$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: 85H0lPrJ90immB8XxyN8aAeCbhzLA86g3UUDgNjj6VM= Subject key identifier: B5:22:B6:CA:1F:39:3C:B1:91:01:D2:F8:A5:87:DB:5D:CF:75:87:E2 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 3609 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 34B3 Signing time: Thu 16 May 2024 14:54:42 +0000 Manifest this update: Thu 16 May 2024 14:54:41 +0000 Manifest next update: Thu 23 May 2024 14:54:41 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: LG5i3kuk091w7yJjWT3TRVgR3ImWDeXS03BoePtv69A=) 2: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: 47XFa+/O+1qqR8kJkOYUWNPtX/jddJ4oiNfmWLvRACU=) 3: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: LBNk1tfUJampIMab/HBL4IKi/kl38X1uItIjEED/pcI=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: scAkB2YxvmpKM0vTyAyFR4YKIa6v02k7HMa7T8PXuMU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: Yr03PVq8IWmvSQd8YplMKtRPvK8aE0RE5eBXhq1JqoE=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: 8qJxtIluB8sM+LZnkacpelPmvOz8hP9HI8PWhXk1wS0=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: 1uChfw6a7c78Tsk47WiN/3OWObxxNLMM+Pvz7qduz8c=) 8: 62F1B55EDC2B11EDB096B435C4F9AE02.roa (hash: GqOiWg5pPVhf3X3hTvW8lyS/vBT54lvlTVmRhdPhZpo=) 9: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: l6UBTddYJHs1/LWO/G11IXkxeJJ3Aag62DZxhCm7A54=) 10: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: 7uSEP+EaGOL6jhiRrZZDidMEE4Q6ZMSCeR2XEgAzR3g=) 11: 62464AACDC2B11EDB096B435C4F9AE02.roa (hash: Dnz30DAJVZekOhvq+//5DuLg0jOYzT0DGqPm+r3BNP0=) 12: 35E95924844811EAB301615FC4F9AE02.roa (hash: QffUMTUeuvtyF27iQo20k15LFogH2o21+do3RK9SDkw=) 13: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: 31E/ZBgEZp5hDhd3GcEv5U1+3VGXi8jHHKHblZde33E=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: hJAxgmR4Z+emMMwOy/r6GbMsFRX/U1CaozsenKNvc0Y=) 15: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: 8b2oWDeo2NAVLwOXE4IA/dxtMM6fmKBuLK7hAntrx5c=) 16: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Kkanqfb0HHYlyfEyvZ64WJPtstPkb2JUboKtDpUj3Vw=) 17: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: I2+kj9ESr7gvLOHQDl/+DMksQTAQFnymnLrvUXSFx3Q=) 18: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: r7v3xSqKRg362nT6+bK/58sR5Z8YroSxwlVV2Uh5tfU=) 19: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: Krb9ZcAkVTReFzizLQ3T9UA+S18Hy0Vo8CDdBjRYIGM=) 20: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: twh6qhZSVHLqsqE4ZeRMAhfEc2FEKfo/QNtTa8WFc90=) 21: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: hbcyS6DwPCtBqKVBG5WmrWNdNFB962BI6jMzmVkyHyk=) 22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: NKaWR27X7N0yTdapOCDpWGOjKNUWONO9ba73Q3IbiMc=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: K0Np4Cl29ZUrHLxi4sReARlc3kr6lRG2EbDfgQGX3/A=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: pSsD3QiCjiwXaKzOdTSfuSM5BCqQA6q1WIOuV0AxvXw=) 25: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: /5ry63GzDrxpI6Kkb9gHRk8/jvRviawvIpgBTnsdspg=) 26: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: Svh+zqulap5hyqgsKeuAwzqAl3vJyRUhZqeALz03n0w=) 27: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: ITrdVs65XiKT5eY7TYbNYiODzMY+u/b74/g0UqMYEiM=) 28: 61B7C08EDC2B11EDB096B435C4F9AE02.roa (hash: