$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: /V8m2MqXZKe8hIuFEGLO21Ioj0UK8JBZkrh2cfrJeu4= Subject key identifier: 7A:42:68:92:11:61:58:3E:6C:1B:6F:B3:49:9C:32:6E:B2:2B:55:21 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0142 Signing time: Sun 19 May 2024 05:02:50 +0000 Manifest this update: Sun 19 May 2024 05:02:50 +0000 Manifest next update: Sun 26 May 2024 05:02:50 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: IvyOy1mHeRS+dqbwIkmOYNHNQfOC16zuPj+8I1JN734=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 6f4mwYSjUSUujqQ+GQ2FcpkaNcT4+yFJky2zL1B9jBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: May 19 05:02:50 2024 GMT Not After : May 26 05:02:50 2024 GMT Subject: CN=664987fa-c2ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4f:db:df:c2:56:9d:c9:45:c5:af:0e:20:87: eb:a0:b0:1c:ad:f9:2f:0d:95:ca:c2:ae:40:09:26: 0d:09:95:c1:05:22:f9:8b:93:ec:02:41:d3:bc:cf: 1a:42:8d:d3:2d:34:ca:45:c2:a6:65:01:b1:db:1f: b3:91:f6:5e:91:d2:af:e8:6e:27:b1:6f:9f:9e:b0: 58:39:8e:a7:5f:7c:77:60:52:cb:66:40:f2:b8:c1: 72:a8:a9:67:85:2a:d6:b4:4b:21:34:1c:24:d2:77: 11:99:54:ca:df:21:16:bc:ab:8c:b8:db:9d:07:32: e2:f9:b3:7b:2b:8d:2b:d0:32:a0:77:d2:d3:d5:69: a2:0c:0e:b0:4d:25:58:8b:3c:36:12:23:f6:fd:53: 28:f2:03:1a:76:67:b7:02:4d:01:a8:05:e2:56:81: 29:52:eb:d6:ea:05:8a:bd:29:9a:1d:ba:d1:fb:cd: f5:82:da:5b:f3:10:82:f6:58:e8:78:fb:b6:af:01: cc:24:5d:e8:31:c8:03:6e:0a:18:bf:12:9e:08:9b: 60:7f:46:10:a3:fe:38:5c:e4:8c:9f:19:91:1b:ab: ef:38:c6:ab:07:f5:cb:6f:34:cd:1e:8f:4b:ae:2a: b4:59:4c:e9:16:1e:2d:81:b6:39:c2:b0:74:30:99: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:42:68:92:11:61:58:3E:6C:1B:6F:B3:49:9C:32:6E:B2:2B:55:21 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:e0:77:45:13:63:af:4c:d5:d2:58:7d:bb:01:ad:0e:24:e9: 3d:c8:ff:a3:38:60:43:b1:68:c5:50:be:e9:da:fd:05:1c:f6: f7:1b:53:a8:ba:9b:71:c2:d9:be:9c:05:c0:3c:e0:0a:f6:c9: f4:af:7f:12:82:80:d8:be:43:6d:b2:07:69:e7:40:e5:f2:84: 9d:ac:d5:0b:da:07:a6:64:17:14:03:79:f3:66:2b:66:1d:e8: ed:71:12:bf:bb:eb:b1:75:39:ff:3a:e1:88:a9:3f:e4:cd:f8: 76:27:39:e2:dc:0a:2c:20:f6:48:89:44:80:d8:3b:a2:dd:c2: 27:40:86:f4:12:2a:8d:57:c0:dc:67:18:0a:a3:b4:a8:5f:d6: 50:b7:0b:37:c6:9a:68:0a:01:41:6e:ee:69:fc:a9:91:ed:da: 37:40:9c:4f:59:d0:69:1b:23:6e:be:12:6c:3a:34:36:e5:41: 79:7c:a4:fd:74:34:aa:2d:89:17:f5:12:82:72:07:ec:4c:cb: 61:28:08:93:69:b5:da:e6:87:bd:b6:6a:97:aa:bc:06:be:f7: eb:c1:ac:41:3c:9f:00:0d:f5:cc:a0:0c:b2:08:a3:4d:6e:91: 22:09:40:8f:71:54:62:3a:11:c3:53:fa:32:07:13:1a:ec:ec: 72:11:93:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjQwNTE5MDUwMjUwWhcNMjQwNTI2MDUwMjUwWjAYMRYwFAYD VQQDEw02NjQ5ODdmYS1jMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1E/b38JWnclFxa8OIIfroLAcrfkvDZXKwq5ACSYNCZXBBSL5i5PsAkHTvM8a Qo3TLTTKRcKmZQGx2x+zkfZekdKv6G4nsW+fnrBYOY6nX3x3YFLLZkDyuMFyqKln hSrWtEshNBwk0ncRmVTK3yEWvKuMuNudBzLi+bN7K40r0DKgd9LT1WmiDA6wTSVY izw2EiP2/VMo8gMadme3Ak0BqAXiVoEpUuvW6gWKvSmaHbrR+831gtpb8xCC9ljo ePu2rwHMJF3oMcgDbgoYvxKeCJtgf0YQo/44XOSMnxmRG6vvOMarB/XLbzTNHo9L riq0WUzpFh4tgbY5wrB0MJlHDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpCaJIR YVg+bBtvs0mcMm6yK1UhMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI4HdFE2OvTNXSWH27Aa0OJOk9yP+jOGBDsWjFUL7p2v0FHPb3G1Oo uptxwtm+nAXAPOAK9sn0r38SgoDYvkNtsgdp50Dl8oSdrNUL2gemZBcUA3nzZitm HejtcRK/u+uxdTn/OuGIqT/kzfh2Jzni3AosIPZIiUSA2Dui3cInQIb0EiqNV8Dc ZxgKo7SoX9ZQtws3xppoCgFBbu5p/KmR7do3QJxPWdBpGyNuvhJsOjQ25UF5fKT9 dDSqLYkX9RKCcgfsTMthKAiTabXa5oe9tmqXqrwGvvfrwaxBPJ8ADfXMoAyyCKNN bpEiCUCPcVRiOhHDU/oyBxMa7OxyEZO0 -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org