$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: IAsfzFX1csPtY9X+WBsTaaFNKahOcizaJS1aYykVz0w= Subject key identifier: B0:5E:D5:9E:11:62:A9:3F:FF:CA:64:4F:02:39:CF:A0:BB:CB:4D:B3 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 07BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 078D Signing time: Thu 02 May 2024 22:25:15 +0000 Manifest this update: Thu 02 May 2024 22:25:15 +0000 Manifest next update: Thu 09 May 2024 22:25:15 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: +li5XWvlo91kEZ3zI7W+ipNAZ+Y/WPP41N/F/0fAUfo=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: rj1Y2oKQRykUrgTjFIBgGOC0IpBQnYNCHuR++XSYwQ8=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: k7KXYbChOHqpdItmNemI/9G9HWNYz5Sv2bSwF8YpeuU=) 4: 6A04CB5AECED11EE96BA986AC4F9AE02.roa (hash: 1eyVNCv0bYa+oRMSsFepC+g3Hj45qO1N9el05KcjmWs=) 5: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: +TpENWCM4D4iEWxVllxyYGo56wvvtiB2oIE1r+GqSjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1979 (0x7bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: May 2 22:25:15 2024 GMT Not After : May 9 22:25:15 2024 GMT Subject: CN=663412cb-b760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:99:56:1c:bb:de:4c:ac:74:06:a2:ce:4d: 7c:6d:26:2d:c3:3e:39:da:60:e5:29:09:47:d3:a5: 26:a2:19:5b:c7:9d:07:eb:a6:76:da:9a:e0:bf:b2: 52:bc:73:bd:dd:35:0e:43:b7:2f:9d:a1:77:08:e4: f1:78:32:14:f9:8c:68:3f:1c:59:81:7d:f9:f7:b1: 32:9d:42:6e:18:87:47:88:16:bd:d1:5f:75:03:d3: 3e:f8:04:51:52:4a:54:6d:ad:fa:b6:4d:67:64:94: 80:99:85:b6:12:c8:b6:26:89:af:37:b5:59:44:0c: f7:15:b6:0f:cc:2c:72:eb:09:31:c1:ad:58:1e:c7: cd:f7:10:4d:4e:80:4b:32:b7:cd:28:96:53:fb:19: 9b:da:39:48:ea:67:d3:c7:e4:50:39:22:c0:0e:bd: 4b:ab:16:3e:56:43:aa:15:1b:a9:d8:d5:c6:a6:50: 1a:ff:27:ea:78:21:9b:6a:99:37:ed:f2:eb:ba:a7: 31:ca:de:61:12:45:46:ff:17:f9:89:55:96:bb:f5: ab:e7:c9:55:24:d7:97:77:1b:dc:d9:45:b4:b0:1d: 41:5c:7d:1e:54:f4:5a:89:29:08:6e:4e:6e:85:6e: 7f:fa:56:26:19:13:79:04:ec:a5:5a:78:59:b1:1d: a2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5E:D5:9E:11:62:A9:3F:FF:CA:64:4F:02:39:CF:A0:BB:CB:4D:B3 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:86:ba:37:02:7e:80:ec:12:e8:99:d7:a6:04:2c:9d:21:8e: 48:93:49:0a:9e:52:8c:73:3f:5d:11:03:5e:f0:5b:1c:ea:37: e3:c8:03:ac:f5:81:3e:93:91:30:63:fa:ef:8e:5e:77:c7:49: e7:f0:f2:84:59:84:62:c9:70:fa:9e:d2:71:4e:96:8c:e1:bd: ab:90:c7:38:4a:7f:cf:f7:79:77:1c:3d:c4:c9:2c:27:8f:97: 51:49:28:6b:2f:47:c5:ac:36:61:63:a6:36:3e:78:6c:39:6b: 53:75:01:7e:6b:76:bf:55:08:c3:70:33:ff:ba:af:cd:66:92: 47:5f:cc:e7:46:01:98:b0:6f:a8:09:ee:12:e2:04:69:43:e8: 1c:4e:d2:b0:87:60:8d:3d:1a:d2:df:60:7a:31:56:43:fb:88: 78:9a:a9:8b:06:b6:39:00:cc:e5:4e:4b:2a:74:06:de:fa:30: 96:8e:71:23:d7:cc:a3:99:3c:04:ad:2e:ef:84:95:29:0d:e4: 25:e0:7e:a7:76:15:77:06:34:56:a8:6c:da:0c:47:b9:04:89: 27:4d:96:95:35:f3:85:f3:d8:48:b0:b0:85:45:7b:65:5f:54: d5:64:63:44:37:2d:67:65:f3:86:62:8d:02:ed:48:d9:74:67: f4:24:ae:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjQwNTAyMjIyNTE1WhcNMjQwNTA5MjIyNTE1WjAYMRYwFAYD VQQDEw02NjM0MTJjYi1iNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6eZVhy73kysdAaizk18bSYtwz452mDlKQlH06Umohlbx50H66Z22prgv7JS vHO93TUOQ7cvnaF3COTxeDIU+YxoPxxZgX3597EynUJuGIdHiBa90V91A9M++ARR UkpUba36tk1nZJSAmYW2Esi2JomvN7VZRAz3FbYPzCxy6wkxwa1YHsfN9xBNToBL MrfNKJZT+xmb2jlI6mfTx+RQOSLADr1LqxY+VkOqFRup2NXGplAa/yfqeCGbapk3 7fLruqcxyt5hEkVG/xf5iVWWu/Wr58lVJNeXdxvc2UW0sB1BXH0eVPRaiSkIbk5u hW5/+lYmGRN5BOylWnhZsR2iDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBe1Z4R Yqk//8pkTwI5z6C7y02zMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxhro3An6A7BLomdemBCydIY5Ik0kKnlKMcz9dEQNe8Fsc6jfjyAOs 9YE+k5EwY/rvjl53x0nn8PKEWYRiyXD6ntJxTpaM4b2rkMc4Sn/P93l3HD3EySwn j5dRSShrL0fFrDZhY6Y2PnhsOWtTdQF+a3a/VQjDcDP/uq/NZpJHX8znRgGYsG+o Ce4S4gRpQ+gcTtKwh2CNPRrS32B6MVZD+4h4mqmLBrY5AMzlTksqdAbe+jCWjnEj 18yjmTwErS7vhJUpDeQl4H6ndhV3BjRWqGzaDEe5BIknTZaVNfOF89hIsLCFRXtl X1TVZGNENy1nZfOGYo0C7UjZdGf0JK45 -----END CERTIFICATE-----Generated at Thu May 2 23:03:12 2024 by rpki-client on console-fra.rpki-client.org