$ rpki-client -vvf rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft File: ntLhokBcme5158OQPfckDKqr-yU.mft (raw, json) Hash identifier: U4yoy3qRlUfl0DhTigeFTK5qrikK8W038EgPr53F30A= Subject key identifier: D5:99:85:8F:74:20:A9:E4:BB:78:9F:37:2B:B1:29:44:BA:C8:00:CC Authority key identifier: 9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 Certificate issuer: /CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25 Certificate serial: 09AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft Manifest number: 0998 Signing time: Sat 18 May 2024 20:55:29 +0000 Manifest this update: Sat 18 May 2024 20:55:28 +0000 Manifest next update: Sat 25 May 2024 20:55:28 +0000 Files and hashes: 1: ntLhokBcme5158OQPfckDKqr-yU.crl (hash: gYJw7NsaUkyTL2KEsiCcjfaA2KsTfmGVGER+OLctuR8=) 2: AD47EF027F2511EBA072E644C4F9AE02.roa (hash: L2rSWyT7U6NBRQEU8jk8q2T+Vq9Had5EEUoPhXuWAi4=) 3: 7CFFFCEEA18D11EE84DFAF0EC4F9AE02.roa (hash: wPsx9Tq8nhzprRZSFepMrjHo0pJom7iMBA5mXF1c33Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25 Validity Not Before: May 18 20:55:28 2024 GMT Not After : May 25 20:55:28 2024 GMT Subject: CN=664915c1-c91e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:b6:29:e0:14:27:df:ca:d9:fd:f1:2b:9d: a4:15:ac:35:83:88:48:ea:16:88:f9:d6:39:63:15: 9d:4e:73:19:93:83:43:80:66:c5:25:3b:bd:7d:da: eb:6b:17:86:7f:e0:b0:00:fa:1c:49:9c:8a:28:c1: ae:df:08:9c:1b:53:ae:2d:28:c6:3d:3d:f6:49:bc: b6:e3:17:ca:d1:3d:f2:97:97:1b:58:d5:90:49:1b: 1a:7c:49:e5:7e:bc:05:53:ab:66:9e:36:08:35:38: 90:72:6e:4e:bd:d8:a8:55:56:0a:2e:54:63:d7:2f: 5b:d4:99:7c:54:29:c6:d5:3c:b7:f8:b5:ca:4a:3c: 33:34:33:46:44:3e:14:9d:2f:64:0f:25:5f:83:b7: ea:0d:e6:67:61:c9:2c:9c:2b:6b:b8:61:ab:ec:f9: fe:e3:6e:30:04:4d:7c:4c:19:2e:42:60:0e:11:2f: 6d:90:1a:a9:f7:a3:08:30:ce:97:dd:09:20:3a:6b: 47:76:e9:83:0d:a0:9e:e0:a1:9c:f2:22:a3:0f:42: 56:07:f8:06:51:e1:7b:80:8d:c2:cd:90:4b:96:b0: 4b:58:53:0f:f1:ef:e6:54:04:d9:8c:24:99:d4:4e: 82:b3:ec:54:ee:81:08:39:69:49:d5:a6:73:b9:6d: d0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:99:85:8F:74:20:A9:E4:BB:78:9F:37:2B:B1:29:44:BA:C8:00:CC X509v3 Authority Key Identifier: keyid:9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:94:ed:71:31:1f:6a:5d:44:80:9a:48:3b:d2:1c:76:34:b0: d0:ba:b1:2d:8d:49:95:d7:46:0d:25:c8:dd:81:09:bc:dc:9e: 13:2b:e8:39:40:3d:bb:12:c1:f0:00:5e:c3:33:fc:d2:61:2d: 8e:7d:37:71:09:6f:44:83:4d:a9:a5:03:37:fd:61:44:85:65: df:52:32:6e:63:e4:a1:d6:89:89:74:5f:fa:27:c9:08:59:21: bc:71:6f:f7:21:39:93:59:1e:84:ef:82:21:8d:3a:37:ee:1c: 08:d2:e9:64:78:aa:69:d8:59:a5:5d:7c:e5:48:b3:71:7d:bd: 90:1d:dd:93:2e:bb:f6:c0:0f:1f:e4:4f:a6:56:d8:80:71:33: 96:aa:f1:8c:8d:b0:82:06:cc:8d:28:24:82:c8:8e:57:5d:42: 9e:d0:4a:a3:65:48:88:72:40:f9:c4:07:bc:c6:2e:51:52:05: 3a:94:e5:b9:67:95:8c:81:aa:71:33:48:72:73:1c:f3:18:2c: 61:7b:c9:3f:35:85:12:96:66:98:b1:5c:b1:83:c3:fd:ce:d9: c6:73:6e:d3:32:2b:d0:9d:4d:7a:e2:78:3d:cd:12:0f:7b:df: 14:c2:cd:6b:0c:71:d6:35:a6:a4:eb:a4:d8:52:b3:68:09:5d: 02:d7:ee:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk4RjAxMTAvBgNVBAUTKDlFRDJFMUEyNDA1Qzk5RUU3NUU3QzM5MDNERjcyNDBD QUFBQkZCMjUwHhcNMjQwNTE4MjA1NTI4WhcNMjQwNTI1MjA1NTI4WjAYMRYwFAYD VQQDEw02NjQ5MTVjMS1jOTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5u2KeAUJ9/K2f3xK52kFaw1g4hI6haI+dY5YxWdTnMZk4NDgGbFJTu9fdrr axeGf+CwAPocSZyKKMGu3wicG1OuLSjGPT32Sby24xfK0T3yl5cbWNWQSRsafEnl frwFU6tmnjYINTiQcm5OvdioVVYKLlRj1y9b1Jl8VCnG1Ty3+LXKSjwzNDNGRD4U nS9kDyVfg7fqDeZnYcksnCtruGGr7Pn+424wBE18TBkuQmAOES9tkBqp96MIMM6X 3QkgOmtHdumDDaCe4KGc8iKjD0JWB/gGUeF7gI3CzZBLlrBLWFMP8e/mVATZjCSZ 1E6Cs+xU7oEIOWlJ1aZzuW3QwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWZhY90 IKnku3ifNyuxKUS6yADMMB8GA1UdIwQYMBaAFJ7S4aJAXJnudefDkD33JAyqq/sl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOThGMC84QTFBRTFGNDY3 MkMxMUVBODM5M0RGMjVDNEY5QUUwMi9udExob2tCY21lNTE1OE9RUGZja0RLcXIt eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250TGhva0JjbWU1MTU4T1FQZmNrREtxci15VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OThGMC84QTFBRTFGNDY3MkMxMUVBODM5M0RGMjVDNEY5QUUwMi9udExob2tCY21l NTE1OE9RUGZja0RLcXIteVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBklO1xMR9qXUSAmkg70hx2NLDQurEtjUmV10YNJcjdgQm83J4TK+g5 QD27EsHwAF7DM/zSYS2OfTdxCW9Eg02ppQM3/WFEhWXfUjJuY+Sh1omJdF/6J8kI WSG8cW/3ITmTWR6E74IhjTo37hwI0ulkeKpp2FmlXXzlSLNxfb2QHd2TLrv2wA8f 5E+mVtiAcTOWqvGMjbCCBsyNKCSCyI5XXUKe0EqjZUiIckD5xAe8xi5RUgU6lOW5 Z5WMgapxM0hycxzzGCxhe8k/NYUSlmaYsVyxg8P9ztnGc27TMivQnU164ng9zRIP e98Uws1rDHHWNaak66TYUrNoCV0C1+5L -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org