$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: H7phyOWlDtFkORn0OPqmBdu9EdxzK05oL2F0SeYBHk8= Subject key identifier: 0D:96:47:4A:B1:0D:35:6F:D1:4D:FD:8F:83:D4:33:B8:F7:CD:B8:16 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 022D Signing time: Sun 19 May 2024 04:02:37 +0000 Manifest this update: Sun 19 May 2024 04:02:36 +0000 Manifest next update: Sun 26 May 2024 04:02:36 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: kp9bwN3usmhDGjvcs6Y8nxHRo57urZu/64HHVe+OMwo=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: snmiOD9hRhOSDM5RgdR8r+Gl6jhVAt26TT9eAVotwvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: May 19 04:02:36 2024 GMT Not After : May 26 04:02:36 2024 GMT Subject: CN=664979dc-2740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f0:c7:ed:98:bd:4c:cc:6e:d2:34:49:67:2e: 04:9b:6f:48:09:3d:15:e3:9c:e0:3b:0b:c5:ed:15: 5c:66:64:59:b5:8b:06:d6:4c:48:bb:5e:c5:c7:b8: 48:03:4e:78:32:32:ca:41:c9:0f:f7:9e:0e:3a:2f: c9:8a:0d:03:00:5a:0f:4d:2f:95:b8:81:1e:4b:43: c0:03:34:d0:14:c1:47:ce:0d:52:ee:eb:d4:e2:99: db:39:34:31:b3:c6:ab:cf:3f:54:69:a2:43:df:96: c6:08:b0:e8:60:af:c0:06:26:fb:94:12:5b:6b:7c: ae:0d:3b:e0:d7:8a:34:17:b4:34:fb:98:3f:b5:2d: b9:fb:b4:59:02:ab:1c:65:49:e6:d8:44:f0:f0:1c: e2:fd:90:ce:79:4c:54:f2:f1:a4:10:91:5a:57:a3: e0:62:a8:c2:52:b1:e6:e8:d8:6a:93:a2:b8:e4:b1: 49:84:0a:14:33:c6:93:64:3e:64:e9:0b:27:68:9c: 6b:cc:5e:9b:51:a3:20:ae:ff:b9:b8:0a:58:71:53: 13:60:84:6f:f1:38:c2:81:75:e5:33:df:c1:a1:74: 32:cb:55:93:83:d2:47:ee:42:0c:78:ff:28:99:44: 06:18:e9:51:b8:72:1d:8a:1e:99:c1:5a:8f:31:25: 7f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:96:47:4A:B1:0D:35:6F:D1:4D:FD:8F:83:D4:33:B8:F7:CD:B8:16 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:59:87:51:62:f0:70:31:aa:a2:56:80:53:d9:29:3a:1e:f9: c9:95:ea:7a:e2:e1:8b:95:7c:39:cf:a6:9f:8c:b8:de:1d:6d: 72:00:9f:f1:37:ad:68:d7:0b:04:3b:a4:68:44:ce:7c:e5:60: dc:f2:f4:05:78:37:76:86:11:23:a0:89:e3:d3:8d:8e:81:91: fe:8c:ec:0e:bd:10:93:27:b7:8f:a0:6a:95:ab:e3:88:34:ee: 27:1f:8a:98:c3:61:1a:cd:e0:9f:20:60:dd:90:41:38:0d:7e: d8:58:91:44:c0:e5:b1:f2:c6:72:75:bf:c4:60:8e:72:f1:4d: f7:35:98:43:ca:0f:8e:f7:20:ad:d8:76:9a:92:74:6f:22:0f: 2c:20:4f:d2:4a:d5:2f:9c:aa:44:b5:8a:69:59:3c:fc:c7:43: 3e:98:b7:4c:10:22:59:dd:b6:f7:3d:b6:bf:ae:ce:75:ee:f3: fc:c2:4f:35:58:c3:c0:76:25:e1:33:e9:65:da:e0:ea:1b:e8: b0:26:79:40:78:99:22:b8:b4:87:5c:7d:ae:c2:e3:50:d3:cd: 00:87:61:3e:5e:2f:80:8d:d3:bf:bb:13:25:ec:81:34:38:5d: 58:06:ce:7a:07:29:cf:61:53:c3:16:70:17:0f:f1:9f:ca:59: 50:5d:f1:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjQwNTE5MDQwMjM2WhcNMjQwNTI2MDQwMjM2WjAYMRYwFAYD VQQDEw02NjQ5NzlkYy0yNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/DH7Zi9TMxu0jRJZy4Em29ICT0V45zgOwvF7RVcZmRZtYsG1kxIu17Fx7hI A054MjLKQckP954OOi/Jig0DAFoPTS+VuIEeS0PAAzTQFMFHzg1S7uvU4pnbOTQx s8arzz9UaaJD35bGCLDoYK/ABib7lBJba3yuDTvg14o0F7Q0+5g/tS25+7RZAqsc ZUnm2ETw8Bzi/ZDOeUxU8vGkEJFaV6PgYqjCUrHm6Nhqk6K45LFJhAoUM8aTZD5k 6QsnaJxrzF6bUaMgrv+5uApYcVMTYIRv8TjCgXXlM9/BoXQyy1WTg9JH7kIMeP8o mUQGGOlRuHIdih6ZwVqPMSV/4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2WR0qx DTVv0U39j4PUM7j3zbgWMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkWYdRYvBwMaqiVoBT2Sk6HvnJlep64uGLlXw5z6afjLjeHW1yAJ/x N61o1wsEO6RoRM585WDc8vQFeDd2hhEjoInj042OgZH+jOwOvRCTJ7ePoGqVq+OI NO4nH4qYw2EazeCfIGDdkEE4DX7YWJFEwOWx8sZydb/EYI5y8U33NZhDyg+O9yCt 2HaaknRvIg8sIE/SStUvnKpEtYppWTz8x0M+mLdMECJZ3bb3Pba/rs517vP8wk81 WMPAdiXhM+ll2uDqG+iwJnlAeJkiuLSHXH2uwuNQ080Ah2E+Xi+AjdO/uxMl7IE0 OF1YBs56BynPYVPDFnAXD/GfyllQXfFW -----END CERTIFICATE-----Generated at Sun May 19 05:08:05 2024 by rpki-client on console-ams.rpki-client.org