$ rpki-client -vvf rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft File: NYOZxzbvBV1dWSyrGQFv44FvZgg.mft (raw, json) Hash identifier: K9na2Z3eOekiTL1rzQqjngz/mMxD0lV2jt22qACQS5s= Subject key identifier: E8:41:CA:C1:82:36:CE:55:EA:E1:6F:09:FA:EF:A7:72:36:5E:8A:C3 Authority key identifier: 35:83:99:C7:36:EF:05:5D:5D:59:2C:AB:19:01:6F:E3:81:6F:66:08 Certificate issuer: /CN=A919819A/serialNumber=358399C736EF055D5D592CAB19016FE3816F6608 Certificate serial: 33E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYOZxzbvBV1dWSyrGQFv44FvZgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft Manifest number: 33D7 Signing time: Sat 18 May 2024 15:11:28 +0000 Manifest this update: Sat 18 May 2024 15:11:27 +0000 Manifest next update: Sat 25 May 2024 15:11:27 +0000 Files and hashes: 1: NYOZxzbvBV1dWSyrGQFv44FvZgg.crl (hash: /ebQsXo9u5gXrnmMmZcHzFuddZCBA8UZ/FRBunscaDg=) 2: 73462B74643C11EB9E7DF918C4F9AE02.roa (hash: Y9VWafh22KU7OnWVXkmUJUXKGTh789Edf5KDIHOIQCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.crl rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYOZxzbvBV1dWSyrGQFv44FvZgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13283 (0x33e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919819A/serialNumber=358399C736EF055D5D592CAB19016FE3816F6608 Validity Not Before: May 18 15:11:27 2024 GMT Not After : May 25 15:11:27 2024 GMT Subject: CN=6648c520-44d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:62:26:d5:ed:10:d5:ce:80:e3:97:fa:d0: e0:d8:bf:b3:fe:57:84:71:1c:19:b4:c2:c4:e3:5d: 1d:32:b3:3b:17:95:17:92:d6:b1:7b:db:e1:d1:be: cd:b8:fb:33:1c:a2:0c:db:2f:f5:4d:7c:bb:06:5b: 11:5a:db:7e:9d:63:ea:f3:c3:58:d6:8b:40:b0:fd: de:2f:84:a9:8d:2d:8a:bc:b5:9e:4e:6e:2e:7a:b0: 55:48:2b:36:db:30:88:b6:23:c9:9e:20:28:da:df: 09:bf:51:6d:94:2e:2f:01:a6:18:d9:31:9f:30:b6: e2:7a:20:8e:4a:c2:cb:ca:4c:e2:79:63:e0:84:c0: 79:9c:9b:7d:dc:56:f7:7e:8c:e3:b7:77:55:0c:f2: ab:97:8a:3a:8f:5e:1f:34:39:55:30:9b:fb:2a:f1: a9:36:ce:52:d5:39:02:c7:31:b1:4d:6e:7d:e1:5b: b2:a1:41:62:83:1b:af:32:c9:9f:4c:0c:9d:b6:94: 29:5b:b2:5f:52:85:01:49:92:dc:13:b3:f0:e2:32: 08:1c:3a:cf:d4:fc:f5:84:8e:c5:ac:cb:95:a0:c3: 18:86:ae:8f:96:2d:0e:5f:db:fa:13:38:65:7e:cb: 7d:8c:52:b9:83:a3:d5:00:af:0c:f8:56:af:31:fc: 67:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:41:CA:C1:82:36:CE:55:EA:E1:6F:09:FA:EF:A7:72:36:5E:8A:C3 X509v3 Authority Key Identifier: