$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft File: nhw1MdAEXqOJtoz_koagj7y72L0.mft (raw, json) Hash identifier: ryrhJRUYRdkHpbqNbrsz3b5eCibVI1/dsu7pHDByvhk= Subject key identifier: B9:EC:0A:8B:6D:96:44:8D:87:62:1C:B4:51:40:04:72:11:53:1D:88 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1DFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft Manifest number: 1D3F Signing time: Sat 18 May 2024 16:33:18 +0000 Manifest this update: Sat 18 May 2024 16:33:17 +0000 Manifest next update: Sat 25 May 2024 16:33:17 +0000 Files and hashes: 1: nhw1MdAEXqOJtoz_koagj7y72L0.crl (hash: uFflw90R/uVBFCokp96kF3TjZjIHcKOXsX1hPxvHCHU=) 2: EE375CF036BD11E7B9B7251EC4F9AE02.roa (hash: oAMN3Hv+FrxmGc6WWivme2gl9rs4/jmndz5EfWvV6Og=) 3: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (hash: 8qTsqRmO80AHFfBUyqSAVB8YDABzwuoAca88nBKF+bs=) 4: C81AC00EB14111EB959D4D3CC4F9AE02.roa (hash: ASgDZ6RBvaayw4ZZjs56syo0bK53qF3EjAkzSzUWdkE=) 5: 192418F6AA1811EA97BC574CC4F9AE02.roa (hash: HfFeTs2pTlN0dZCGR3ETDmagxtrVoRQmHypj0cKvrXs=) 6: AB549D62125711EF94D14874C4F9AE02.roa (hash: 7u2tPWvB312w4cQ7LNuAKQdY34Bf1MbZPEt4wkYYHWg=) 7: FA4555AA93DC11EEB00AF628C4F9AE02.roa (hash: 75sNh1PMhH03uxHTO3l/1V5P1IOdr7+9Td6YwoWFqok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7679 (0x1dff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: May 18 16:33:17 2024 GMT Not After : May 25 16:33:17 2024 GMT Subject: CN=6648d84d-f05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:85:53:d9:a8:64:ac:f2:65:59:5a:51:3c:7b: 75:25:37:5e:0f:f0:07:3a:d9:1a:38:33:7c:33:62: 19:80:7f:83:47:e2:89:a5:3b:25:5c:f1:59:05:46: 0d:f1:e9:50:68:c8:66:4d:55:33:17:40:80:74:07: aa:03:7d:35:90:4c:06:dd:6b:54:14:bc:f8:77:9b: ef:17:de:77:10:74:99:c4:99:0b:be:a2:04:cd:7c: 81:15:64:85:7e:9b:e8:c4:79:38:a3:2e:5a:64:9f: 98:e7:99:eb:2e:ae:46:83:90:f3:98:76:98:93:7e: fc:e6:09:16:6e:df:ac:d8:a2:13:1c:91:9c:e5:60: dc:b9:c9:94:70:11:2b:b4:04:fd:9e:4e:7e:b7:6f: da:29:27:4b:52:2b:97:56:5e:77:10:b3:0a:0a:06: 68:ae:b8:de:d9:de:ea:76:85:e7:d5:52:15:f4:f4: 1a:4a:82:5d:7b:da:15:4d:8e:08:c4:1c:c7:18:14: 22:aa:1a:71:a1:82:5f:6e:af:4a:d8:0d:4c:af:02: 02:0a:17:32:7c:42:a0:5b:e9:d2:ea:a1:0e:3a:6b: 03:a9:10:5e:a7:1a:0c:ec:a6:2d:81:2c:00:5f:c2: 6f:a7:07:26:72:3d:91:fe:31:59:89:0b:a0:0a:2c: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EC:0A:8B:6D:96:44:8D:87:62:1C:B4:51:40:04:72:11:53:1D:88 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:47:cc:0a:5e:6b:9e:2e:5a:f6:b1:18:a0:ea:fd:d2:16:36: ea:f2:b1:48:b0:d1:14:be:9b:46:19:ea:07:99:b7:10:41:45: e0:56:2c:4a:43:d6:3b:7c:81:ef:67:39:25:66:fb:73:e7:72: 1f:8f:a4:92:e4:07:4d:89:87:c8:e9:05:17:9d:71:77:16:85: 18:09:2b:b9:7a:42:d7:2c:2b:d5:0a:68:ea:df:d5:c9:30:d8: 19:dc:8b:98:9f:82:14:00:bc:b8:ed:9d:86:6d:96:d0:e7:d2: 0e:a2:94:22:f0:54:65:fb:f9:95:de:a1:b4:fd:92:fa:37:9a: 0a:6e:a8:9e:be:58:75:56:58:a8:60:e1:66:07:b5:03:e5:8c: cd:5e:53:e8:47:00:d3:d8:fa:03:41:da:00:49:07:d3:14:21: 73:0e:53:f8:ec:1f:ef:ee:e2:a4:93:82:50:ef:77:9c:b6:47: cb:61:ea:14:33:01:de:f6:d6:9a:fc:ba:21:a4:de:72:a7:0c: 1c:62:cd:f6:ad:94:39:ad:3a:71:aa:d8:87:ee:45:a5:25:90: 68:e2:ec:13:f0:d2:94:3b:fd:dc:01:ff:81:4f:bc:df:42:93: 98:27:99:cd:d8:64:c9:6b:e5:37:b8:ea:c0:e1:f1:96:8b:ee: 3c:5b:a5:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjQwNTE4MTYzMzE3WhcNMjQwNTI1MTYzMzE3WjAYMRYwFAYD VQQDEw02NjQ4ZDg0ZC1mMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oVT2ahkrPJlWVpRPHt1JTdeD/AHOtkaODN8M2IZgH+DR+KJpTslXPFZBUYN 8elQaMhmTVUzF0CAdAeqA301kEwG3WtUFLz4d5vvF953EHSZxJkLvqIEzXyBFWSF fpvoxHk4oy5aZJ+Y55nrLq5Gg5DzmHaYk3785gkWbt+s2KITHJGc5WDcucmUcBEr tAT9nk5+t2/aKSdLUiuXVl53ELMKCgZorrje2d7qdoXn1VIV9PQaSoJde9oVTY4I xBzHGBQiqhpxoYJfbq9K2A1MrwICChcyfEKgW+nS6qEOOmsDqRBepxoM7KYtgSwA X8Jvpwcmcj2R/jFZiQugCiz2VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnsCott lkSNh2IctFFABHIRUx2IMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC85OTNGMjA5MEFCQzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhx T0p0b3pfa29hZ2o3eTcyTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCER8wKXmueLlr2sRig6v3SFjbq8rFIsNEUvptGGeoHmbcQQUXgVixK Q9Y7fIHvZzklZvtz53Ifj6SS5AdNiYfI6QUXnXF3FoUYCSu5ekLXLCvVCmjq39XJ MNgZ3IuYn4IUALy47Z2GbZbQ59IOopQi8FRl+/mV3qG0/ZL6N5oKbqievlh1Vlio YOFmB7UD5YzNXlPoRwDT2PoDQdoASQfTFCFzDlP47B/v7uKkk4JQ73ectkfLYeoU MwHe9taa/LohpN5ypwwcYs32rZQ5rTpxqtiH7kWlJZBo4uwT8NKUO/3cAf+BT7zf QpOYJ5nN2GTJa+U3uOrA4fGWi+48W6Xj -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org