:85:b9:e7:45:4c: 71:87:d3:9d:86:62:89:00:61:c7:18:b4:ff:59:c1: 91:67:60:fb:12:d5:f1:05:70:50:8a:c2:31:1d:54: 9f:03:5e:fa:31:84:07:56:80:9c:ad:a2:9e:1b:c1: 28:ce:d8:4b:5f:c4:67:b5:e0:c4:4b:97:d4:23:bd: 62:e2:af:28:75:8f:7d:45:eb:07:48:31:e0:42:ca: 36:98:a6:32:72:a6:dd:20:9b:b2:93:f4:4d:1c:e3: 55:03:48:e0:b2:da:eb:49:4f:db:4d:6b:fb:12:a6: 58:fd:26:d2:fd:62:b6:88:b4:53:24:cd:b6:ae:27: 6e:43:08:44:13:95:98:fa:f5:0c:01:e6:b2:1b:64: 51:3c:eb:46:92:5b:2d:38:02:f2:e8:0f:f9:2c:5d: 7d:dc:c2:61:b9:7d:94:8b:9e:e2:30:05:57:62:49: f3:1b:d8:92:10:c9:1d:a4:79:bd:9a:d1:09:68:f1: e0:02:57:d2:f4:4e:68:89:95:9f:35:93:84:e7:a4: fd:80:2e:b9:5e:cc:42:1b:9f:f4:09:cf:ad:12:6a: fb:2d:e4:43:29:28:9f:2a:3f:fe:e2:77:a4:fa:20: cb:12:57:52:7c:f9:31:b9:41:d2:4e:f0:83:87:ca: 43:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B2:CB:F4:26:2B:01:70:F1:FA:4B:62:33:A6:B3:6B:82:9C:32:56 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:01:be:03:53:20:64:83:d1:c3:6f:91:6f:d1:fe:1c:6d:ac: 0f:5d:e1:b8:3d:79:02:04:f2:15:54:21:8a:71:a8:0c:1c:8a: 42:9e:bb:7c:90:df:e5:6b:79:5f:75:7b:cd:29:a4:79:b8:40: 45:d8:19:57:7b:47:0d:1e:e0:8a:93:60:52:a2:17:c5:74:c9: e6:61:28:5c:c7:69:b3:79:af:55:18:65:db:3c:85:bf:5e:48: ca:ce:64:81:f0:ba:70:41:9d:0d:b0:ca:d5:64:17:ed:11:ce: 8c:74:3e:92:7d:76:08:6d:45:dc:7e:6c:28:89:67:df:2a:a8: 48:a1:57:54:1f:ad:26:fb:7e:a6:6e:ed:6e:de:8a:07:40:d9: fe:0f:5f:bf:55:eb:ae:20:a1:e3:09:99:d5:34:17:fc:d0:3e: 29:69:5a:0d:cb:e2:0e:08:94:a5:6d:47:f6:30:d7:43:b1:f7: ba:e3:44:e7:e5:cf:fe:c2:4b:15:69:81:f1:1f:60:14:f4:7b: 85:e3:7a:cb:76:1c:23:10:1d:8e:fe:ef:9e:07:f4:f5:82:bd: bf:b4:ab:01:9a:fe:a1:1e:d8:b7:43:ef:96:79:55:59:bf:07: 25:64:f3:a3:91:f2:4a:82:ee:ac:bc:35:b2:69:16:c4:8e:a6: 22:55:09:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjQwNTE5MDAwNjMwWhcNMjQwNTI2MDAwNjMwWjAYMRYwFAYD VQQDEw02NjQ5NDI4Ny0xNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbuPm67BY//yhbnnRUxxh9OdhmKJAGHHGLT/WcGRZ2D7EtXxBXBQisIxHVSf A176MYQHVoCcraKeG8EozthLX8RnteDES5fUI71i4q8odY99ResHSDHgQso2mKYy cqbdIJuyk/RNHONVA0jgstrrSU/bTWv7EqZY/SbS/WK2iLRTJM22riduQwhEE5WY +vUMAeayG2RRPOtGklstOALy6A/5LF193MJhuX2Ui57iMAVXYknzG9iSEMkdpHm9 mtEJaPHgAlfS9E5oiZWfNZOE56T9gC65XsxCG5/0Cc+tEmr7LeRDKSifKj/+4nek +iDLEldSfPkxuUHSTvCDh8pDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiyy/Qm KwFw8fpLYjOms2uCnDJWMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdAb4DUyBkg9HDb5Fv0f4cbawPXeG4PXkCBPIVVCGKcagMHIpCnrt8 kN/la3lfdXvNKaR5uEBF2BlXe0cNHuCKk2BSohfFdMnmYShcx2mzea9VGGXbPIW/ XkjKzmSB8LpwQZ0NsMrVZBftEc6MdD6SfXYIbUXcfmwoiWffKqhIoVdUH60m+36m bu1u3ooHQNn+D1+/VeuuIKHjCZnVNBf80D4paVoNy+IOCJSlbUf2MNdDsfe640Tn 5c/+wksVaYHxH2AU9HuF43rLdhwjEB2O/u+eB/T1gr2/tKsBmv6hHti3Q++WeVVZ vwclZPOjkfJKgu6svDWyaRbEjqYiVQlQ -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org