$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: eJYgec/ZyTB+X08P0PkKGZQ15rF4VxUNq2wuiDFmk+I= Subject key identifier: C8:7A:A7:74:8F:1B:2A:67:A4:DA:54:78:C9:0B:C1:6A:F2:2E:30:5D Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 01B0 Signing time: Fri 31 May 2024 05:15:38 +0000 Manifest this update: Fri 31 May 2024 05:15:37 +0000 Manifest next update: Fri 07 Jun 2024 05:15:37 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: Ok+Z6xGxeQSmYz/rSulzUdfeb8LbnhVGvcAY2Ga2SXQ=) 2: C54D0330AA4211EE9EF2DA5CC4F9AE02.roa (hash: pPNr2vP938YFjWaE0p7iyrMUE/RcTz0DWkVXQ5BT9KU=) 3: B19EF9D8AA4211EE844BD455C4F9AE02.roa (hash: 1jHSuX078XHq1fu4zlmcM4VBSWXhCHJT4qlwEPLPstg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 05:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: May 31 05:15:37 2024 GMT Not After : Jun 7 05:15:37 2024 GMT Subject: CN=66595cfa-e057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:47:0f:88:46:f1:d9:98:27:77:4d:1c:ed: e2:1c:f3:2f:05:e9:b7:3d:38:34:e4:47:19:c7:1a: 6c:2a:a5:33:52:d4:00:69:c5:fc:ad:fd:75:04:a2: 70:5b:15:81:73:12:46:b4:a7:0a:23:02:7a:14:8f: 6c:d5:bf:c6:3e:45:5a:ef:9c:92:9e:91:a6:d7:c8: 0b:a9:96:2c:26:fb:d6:2d:43:6c:64:b6:9e:e5:e7: 0c:d4:33:b2:15:36:ca:00:4d:c3:34:fe:bf:76:fa: e9:71:92:8d:ed:e6:b8:3e:68:c4:be:4e:96:ea:c9: 0f:ee:98:f3:6d:7d:d9:0d:91:9b:7d:6a:11:f7:6b: ee:b5:f2:29:3a:92:54:ec:20:ec:16:cd:b4:3d:e8: c6:f5:ca:2a:fc:3c:70:6f:8d:d9:44:aa:f2:8b:a2: 25:76:13:f8:e9:46:3f:d5:3f:d8:72:60:f9:e9:19: df:ef:b8:5c:bf:a0:64:0a:8d:b2:1a:5d:e9:26:53: 3b:bd:d5:3d:94:af:f7:eb:4f:71:a2:8c:80:6d:4e: 2b:bc:8f:94:af:09:66:71:3e:cf:72:c3:c5:fc:37: 7b:2f:05:2b:04:46:16:aa:c8:dd:be:8c:9a:ea:58: 52:72:a5:47:c4:1b:04:17:fc:68:9f:9a:86:e9:8f: 8c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:7A:A7:74:8F:1B:2A:67:A4:DA:54:78:C9:0B:C1:6A:F2:2E:30:5D X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8b:24:15:6e:bd:f2:06:ad:8f:f5:bb:aa:f1:6c:40:bc:b1: 16:72:96:61:12:11:ae:37:24:64:c7:f9:99:ea:6e:b5:e4:7e: cc:d3:71:a3:dd:82:5a:44:77:72:4b:25:e0:4f:3d:96:86:8f: 3a:f3:0a:16:1e:e8:c9:72:56:08:27:43:f5:ee:6c:f5:96:a6: 09:bf:30:43:d6:45:4e:d4:69:c0:54:62:4a:e0:78:fc:91:1c: 98:fc:6e:8f:45:89:3e:02:c0:ac:63:c1:05:b7:9c:18:b3:92: 5d:72:19:8a:1f:41:c5:cb:4a:a7:9b:82:9e:d8:e3:f6:5c:b7: 9e:f7:36:e7:40:a4:38:a2:6a:b4:23:87:0c:2a:5e:e2:e1:62: 18:04:9b:da:f9:78:56:e9:64:15:44:a5:c0:fa:c7:11:47:46: 9a:28:80:df:ba:5f:b4:b0:f5:f4:2a:5e:bc:12:08:88:7c:dc: b3:a1:67:8e:8c:1d:0a:14:18:69:2a:e1:51:8f:f9:fd:65:95: fb:bf:df:4e:29:8e:f2:5e:57:66:cb:c4:fb:c5:4c:49:14:45: 8d:4f:9b:ec:f3:17:2a:9c:5b:e7:7e:1a:67:3d:ee:3d:05:5d: f4:47:ba:04:36:24:46:d6:ba:ff:ba:c8:ac:61:47:65:5e:f1: 64:28:f8:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjQwNTMxMDUxNTM3WhcNMjQwNjA3MDUxNTM3WjAYMRYwFAYD VQQDEw02NjU5NWNmYS1lMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1adHD4hG8dmYJ3dNHO3iHPMvBem3PTg05EcZxxpsKqUzUtQAacX8rf11BKJw WxWBcxJGtKcKIwJ6FI9s1b/GPkVa75ySnpGm18gLqZYsJvvWLUNsZLae5ecM1DOy FTbKAE3DNP6/dvrpcZKN7ea4PmjEvk6W6skP7pjzbX3ZDZGbfWoR92vutfIpOpJU 7CDsFs20PejG9coq/Dxwb43ZRKryi6IldhP46UY/1T/YcmD56Rnf77hcv6BkCo2y Gl3pJlM7vdU9lK/3609xooyAbU4rvI+UrwlmcT7PcsPF/Dd7LwUrBEYWqsjdvoya 6lhScqVHxBsEF/xon5qG6Y+MnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMh6p3SP GypnpNpUeMkLwWryLjBdMB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbiyQVbr3yBq2P9buq8WxAvLEWcpZhEhGuNyRkx/mZ6m615H7M03Gj 3YJaRHdySyXgTz2Who868woWHujJclYIJ0P17mz1lqYJvzBD1kVO1GnAVGJK4Hj8 kRyY/G6PRYk+AsCsY8EFt5wYs5JdchmKH0HFy0qnm4Ke2OP2XLee9zbnQKQ4omq0 I4cMKl7i4WIYBJva+XhW6WQVRKXA+scRR0aaKIDful+0sPX0Kl68EgiIfNyzoWeO jB0KFBhpKuFRj/n9ZZX7v99OKY7yXldmy8T7xUxJFEWNT5vs8xcqnFvnfhpnPe49 BV30R7oENiRG1rr/usisYUdlXvFkKPhI -----END CERTIFICATE-----Generated at Fri May 31 05:53:52 2024 by rpki-client on console-fra.rpki-client.org