DqzkLxKVvK4huIuJVgp9owytPLWfNX9jgYBJjFmMTrs=) 29: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: T8DpA+KoY5SlE2bbdf8haxYxrxa9m5STIimA7EMRnII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13833 (0x3609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: May 16 14:54:41 2024 GMT Not After : May 23 14:54:41 2024 GMT Subject: CN=66461e32-5278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:74:f4:4b:30:a6:83:78:8d:aa:31:88:7d: 3f:ad:b9:e6:79:e1:cd:3c:aa:15:81:22:46:ae:b5: 7d:3f:10:57:9c:55:b8:77:bc:49:ca:47:e2:a7:a6: a9:83:4b:00:7d:0b:91:c6:8a:f7:3f:8b:f9:a6:e1: 1c:c4:ec:02:1d:31:1f:1a:82:68:eb:3e:e6:30:f9: 95:9b:89:8b:b3:a9:e8:1a:ae:6d:e7:b0:ca:69:3c: 31:96:aa:2b:9b:97:51:74:94:ee:57:19:98:93:63: 3b:db:51:36:6c:2e:ff:65:a3:80:0c:1c:da:8b:05: 6e:0a:bb:d5:f6:58:8a:48:ca:e1:f1:df:1d:22:e7: 14:ad:58:ec:99:a1:19:c8:32:3d:24:3f:27:72:df: 19:8b:20:23:f5:49:4c:b8:58:15:dc:0e:df:f6:b8: 51:83:cf:e8:ad:27:1d:7c:0a:22:a8:f6:82:c4:26: 41:a7:59:fa:5f:8f:28:b3:05:e3:94:3c:44:b0:a0: 14:91:0e:cc:b8:8d:2c:cf:0a:bb:fb:03:77:d1:10: 65:1c:50:2e:97:61:bf:17:86:6d:72:43:9a:90:f5: 0c:5f:ce:b3:3d:ce:bc:12:ca:01:65:5f:98:e1:48: ac:4c:4d:9a:e1:ec:19:c3:b8:9e:f3:16:f1:a8:5d: a9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:22:B6:CA:1F:39:3C:B1:91:01:D2:F8:A5:87:DB:5D:CF:75:87:E2 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:ff:23:a7:e7:0a:ab:57:00:7d:19:a2:14:ec:1d:50:89:d5: d4:a8:31:77:73:04:02:6c:1e:b8:6d:7b:42:6f:a7:dd:73:2a: 81:47:05:7e:a1:4d:75:35:f1:7b:a1:b0:44:72:b4:b4:2d:22: af:a5:45:4c:ed:9b:14:52:8f:5e:57:b3:fb:85:82:75:08:fe: f6:48:7f:b6:df:ee:12:0e:46:5d:29:5a:38:01:d9:d1:c2:80: 52:64:ec:1d:1c:0b:6f:0a:11:f9:96:e9:14:b3:ae:20:8a:08: 48:94:f6:00:52:9e:25:7d:66:03:d8:cd:47:2a:bf:e9:da:52: cf:ac:45:dc:ba:ba:28:20:e2:c2:0e:d9:de:5f:a0:54:40:04: 03:5f:b3:9e:40:4b:27:1d:12:d4:07:ec:58:77:ec:1a:7e:a0: 82:46:fa:75:e6:e4:6a:dd:4b:fb:c9:24:2c:d9:6b:de:62:1e: c6:76:7c:fe:70:af:23:22:b5:3b:5a:3b:c6:4e:0e:9f:6d:e6: db:71:b0:28:98:4f:0d:c4:72:39:e0:40:5e:57:f7:1b:8c:2b: 36:22:d8:3a:85:7d:84:ef:eb:79:ab:38:68:bb:67:fe:5c:21: 59:cd:79:31:7e:2a:50:9f:ed:30:ef:ee:81:39:fc:61:d0:c7: 83:6a:80:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNTE2MTQ1NDQxWhcNMjQwNTIzMTQ1NDQxWjAYMRYwFAYD VQQDEw02NjQ2MWUzMi01Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzJ09EswpoN4jaoxiH0/rbnmeeHNPKoVgSJGrrV9PxBXnFW4d7xJykfip6ap g0sAfQuRxor3P4v5puEcxOwCHTEfGoJo6z7mMPmVm4mLs6noGq5t57DKaTwxlqor m5dRdJTuVxmYk2M721E2bC7/ZaOADBzaiwVuCrvV9liKSMrh8d8dIucUrVjsmaEZ yDI9JD8nct8ZiyAj9UlMuFgV3A7f9rhRg8/orScdfAoiqPaCxCZBp1n6X48oswXj lDxEsKAUkQ7MuI0szwq7+wN30RBlHFAul2G/F4ZtckOakPUMX86zPc68EsoBZV+Y 4UisTE2a4ewZw7ie8xbxqF2pywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUitsof OTyxkQHS+KWH213PdYfiMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi/yOn5wqrVwB9GaIU7B1QidXUqDF3cwQCbB64bXtCb6fdcyqBRwV+ oU11NfF7obBEcrS0LSKvpUVM7ZsUUo9eV7P7hYJ1CP72SH+23+4SDkZdKVo4AdnR woBSZOwdHAtvChH5lukUs64gighIlPYAUp4lfWYD2M1HKr/p2lLPrEXcurooIOLC DtneX6BUQAQDX7OeQEsnHRLUB+xYd+wafqCCRvp15uRq3Uv7ySQs2WveYh7Gdnz+ cK8jIrU7WjvGTg6fbebbcbAomE8NxHI54EBeV/cbjCs2Itg6hX2E7+t5qzhou2f+ XCFZzXkxfipQn+0w7+6BOfxh0MeDaoAl -----END CERTIFICATE-----Generated at Thu May 16 17:51:50 2024 by rpki-client on console-ams.rpki-client.org