$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft File: nvPmBKY_LO9L3eN9yokNBFGWeuw.mft (raw, json) Hash identifier: vhbcZfwp9eUlBPL29yRMaMeN2f5eQdeHA4ygy28EqoA= Subject key identifier: E1:4C:96:A5:64:C0:CF:E8:47:2E:29:F9:D6:3C:BC:4D:18:FA:2D:E5 Authority key identifier: 9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC Certificate issuer: /CN=A91EB002/serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft Manifest number: 11 Signing time: Sun 19 May 2024 08:51:35 +0000 Manifest this update: Sun 19 May 2024 08:51:35 +0000 Manifest next update: Sun 26 May 2024 08:51:35 +0000 Files and hashes: 1: nvPmBKY_LO9L3eN9yokNBFGWeuw.crl (hash: 94UayOTmO62sI8KJEvOTtMB7+vx2ZKmzy5GNnFLM1Tc=) 2: DA45BF3402D011EF84594A0BC4F9AE02.roa (hash: wViP+gEHWSNRKRQvvr5GIGcfBraWeSZCy2JKI8Oik3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB002/serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Validity Not Before: May 19 08:51:35 2024 GMT Not After : May 26 08:51:35 2024 GMT Subject: CN=6649bd97-c33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:40:07:d6:7e:dd:cd:76:33:2d:fa:1b:c9:33: a1:a8:22:d9:0d:27:b8:55:c3:43:05:7b:f8:14:32: ee:87:7f:0c:87:f7:45:6a:bb:d9:80:e9:3a:7d:5b: 08:c0:40:55:90:ae:00:39:ab:64:66:74:bc:2d:c7: 1a:e4:ed:e9:ff:31:c4:e6:47:38:a1:1d:78:7b:04: ce:57:f8:1e:d5:b1:34:8a:44:10:bb:98:c4:9c:37: 65:22:f5:b0:d9:0c:1b:e8:43:35:2a:21:2e:e8:6b: 17:73:9f:3e:f7:39:8f:dc:18:22:97:4a:33:1d:1c: c0:69:85:c8:26:2a:72:c5:d6:05:b7:a6:4b:59:9d: fe:8c:a1:01:aa:81:21:c1:e3:8e:72:a3:2d:ed:42: 89:50:fd:bd:24:45:d1:5d:87:2e:7e:fd:26:45:2b: 23:ac:fc:41:76:be:38:eb:c4:b1:71:4a:f0:da:85: b1:02:92:ee:d4:d2:b8:8d:d7:fe:61:17:95:fd:15: c4:04:53:c0:3f:08:7b:6a:15:1a:ce:9b:ec:09:bc: 8a:b5:6e:71:0c:70:01:ff:31:94:b9:31:e7:1c:9e: 27:bb:ec:d3:13:87:a0:89:43:b3:f4:2e:17:57:8e: fc:54:6f:c9:86:56:14:cc:86:f6:ce:1a:bc:c3:64: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4C:96:A5:64:C0:CF:E8:47:2E:29:F9:D6:3C:BC:4D:18:FA:2D:E5 X509v3 Authority Key Identifier: keyid:9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:51:21:78:8b:4d:9f:f0:0e:ab:2f:59:be:6b:75:38:fe:2a: 6d:a9:4b:67:ac:80:c7:fc:53:38:c6:81:3d:63:a9:a4:4b:2c: 3d:8e:88:bf:a2:11:b7:52:e6:95:4f:e6:09:ce:dd:4b:27:54: 52:59:d6:10:80:25:b1:4a:06:bc:24:0f:8a:44:12:c7:cd:90: 7d:e1:c3:74:10:92:80:81:3a:78:67:cb:ca:42:45:b7:2b:a5: 81:69:66:2c:61:ce:1c:c8:fd:39:af:82:f3:ec:c0:7d:37:2e: 1a:40:67:88:2d:8d:95:6a:61:30:76:18:af:cd:d1:6c:b8:47: e7:89:a8:cf:7a:2e:a8:ac:60:61:e0:54:f3:78:45:82:de:07: 0d:f4:c7:39:10:72:84:17:3c:28:38:f5:1c:2b:99:59:d9:d7: 2e:2c:46:00:5d:04:cc:3b:78:47:4f:f6:c2:a0:fd:c6:2d:65: 0f:7d:d8:ea:2f:de:83:98:05:ff:99:b2:aa:e4:a5:fa:ab:f1: ab:7c:c5:a1:de:f1:ce:d3:a3:40:11:b5:fe:65:04:c7:40:b5: 95:a9:26:b4:4f:e2:97:0f:1e:12:49:f5:8a:3d:64:b1:bd:2d: f8:5f:db:5e:15:a5:8f:eb:ed:0a:8e:20:02:81:39:6c:b6:6d: 3e:30:a0:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjAwMjExMC8GA1UEBRMoOUVGM0U2MDRBNjNGMkNFRjRCRERFMzdEQ0E4OTBEMDQ1 MTk2N0FFQzAeFw0yNDA1MTkwODUxMzVaFw0yNDA1MjYwODUxMzVaMBgxFjAUBgNV BAMTDTY2NDliZDk3LWMzM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjQAfWft3NdjMt+hvJM6GoItkNJ7hVw0MFe/gUMu6HfwyH90Vqu9mA6Tp9WwjA QFWQrgA5q2RmdLwtxxrk7en/McTmRzihHXh7BM5X+B7VsTSKRBC7mMScN2Ui9bDZ DBvoQzUqIS7oaxdznz73OY/cGCKXSjMdHMBphcgmKnLF1gW3pktZnf6MoQGqgSHB 445yoy3tQolQ/b0kRdFdhy5+/SZFKyOs/EF2vjjrxLFxSvDahbECku7U0riN1/5h F5X9FcQEU8A/CHtqFRrOm+wJvIq1bnEMcAH/MZS5Meccnie77NMTh6CJQ7P0LhdX jvxUb8mGVhTMhvbOGrzDZOOZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4UyWpWTA z+hHLin51jy8TRj6LeUwHwYDVR0jBBgwFoAUnvPmBKY/LO9L3eN9yokNBFGWeuww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCMDAyL0UyNEY4MjM0MDIy RTExRUY4NTZGNTEzMkM0RjlBRTAyL252UG1CS1lfTE85TDNlTjl5b2tOQkZHV2V1 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnZQbUJLWV9MTzlMM2VOOXlva05CRkdXZXV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC MDAyL0UyNEY4MjM0MDIyRTExRUY4NTZGNTEzMkM0RjlBRTAyL252UG1CS1lfTE85 TDNlTjl5b2tOQkZHV2V1dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHRRIXiLTZ/wDqsvWb5rdTj+Km2pS2esgMf8UzjGgT1jqaRLLD2OiL+i EbdS5pVP5gnO3UsnVFJZ1hCAJbFKBrwkD4pEEsfNkH3hw3QQkoCBOnhny8pCRbcr pYFpZixhzhzI/TmvgvPswH03LhpAZ4gtjZVqYTB2GK/N0Wy4R+eJqM96LqisYGHg VPN4RYLeBw30xzkQcoQXPCg49RwrmVnZ1y4sRgBdBMw7eEdP9sKg/cYtZQ992Oov 3oOYBf+Zsqrkpfqr8at8xaHe8c7To0ARtf5lBMdAtZWpJrRP4pcPHhJJ9Yo9ZLG9 Lfhf214VpY/r7QqOIAKBOWy2bT4woKc= -----END CERTIFICATE-----Generated at Sun May 19 09:32:19 2024 by rpki-client on console-ams.rpki-client.org