$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: HTVnTjMEaRZBvTQlhduoNxyhOL3jUBPgblSA0poMAW4= Subject key identifier: B7:D0:D0:95:FC:BD:87:41:21:44:1D:EC:2A:A7:BB:C4:BB:62:89:03 Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 062C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 0625 Signing time: Sat 18 May 2024 23:45:26 +0000 Manifest this update: Sat 18 May 2024 23:45:25 +0000 Manifest next update: Sat 25 May 2024 23:45:25 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: LhXSPbWuMahto94y+/xKpjfCtPmlAbyx/VGgDC5ivWc=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: uVZILs4im4Ko7O701mJjun7HiLALbhV2MZXSxxEWSZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Validity Not Before: May 18 23:45:25 2024 GMT Not After : May 25 23:45:25 2024 GMT Subject: CN=66493d96-2572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:27:ab:2e:eb:d1:1f:19:cb:ec:91:b2:95:d3: d2:55:97:99:9e:c1:83:5f:2b:c6:e5:a6:f8:e8:46: 09:56:b0:51:c2:b4:80:0f:e1:b3:d5:21:66:98:fa: 79:b9:5b:f7:53:02:c9:b5:c6:07:1e:cb:a7:87:e4: 14:8c:67:98:c1:fb:fe:34:ff:de:c9:f7:78:46:9f: 2b:9e:c0:f0:e6:22:10:af:8e:fe:e4:f2:52:98:e1: bf:3c:8a:bd:0d:32:18:69:d0:57:92:e5:c5:de:d0: 6f:b0:d0:b9:9d:18:bd:85:49:e2:31:7e:cd:18:ab: 92:23:52:d1:f9:1c:b5:f1:24:69:58:ff:8b:86:9c: 98:bf:4f:ef:5a:19:d8:3e:85:59:7e:32:47:6f:e9: cb:2d:52:ab:96:51:0f:27:53:b5:c6:7c:16:5b:e8: 6c:1a:f2:d6:6e:ba:5c:0d:e8:38:13:2a:df:f3:ad: 4b:91:07:60:3a:48:49:25:cf:59:b5:c9:2b:d0:a5: 60:20:4f:86:25:32:ed:7a:c4:56:de:63:3f:6d:f1: 98:d0:cc:b5:1c:d3:cf:c1:0a:04:d1:4f:53:62:38: 20:da:93:69:17:1d:ee:a3:8d:c6:76:66:48:ae:64: d1:f8:86:5b:f8:6c:28:e6:5b:dc:85:c7:ee:10:61: ae:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D0:D0:95:FC:BD:87:41:21:44:1D:EC:2A:A7:BB:C4:BB:62:89:03 X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f0:c6:9d:63:5d:08:eb:18:e8:47:f9:7d:fd:46:e8:cc:af: 22:5c:22:02:b3:96:d8:15:18:c7:cd:9d:27:15:e6:9a:dd:5b: 1e:1f:7d:70:35:e5:dd:ab:f0:fd:80:57:0a:40:e7:92:d3:d7: 1d:85:d6:b1:f1:0b:be:19:96:b5:10:2f:6f:ca:66:db:79:be: cb:39:be:60:d2:9b:21:74:dc:22:dd:87:b2:2f:1e:b3:0a:53: 33:54:71:3d:af:17:a9:20:e6:b7:10:12:a9:f6:46:a1:1c:3f: 0f:02:8c:1c:05:a4:2c:70:ee:bc:7c:5d:ea:a1:af:a3:63:dd: d3:a1:05:7e:0a:e1:de:8e:96:ea:43:d6:1c:2d:bd:fc:4d:9b: c3:1f:06:f0:ec:e2:ba:a1:da:1b:09:0f:87:50:42:31:46:e8: 90:4e:4d:8b:bc:f5:6b:8e:a1:8a:69:00:99:ee:44:0f:98:24: 2d:b8:ce:97:cf:44:1b:ee:38:16:48:b8:e0:79:35:d9:ac:1a: 25:d5:dc:09:93:ab:92:ed:ec:51:4e:20:4a:e9:0a:6a:00:65: b4:ca:64:88:9a:47:26:5d:2f:1c:e8:05:c3:30:8b:8c:7f:a0: 26:31:4f:a6:bd:69:ef:85:c1:a7:b3:d3:db:ae:69:9b:1a:db: 68:7c:cf:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjQwNTE4MjM0NTI1WhcNMjQwNTI1MjM0NTI1WjAYMRYwFAYD VQQDEw02NjQ5M2Q5Ni0yNTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApierLuvRHxnL7JGyldPSVZeZnsGDXyvG5ab46EYJVrBRwrSAD+Gz1SFmmPp5 uVv3UwLJtcYHHsunh+QUjGeYwfv+NP/eyfd4Rp8rnsDw5iIQr47+5PJSmOG/PIq9 DTIYadBXkuXF3tBvsNC5nRi9hUniMX7NGKuSI1LR+Ry18SRpWP+LhpyYv0/vWhnY PoVZfjJHb+nLLVKrllEPJ1O1xnwWW+hsGvLWbrpcDeg4Eyrf861LkQdgOkhJJc9Z tckr0KVgIE+GJTLtesRW3mM/bfGY0My1HNPPwQoE0U9TYjgg2pNpFx3uo43GdmZI rmTR+IZb+Gwo5lvchcfuEGGuvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfQ0JX8 vYdBIUQd7Cqnu8S7YokDMB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL8MadY10I6xjoR/l9/UbozK8iXCICs5bYFRjHzZ0nFeaa3VseH31w NeXdq/D9gFcKQOeS09cdhdax8Qu+GZa1EC9vymbbeb7LOb5g0pshdNwi3YeyLx6z ClMzVHE9rxepIOa3EBKp9kahHD8PAowcBaQscO68fF3qoa+jY93ToQV+CuHejpbq Q9YcLb38TZvDHwbw7OK6odobCQ+HUEIxRuiQTk2LvPVrjqGKaQCZ7kQPmCQtuM6X z0Qb7jgWSLjgeTXZrBol1dwJk6uS7exRTiBK6QpqAGW0ymSImkcmXS8c6AXDMIuM f6AmMU+mvWnvhcGns9PbrmmbGttofM9R -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org