keyid:35:83:99:C7:36:EF:05:5D:5D:59:2C:AB:19:01:6F:E3:81:6F:66:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYOZxzbvBV1dWSyrGQFv44FvZgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:87:53:5b:4c:1a:de:b2:76:c4:52:42:9f:e8:8f:fd:b6:4d: d0:d5:98:c3:20:d9:13:6e:da:52:94:7c:f5:59:9e:dc:da:61: ce:60:2e:2b:6d:e2:15:31:cc:a9:7f:eb:01:a3:28:eb:4a:9a: 46:11:ba:e7:ee:9b:a2:f0:14:dc:09:32:ce:54:b4:4f:84:97: a9:85:31:11:40:0f:c7:2b:67:13:64:b0:23:81:85:d2:35:02: d5:8c:ce:a7:46:ec:58:31:f8:79:bf:a1:3b:cf:61:e4:64:79: 47:72:e0:4a:32:ae:9f:a6:f0:30:68:bd:e0:d6:dd:90:e7:81: c0:9a:04:80:c5:a0:25:8a:59:a9:e4:56:45:fb:fe:04:ff:ae: 85:cf:f5:0d:3d:01:1c:05:20:24:ef:d9:df:9c:c3:eb:78:a1: 55:c1:be:d3:f8:e7:af:30:68:d9:cf:cc:fe:1d:0d:ae:5e:70: 67:c5:36:e8:b6:53:2b:25:97:d1:b3:c1:97:00:c8:ba:7a:8b: fa:74:c4:f3:e2:1f:a3:85:cb:45:7a:e3:22:99:a8:27:b6:53: 97:5a:cf:b4:42:8d:02:98:a9:32:a0:cc:75:b5:5c:11:c3:82: 3b:95:37:3b:b5:54:c8:b4:c4:ba:4e:bc:19:7d:db:f1:19:e1: 4a:2a:68:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxOUExMTAvBgNVBAUTKDM1ODM5OUM3MzZFRjA1NUQ1RDU5MkNBQjE5MDE2RkUz ODE2RjY2MDgwHhcNMjQwNTE4MTUxMTI3WhcNMjQwNTI1MTUxMTI3WjAYMRYwFAYD VQQDEw02NjQ4YzUyMC00NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGpiJtXtENXOgOOX+tDg2L+z/leEcRwZtMLE410dMrM7F5UXktaxe9vh0b7N uPszHKIM2y/1TXy7BlsRWtt+nWPq88NY1otAsP3eL4SpjS2KvLWeTm4uerBVSCs2 2zCItiPJniAo2t8Jv1FtlC4vAaYY2TGfMLbieiCOSsLLykzieWPghMB5nJt93Fb3 fozjt3dVDPKrl4o6j14fNDlVMJv7KvGpNs5S1TkCxzGxTW594VuyoUFigxuvMsmf TAydtpQpW7JfUoUBSZLcE7Pw4jIIHDrP1Pz1hI7FrMuVoMMYhq6Pli0OX9v6Ezhl fst9jFK5g6PVAK8M+FavMfxn6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhBysGC Ns5V6uFvCfrvp3I2XorDMB8GA1UdIwQYMBaAFDWDmcc27wVdXVksqxkBb+OBb2YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE5QS82M0VBMjA5MjFE OUUxMUUyQURCNzNGOEUwOEIwMkNEMi9OWU9aeHpidkJWMWRXU3lyR1FGdjQ0RnZa Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZT1p4emJ2QlYxZFdTeXJHUUZ2NDRGdlpnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE5QS82M0VBMjA5MjFEOUUxMUUyQURCNzNGOEUwOEIwMkNEMi9OWU9aeHpidkJW MWRXU3lyR1FGdjQ0RnZaZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8h1NbTBresnbEUkKf6I/9tk3Q1ZjDINkTbtpSlHz1WZ7c2mHOYC4r beIVMcypf+sBoyjrSppGEbrn7pui8BTcCTLOVLRPhJephTERQA/HK2cTZLAjgYXS NQLVjM6nRuxYMfh5v6E7z2HkZHlHcuBKMq6fpvAwaL3g1t2Q54HAmgSAxaAlilmp 5FZF+/4E/66Fz/UNPQEcBSAk79nfnMPreKFVwb7T+OevMGjZz8z+HQ2uXnBnxTbo tlMrJZfRs8GXAMi6eov6dMTz4h+jhctFeuMimagntlOXWs+0Qo0CmKkyoMx1tVwR w4I7lTc7tVTItMS6TrwZfdvxGeFKKmiM -----END CERTIFICATE-----Generated at Sat May 18 16:20:15 2024 by rpki-client on console-fra.rpki-client.org