$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: GRPS8XU5AUacHI7vatP+IOFdhL6qUqNS+6KyIZwCaAI= Subject key identifier: 61:8B:C6:9E:4D:AA:40:32:7F:3E:54:13:3E:66:29:E5:62:A5:FD:57 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1020 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0ED8 Signing time: Tue 14 May 2024 18:33:16 +0000 Manifest this update: Tue 14 May 2024 18:33:16 +0000 Manifest next update: Tue 21 May 2024 18:33:16 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: /tLi4rz04JmGNcurPJ4Nan7g3qOf9NPiGVORxaeuPyc=) 2: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: xxYyEpZag1NZ1YVYndXKJaVHjqWbXvMpUjSaCG/4lTI=) 3: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: xyiL245zv3soOWNmnQ3CXKrm6KDo3m3M0+ER+m7nz6w=) 4: 483ED5BA0A1C11EEA415BE0CC4F9AE02.roa (hash: D/3crIyU8HjWAFwEMFpIqSzaKamRrK84YSy2F/Qym+c=) 5: F9637F56BDC411E981D8F753C4F9AE02.roa (hash: ld5qjsviRKARXfOZluc1WUSjWqlncSGWbtF3KplFU6k=) 6: AC5C9A2E73A911ECB0D2F575C4F9AE02.roa (hash: GZ94utyG0+cR5BvdAQg5qH2TXKRYPQEQHyo67CJZGVM=) 7: 733A37A0BA8411E9A222573AC4F9AE02.roa (hash: I8cLqOWluZZCsIncXdNHU4L1J5xHDpsU2LgxuWbyVRM=) 8: 438155FAAA0211ECB9C24020C4F9AE02.roa (hash: QuwmZ+AGxSWEc5wCSNdmgZFC844AL9L/oxhwLXVnVr4=) 9: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: XeBHo5FdVfXO8aw7jY+yOahE3/vlEcHXS4f8ac1KyNs=) 10: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: bkJF1RMqxmnB3I+h7Doypvdywyl87p/hD6F1vQKxAqw=) 11: 01104CF47A2F11EE867CE132C4F9AE02.roa (hash: GpWNJDtBEQNR3OSYTdnw5TK3XQ8T2GrfA7smRKCAAo8=) 12: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: iYyS+bybg1N4q92AG6vYGGKuHIDF5qKD+4XmbjQ4HYs=) 13: 22961CBC27DA11EDB711771FC4F9AE02.roa (hash: 27xKP4p13+KxhOKhQEUrxfBRinjoahe2hsjy9oRlsPY=) 14: BAB88BD80FCE11EE9240F260C4F9AE02.roa (hash: GcjzK1R9eNmCTtSptY6/7tRQYUQNNpIJ4mnpVS7KojU=) 15: 781CCAEA0A2011EEA26EAE0EC4F9AE02.roa (hash: RxN0nf1C3hU5uhZsiv43xoFynIgVeuicubFzU/w4Do8=) 16: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: 1zBOBiinS/ZloM5sq5YNcMVSwVBiTUnO/TIbAYD4XQ0=) 17: 03E798D2CDEE11EB90A7506DC4F9AE02.roa (hash: GguUNN7Yz09+qECzH8WCpMZgxv9NF3h7iVb3wJ4UEaU=) 18: 5FF14E3E0FEF11EA90D3F06BC4F9AE02.roa (hash: qCPbcOCRE8IFByCepf6rhE6Bt+ZKo4wRMXRBa74IL6k=) 19: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: DmzaO72DSmzPNQVFym/EVTnQP4L6rePeT6KQTHPm75o=) 20: 76963436A9FF11ECB6C3AB15C4F9AE02.roa (hash: F+XL/mMzvTwAug3HF+nnP5g2vX74Cc2UdTQaef14S+I=) 21: 59DDEEAE700111EAB050DC3AC4F9AE02.roa (hash: k9sGNlFCzP63h1aS8flZHgyf/5JP24HJyv51VFBQCn0=) 22: AD05EC26D46911EBAD413D1FC4F9AE02.roa (hash: 2DzD6tW5ur7fOvtdPsKwJGk5vBI9sj5guJcnxe9qbs0=) 23: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: FrFaSaINoC1wJx6E5WKf7naZ5xMoRnwWHyi3iWeF/9Q=) 24: 5F3D28A41DB511EA9828E879C4F9AE02.roa (hash: dAmxHSP1Nxeaf7W9R7ldQNdjXVYDyYrHplx4HKQyvtQ=) 25: E193F422AC3611E9A6878133C4F9AE02.roa (hash: kSak2DCDwXANHTXswAUkn0JLfJbv9H70TZu4GGZOxpY=) 26: C2356A948FE811E98B967A66C4F9AE02.roa (hash: GNxhtGxMnmiC+UkBLvn1SuqbaYeBUxWI95G1mP6k7nA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 18:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4128 (0x1020) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 14 18:33:16 2024 GMT Not After : May 21 18:33:16 2024 GMT Subject: CN=6643ae6c-6a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:13:cc:1d:16:0e:9e:19:26:66:5d:14:9f:93: ec:2b:27:cd:4c:96:63:d9:80:8c:10:ab:45:19:17: 32:cc:0c:1d:e5:a8:21:ab:9c:bc:36:5f:d2:db:53: 3f:97:5b:06:e6:8c:1e:89:da:eb:22:be:50:08:9a: 98:31:49:23:13:e2:ed:e6:87:64:23:5d:f8:be:e2: 5a:a9:84:32:74:68:5d:61:c8:b4:9e:7c:ea:52:93: cb:66:42:26:b0:32:20:b8:d2:9d:02:09:45:84:ad: de:fd:4a:ad:49:fa:65:b2:19:86:2d:6c:0c:5e:41: 44:e8:dd:cb:32:4c:e4:9c:f7:4e:db:de:00:47:fd: e1:f7:2e:48:f2:43:d3:b5:c0:d4:dd:8b:1e:ac:58: ac:5d:d7:1f:50:b9:d4:46:eb:f9:38:9f:11:b9:18: 98:c2:1f:d8:c5:6d:dd:a2:6b:86:64:b8:0c:2c:f6: 2b:dc:f9:3b:6a:ee:8c:a0:ba:6f:40:bb:85:5e:5f: 01:25:1f:27:70:17:48:f1:99:75:3d:4e:b7:5f:3c: e8:63:28:df:4a:77:ff:9a:88:18:c1:cc:15:03:3b: 71:ff:e9:cc:2d:e3:76:93:ed:4d:d9:45:2e:60:04: 30:28:1e:b8:11:3b:42:c8:84:ac:2f:3e:46:d3:43: 02:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8B:C6:9E:4D:AA:40:32:7F:3E:54:13:3E:66:29:E5:62:A5:FD:57 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:a4:98:45:05:43:21:d1:ca:f9:db:13:92:72:df:44:90:67: 6f:e8:3c:5d:06:ca:c4:dc:1f:e2:47:15:ef:9d:48:34:02:32: 58:ad:79:c3:8d:d6:09:2e:b2:8a:e2:0a:19:2d:5c:44:20:8f: 74:0f:be:aa:bb:a5:89:6f:33:0b:34:ef:c1:07:41:5b:85:44: 26:05:4b:6a:ae:38:2d:74:84:f8:9d:01:e8:4d:5e:b9:61:ce: 46:70:17:95:c0:76:9e:46:45:73:ef:c3:f5:17:46:57:87:06: 7d:76:37:6c:f4:75:b8:8a:a1:29:a2:63:33:bf:02:ab:cb:44: 84:26:63:25:dd:b6:8a:a1:42:86:ff:3d:6c:53:5d:92:2e:97: cf:0f:9b:3b:1f:f3:d5:3e:39:6e:f0:95:82:92:ab:54:36:16: 25:33:fb:bd:2f:54:b9:15:42:21:6c:14:e1:b7:84:87:6c:17: 6b:13:7f:eb:34:86:da:97:cf:ca:f5:7d:c8:1a:ff:59:30:fc: 77:a0:bd:ed:27:89:0a:7d:36:53:aa:4b:24:68:13:cf:2e:2b: c2:22:ae:cb:8e:1f:0d:8f:d1:cc:bd:20:9b:ac:a9:86:d4:9d: ae:d0:50:38:74:be:6f:6f:8a:2c:4a:57:db:95:fe:81:78:93: ac:bc:1b:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQwNTE0MTgzMzE2WhcNMjQwNTIxMTgzMzE2WjAYMRYwFAYD VQQDEw02NjQzYWU2Yy02YTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRPMHRYOnhkmZl0Un5PsKyfNTJZj2YCMEKtFGRcyzAwd5aghq5y8Nl/S21M/ l1sG5oweidrrIr5QCJqYMUkjE+Lt5odkI134vuJaqYQydGhdYci0nnzqUpPLZkIm sDIguNKdAglFhK3e/UqtSfplshmGLWwMXkFE6N3LMkzknPdO294AR/3h9y5I8kPT tcDU3YserFisXdcfULnURuv5OJ8RuRiYwh/YxW3domuGZLgMLPYr3Pk7au6MoLpv QLuFXl8BJR8ncBdI8Zl1PU63XzzoYyjfSnf/mogYwcwVAztx/+nMLeN2k+1N2UUu YAQwKB64ETtCyISsLz5G00MCKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGLxp5N qkAyfz5UEz5mKeVipf1XMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBopJhFBUMh0cr52xOSct9EkGdv6DxdBsrE3B/iRxXvnUg0AjJYrXnD jdYJLrKK4goZLVxEII90D76qu6WJbzMLNO/BB0FbhUQmBUtqrjgtdIT4nQHoTV65 Yc5GcBeVwHaeRkVz78P1F0ZXhwZ9djds9HW4iqEpomMzvwKry0SEJmMl3baKoUKG /z1sU12SLpfPD5s7H/PVPjlu8JWCkqtUNhYlM/u9L1S5FUIhbBTht4SHbBdrE3/r NIbal8/K9X3IGv9ZMPx3oL3tJ4kKfTZTqkskaBPPLivCIq7Ljh8Nj9HMvSCbrKmG 1J2u0FA4dL5vb4osSlfblf6BeJOsvBup -----END CERTIFICATE-----Generated at Tue May 14 19:55:16 2024 by rpki-client on console-fra.rpki-client.org