$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: GaRvuBfExLD1QLdbkY4c3rwBUPT/dH2V5wgqFUW8zZg= Subject key identifier: 94:7D:2B:44:3D:92:EE:7F:D4:6E:D1:5E:B2:77:7C:CA:89:D8:00:D2 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 07A6 Signing time: Sat 18 May 2024 22:06:55 +0000 Manifest this update: Sat 18 May 2024 22:06:55 +0000 Manifest next update: Sat 25 May 2024 22:06:55 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: RcGdHf172+9VN6/fmC+4CIb+s+OaZpihrYN3Q/0rXn4=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: HMYkkHF8wzszCT03b/fn+ryBFfhplqg/NikJU1t3Vus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: May 18 22:06:55 2024 GMT Not After : May 25 22:06:55 2024 GMT Subject: CN=6649267f-ae30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:84:df:0b:ce:35:fa:8e:50:37:0d:cc:f3: cd:35:1e:4b:12:0d:7b:7a:47:bd:99:6c:2a:b6:d7: 94:56:dc:bd:d7:95:f4:9d:4f:03:46:16:6e:37:5e: e5:74:85:17:e0:35:90:11:51:97:fc:7b:e8:29:fc: f3:24:e7:cb:b0:b2:92:fd:4f:3a:73:79:8e:7d:d9: 68:bd:59:43:bc:f8:af:23:d4:b0:40:ca:0a:68:78: 3f:d9:85:ad:f8:7e:40:89:f5:c1:06:80:65:da:01: 26:e0:82:fa:de:5f:cf:f5:fb:55:6f:b2:f6:d7:15: 7f:8f:4a:cd:b7:18:81:97:b7:e0:dc:4d:e9:9f:b2: 2b:61:8a:03:2a:be:03:d0:94:c4:05:d9:cc:9e:ab: a0:4f:2f:bf:a6:7f:a1:73:3a:2f:0e:7b:68:d0:af: 68:61:b9:09:97:ac:97:e0:37:28:25:9c:aa:7a:6e: 39:8d:b2:84:cf:30:70:2f:e5:2d:55:69:2a:3d:37: 0a:1a:06:43:e5:b8:c1:09:a8:8f:79:34:16:72:9a: 79:e3:a4:b0:e4:c7:1f:f0:a8:3e:70:fd:18:cd:83: ad:0c:c5:2e:84:72:31:3e:51:44:e9:49:89:1c:61: 57:ff:96:c4:42:96:54:63:88:75:54:47:64:74:70: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7D:2B:44:3D:92:EE:7F:D4:6E:D1:5E:B2:77:7C:CA:89:D8:00:D2 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:a6:ef:56:72:29:7e:6f:85:75:25:30:20:bf:8e:33:f1:ee: 5c:0f:96:98:08:c0:b9:a2:d9:8a:9c:1d:f0:d3:35:b2:bc:89: 69:dd:d4:e9:ec:42:da:cd:af:a7:38:38:3f:24:29:0b:62:fd: 73:1e:ef:e4:3b:cf:b3:3e:01:48:9c:41:fd:d6:01:95:fa:77: 11:8c:88:23:af:a4:51:89:7d:18:11:29:74:a0:ee:c6:4a:ea: a3:f8:3a:45:1a:96:c9:26:73:0e:11:b7:d3:54:e7:30:3a:a1: f6:e5:5a:72:ec:11:2e:7b:a4:b3:9e:89:c2:16:a1:dd:3c:a1: b2:67:3e:2c:50:c7:40:33:89:cb:a9:a5:7d:5a:75:86:1a:99: 53:29:04:54:19:d5:63:d8:0c:43:7f:38:c7:72:7c:d6:a2:90: 4d:56:ee:b7:06:54:dd:d1:1a:17:67:4c:e6:32:e6:9a:09:ab: 8a:e5:7e:16:49:18:73:6c:f9:0b:5c:46:2f:ef:5f:4f:12:d6: fc:23:ec:2b:36:d9:ff:f8:d9:d8:d7:c7:0b:9b:b5:ed:2a:fa: f0:5e:8b:72:0f:11:f8:57:32:8c:bc:c8:00:96:ed:2a:15:f6: 47:85:2e:0b:27:c5:1d:1a:01:fd:d0:f0:ab:37:c0:19:cd:55: 8d:bb:bb:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjQwNTE4MjIwNjU1WhcNMjQwNTI1MjIwNjU1WjAYMRYwFAYD VQQDEw02NjQ5MjY3Zi1hZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZWE3wvONfqOUDcNzPPNNR5LEg17eke9mWwqtteUVty915X0nU8DRhZuN17l dIUX4DWQEVGX/HvoKfzzJOfLsLKS/U86c3mOfdlovVlDvPivI9SwQMoKaHg/2YWt +H5AifXBBoBl2gEm4IL63l/P9ftVb7L21xV/j0rNtxiBl7fg3E3pn7IrYYoDKr4D 0JTEBdnMnqugTy+/pn+hczovDnto0K9oYbkJl6yX4DcoJZyqem45jbKEzzBwL+Ut VWkqPTcKGgZD5bjBCaiPeTQWcpp546Sw5Mcf8Kg+cP0YzYOtDMUuhHIxPlFE6UmJ HGFX/5bEQpZUY4h1VEdkdHD/kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJR9K0Q9 ku5/1G7RXrJ3fMqJ2ADSMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBipu9Wcil+b4V1JTAgv44z8e5cD5aYCMC5otmKnB3w0zWyvIlp3dTp 7ELaza+nODg/JCkLYv1zHu/kO8+zPgFInEH91gGV+ncRjIgjr6RRiX0YESl0oO7G Suqj+DpFGpbJJnMOEbfTVOcwOqH25Vpy7BEue6SznonCFqHdPKGyZz4sUMdAM4nL qaV9WnWGGplTKQRUGdVj2AxDfzjHcnzWopBNVu63BlTd0RoXZ0zmMuaaCauK5X4W SRhzbPkLXEYv719PEtb8I+wrNtn/+NnY18cLm7XtKvrwXotyDxH4VzKMvMgAlu0q FfZHhS4LJ8UdGgH90PCrN8AZzVWNu7ut -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org