$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: a94JetGO59CiLDO2sD5MLhYtnnIge6xa+pCYw7h8zdU= Subject key identifier: 59:6C:C5:53:2D:26:5A:B2:88:93:C4:BE:09:63:BF:8A:CC:D7:04:A4 Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: CC Signing time: Sun 19 May 2024 06:15:34 +0000 Manifest this update: Sun 19 May 2024 06:15:33 +0000 Manifest next update: Sun 26 May 2024 06:15:33 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: xkqj3R0MX+VLlGEi3qMXGYS/KVBPzXe5Qvix6VxwkLw=) 2: BE7ACD44FEDF11EDB4C36F29C4F9AE02.roa (hash: XvPpK73yQ7IRxyPallfmcFZ9RhrXsoC3LQs+zpaUSLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: May 19 06:15:33 2024 GMT Not After : May 26 06:15:33 2024 GMT Subject: CN=66499906-fd07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6b:35:f6:86:5d:0d:bb:ae:06:46:8e:1a:45: 2e:8e:2d:83:43:cb:99:08:cc:6d:57:63:ef:fb:77: bf:b1:3b:3f:60:c1:49:ef:cb:3c:0a:68:2b:ed:05: ff:be:16:56:9a:7a:d8:5c:2a:a5:9b:57:26:f0:54: e7:41:30:4c:c5:6c:6f:21:7e:52:8f:16:84:e3:76: 44:25:f9:74:52:ba:02:78:ba:86:1d:5d:eb:74:f5: c6:7d:c7:c7:13:37:67:55:f4:61:1c:f5:c1:bc:04: 0d:36:96:dc:0c:12:1f:94:7c:50:1e:40:04:0d:e6: ea:a3:0c:1a:c8:32:00:fb:f3:cd:38:23:a8:52:8f: 7d:3f:6c:bf:fa:0f:f5:e0:c0:04:96:78:35:0a:2b: 9f:de:8e:b2:bf:e7:6f:7b:0e:98:b6:77:3b:a0:b1: 98:47:9b:cf:cc:43:f8:92:f0:a8:e1:38:be:2e:df: 3b:67:fc:e3:fc:bf:b7:a6:87:2e:e5:7a:5c:fa:cc: d6:08:e0:86:3b:03:c6:fd:04:3c:2e:0d:89:0c:78: f0:27:18:8c:ce:ca:22:98:d4:fb:8c:b1:4a:fd:36: a1:2c:6f:79:e0:1d:6f:11:c0:d6:35:2e:30:f7:a2: 53:09:8d:83:c8:c1:3b:aa:7d:8d:75:05:ae:ea:06: 8b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6C:C5:53:2D:26:5A:B2:88:93:C4:BE:09:63:BF:8A:CC:D7:04:A4 X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:49:ec:95:ad:33:ab:f8:c6:a8:2f:06:01:28:0e:b5:c3:6e: 99:8e:c5:bd:ec:f7:48:da:a9:43:fe:3e:cd:16:72:86:9a:55: 86:9e:cd:33:3e:4c:d0:31:92:64:35:0d:63:42:a3:44:79:e0: 09:c6:f5:db:97:ce:15:1c:75:b6:e7:30:c2:c5:68:34:94:29: 1e:8b:9f:05:fc:8e:6c:5c:ff:2a:76:cb:86:8d:07:6a:24:df: 86:d7:4c:21:41:70:d3:31:b6:54:09:58:07:6e:c1:fb:a6:72: a8:1a:b3:a1:8a:51:e5:c9:b8:9d:4e:fb:03:85:67:79:7d:ed: c9:33:46:42:dd:56:8e:11:89:04:cf:f7:ce:74:03:92:cf:44: 1e:7a:f7:cf:99:ce:38:c4:1d:b6:5e:f2:14:36:f9:8e:fb:48: 17:67:81:4c:45:e3:07:36:12:b3:43:d9:13:41:06:a6:fa:5b: 86:18:fe:45:2f:51:b4:88:cb:7a:60:d9:fe:d5:39:89:1c:3a: 2f:8b:d5:f8:08:07:2f:5d:c3:07:62:b0:a3:49:79:6c:62:cd: 29:a9:d0:e9:4f:4d:44:cc:8f:e9:61:89:33:d0:ab:e6:40:10: 04:f9:ef:60:a2:e5:66:8e:26:b9:06:3f:82:5d:23:f1:83:ab: 20:fd:f0:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjQwNTE5MDYxNTMzWhcNMjQwNTI2MDYxNTMzWjAYMRYwFAYD VQQDEw02NjQ5OTkwNi1mZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Gs19oZdDbuuBkaOGkUuji2DQ8uZCMxtV2Pv+3e/sTs/YMFJ78s8Cmgr7QX/ vhZWmnrYXCqlm1cm8FTnQTBMxWxvIX5SjxaE43ZEJfl0UroCeLqGHV3rdPXGfcfH EzdnVfRhHPXBvAQNNpbcDBIflHxQHkAEDebqowwayDIA+/PNOCOoUo99P2y/+g/1 4MAElng1Ciuf3o6yv+dvew6Ytnc7oLGYR5vPzEP4kvCo4Ti+Lt87Z/zj/L+3pocu 5Xpc+szWCOCGOwPG/QQ8Lg2JDHjwJxiMzsoimNT7jLFK/TahLG954B1vEcDWNS4w 96JTCY2DyME7qn2NdQWu6gaLPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlsxVMt JlqyiJPEvgljv4rM1wSkMB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKSeyVrTOr+MaoLwYBKA61w26ZjsW97PdI2qlD/j7NFnKGmlWGns0z PkzQMZJkNQ1jQqNEeeAJxvXbl84VHHW25zDCxWg0lCkei58F/I5sXP8qdsuGjQdq JN+G10whQXDTMbZUCVgHbsH7pnKoGrOhilHlybidTvsDhWd5fe3JM0ZC3VaOEYkE z/fOdAOSz0QeevfPmc44xB22XvIUNvmO+0gXZ4FMReMHNhKzQ9kTQQam+luGGP5F L1G0iMt6YNn+1TmJHDovi9X4CAcvXcMHYrCjSXlsYs0pqdDpT01EzI/pYYkz0Kvm QBAE+e9gouVmjia5Bj+CXSPxg6sg/fAt -----END CERTIFICATE-----Generated at Sun May 19 07:40:40 2024 by rpki-client on console-fra.rpki-client.org