$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: F35X0B51v9ok8yhidYQOs0yoo1svDhyOKwY3n8ZDcPU= Subject key identifier: 41:DD:DF:4B:BC:38:CE:6B:B1:BC:E1:50:A6:E3:BB:D8:99:6D:FB:6A Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0E82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0E7C Signing time: Thu 30 May 2024 18:43:20 +0000 Manifest this update: Thu 30 May 2024 18:43:20 +0000 Manifest next update: Thu 06 Jun 2024 18:43:20 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: Hr03hWtuvD3NaEGIIn6V7Ph7JZwmhhMRtD88JbQl6GQ=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: 6i4BCEHjBFl2ANCm8cheTUA6wt1Z3/s71HG8N+bGYPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 18:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3714 (0xe82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: May 30 18:43:20 2024 GMT Not After : Jun 6 18:43:20 2024 GMT Subject: CN=6658c8c8-cb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:4f:29:15:aa:11:78:0f:2b:b3:50:e8:b7: ec:5d:f2:48:80:54:f4:99:60:40:3d:88:c7:0b:d1: 34:66:d3:36:7c:ac:67:ea:4a:2a:a1:50:22:c7:78: 68:75:f0:ba:c0:f2:e8:1a:51:a4:15:82:7a:b4:d3: 67:76:2b:f9:1e:ad:7c:b8:13:c4:a9:45:b3:03:ed: 0f:68:ef:7b:41:21:3d:07:f6:78:fa:43:ef:3a:b2: 6e:71:ed:7c:80:49:35:97:15:07:b1:d0:27:b6:1e: a4:7b:0f:ea:c4:8c:56:ff:19:8f:9a:71:59:ad:89: b9:fd:44:d5:b5:96:2f:4d:c0:e5:46:ae:c5:bf:96: 12:13:3f:c6:a1:83:a2:78:60:35:9b:8f:e8:49:5f: 77:68:ae:70:84:b7:19:d0:f6:05:dc:fd:b2:c9:17: 71:1b:ff:29:57:04:2f:57:e4:40:9f:e9:4a:8e:76: 42:88:af:be:63:fa:21:84:7a:76:3b:28:4b:01:bf: 2e:43:2f:ce:63:10:b6:38:17:d0:35:4e:f0:fb:6b: 3d:57:5b:57:ab:76:a5:b1:59:c2:d1:dc:34:23:9e: 06:85:d3:ab:1a:2d:2b:03:ed:38:9d:91:01:19:78: 39:29:95:19:9e:d0:0c:94:59:9b:18:d7:44:1a:14: d8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DD:DF:4B:BC:38:CE:6B:B1:BC:E1:50:A6:E3:BB:D8:99:6D:FB:6A X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e4:f6:f5:3d:0b:4a:3a:79:5d:af:f9:ac:42:a6:4c:2e:2e: f3:c2:1a:c2:11:72:78:e7:dc:1a:a2:10:97:dd:3c:77:65:69: d1:28:5a:e1:ac:8b:1c:eb:71:fd:ad:3e:3a:b6:34:fa:93:f8: 9c:9d:df:79:f3:23:0e:14:21:a1:20:79:71:60:33:8b:05:00: 44:13:30:80:cc:4e:4c:7d:b6:4f:a1:d7:79:a4:a7:b2:59:4b: 03:6b:41:4f:8d:40:83:71:03:a7:65:25:8c:f0:f0:8a:9a:25: ac:c4:63:10:2a:bc:ad:50:9b:77:f5:05:66:c2:b9:99:fd:72: 3d:ba:39:f0:a0:6d:cf:72:27:6b:34:e6:88:40:56:32:eb:b9: 71:78:86:42:04:93:23:f8:ce:ad:eb:f2:41:99:85:5f:89:8a: c8:7b:8a:35:0f:85:c3:b4:8a:1e:d6:9c:a7:37:f5:0b:a7:7f: 9c:57:fa:92:fe:46:0d:97:74:a5:6a:5b:f2:b9:58:1f:27:bf: c4:ef:6e:8b:a7:83:08:4a:e9:af:42:6e:9d:04:83:bf:97:46: 76:a7:8e:ab:85:89:fc:05:94:ff:68:3c:f0:fc:b2:72:61:d5: b2:23:7e:78:10:19:29:1d:39:49:61:0c:ef:53:76:e1:18:f8: d9:33:27:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjQwNTMwMTg0MzIwWhcNMjQwNjA2MTg0MzIwWjAYMRYwFAYD VQQDEw02NjU4YzhjOC1jYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlBPKRWqEXgPK7NQ6LfsXfJIgFT0mWBAPYjHC9E0ZtM2fKxn6koqoVAix3ho dfC6wPLoGlGkFYJ6tNNndiv5Hq18uBPEqUWzA+0PaO97QSE9B/Z4+kPvOrJuce18 gEk1lxUHsdAnth6kew/qxIxW/xmPmnFZrYm5/UTVtZYvTcDlRq7Fv5YSEz/GoYOi eGA1m4/oSV93aK5whLcZ0PYF3P2yyRdxG/8pVwQvV+RAn+lKjnZCiK++Y/ohhHp2 OyhLAb8uQy/OYxC2OBfQNU7w+2s9V1tXq3alsVnC0dw0I54GhdOrGi0rA+04nZEB GXg5KZUZntAMlFmbGNdEGhTYswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHd30u8 OM5rsbzhUKbju9iZbftqMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa5Pb1PQtKOnldr/msQqZMLi7zwhrCEXJ459waohCX3Tx3ZWnRKFrh rIsc63H9rT46tjT6k/icnd958yMOFCGhIHlxYDOLBQBEEzCAzE5MfbZPodd5pKey WUsDa0FPjUCDcQOnZSWM8PCKmiWsxGMQKrytUJt39QVmwrmZ/XI9ujnwoG3Pcidr NOaIQFYy67lxeIZCBJMj+M6t6/JBmYVfiYrIe4o1D4XDtIoe1pynN/ULp3+cV/qS /kYNl3SlalvyuVgfJ7/E726Lp4MISumvQm6dBIO/l0Z2p46rhYn8BZT/aDzw/LJy YdWyI354EBkpHTlJYQzvU3bhGPjZMyd3 -----END CERTIFICATE-----Generated at Thu May 30 20:35:33 2024 by rpki-client on console-fra.rpki-client.org