$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft File: nuqkUJudasqRzaQCHxBekhA363Q.mft (raw, json) Hash identifier: 06DOChAU8rbAo0GYszwNJNCbmcsb5zuDRqeUikNp+YY= Subject key identifier: 4A:E6:6C:40:CE:DB:A4:A6:2C:BE:10:A1:A5:46:CE:6D:66:E5:68:01 Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 Certificate issuer: /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Certificate serial: 08DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft Manifest number: 08D4 Signing time: Sat 18 May 2024 21:24:32 +0000 Manifest this update: Sat 18 May 2024 21:24:32 +0000 Manifest next update: Sat 25 May 2024 21:24:32 +0000 Files and hashes: 1: nuqkUJudasqRzaQCHxBekhA363Q.crl (hash: IcDFySl5l7s4kMqhvgZnDpecOiBG+7tWVKr7p2+q0iU=) 2: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (hash: XwHLgMRVpullwU1R9AA7YcD8EJye551MKEICmLnB8Hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Validity Not Before: May 18 21:24:32 2024 GMT Not After : May 25 21:24:32 2024 GMT Subject: CN=66491c90-e458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:96:b8:22:2c:e0:4d:92:fb:59:94:ab:31:3d: 9b:76:2c:48:ee:ea:db:d3:1a:66:5c:02:1b:e2:30: c5:13:bc:41:4f:1b:d1:72:df:f1:a8:bf:41:8a:aa: 22:43:4b:f5:72:f1:38:1c:16:32:72:48:cd:dc:56: bf:b1:1f:e3:e2:ca:05:c9:fe:b1:44:7b:43:76:3f: b4:90:1f:f4:6c:03:c9:db:77:61:71:0b:54:dc:17: ad:fd:e9:40:3c:ff:d9:e9:cb:65:1e:88:f2:02:e9: 26:97:43:3f:67:3a:99:ae:e8:a5:32:6d:1a:ae:a6: 98:d4:8d:5b:fd:af:e6:f6:01:4f:45:c7:31:4e:9f: 8d:78:b0:1e:c1:4b:34:3b:29:53:ef:21:e7:6e:0f: 1f:6b:26:39:1f:21:28:d9:4d:9f:76:07:48:25:23: 9e:ad:3d:56:f5:83:ce:45:a6:b8:c5:6d:57:30:43: da:0c:4a:7d:f1:a6:9a:9e:18:02:c8:d9:0e:e1:3c: aa:58:1a:38:01:1a:20:d0:35:56:bc:95:a5:c2:b1: dd:7b:3d:fd:8e:fd:db:27:b4:9a:34:d6:94:53:47: 61:26:c8:44:9b:68:4b:a3:0d:45:b8:e1:7f:15:c3: 08:85:ba:ec:80:30:aa:64:fb:95:f5:73:72:91:de: 5e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E6:6C:40:CE:DB:A4:A6:2C:BE:10:A1:A5:46:CE:6D:66:E5:68:01 X509v3 Authority Key Identifier: keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c8:43:db:7e:50:e5:eb:bf:1d:de:24:ca:98:ff:4e:ee:2e: 27:96:c0:55:f0:23:d6:bb:e0:4b:27:8b:34:e7:1c:71:c3:94: 57:7a:85:f6:81:fb:15:b4:7a:24:62:88:27:fc:47:2f:8d:53: 03:0e:bd:fc:4f:24:a1:6b:e3:fb:98:af:f9:15:6d:f4:c1:e4: 46:68:57:a9:c6:1d:32:55:a9:1e:25:6b:f4:6f:6f:7d:bc:c6: 5d:9d:95:1a:22:bb:c3:51:3c:a2:91:40:32:b2:a3:a0:da:38: 16:80:70:95:f1:44:6c:ce:42:8e:fc:78:2a:81:0f:34:c8:0b: 26:7f:f3:52:75:ed:f9:a2:f3:3d:dd:54:54:eb:37:46:e7:e5: b8:54:38:1a:64:0c:f0:e0:b7:97:61:81:dc:4f:ba:b0:de:2e: f4:c7:dc:cb:02:81:56:71:04:77:80:cd:af:c0:21:a3:b6:e5: cd:3a:8f:d9:f4:4c:f7:8f:2d:5d:bf:a8:25:f8:14:40:1b:5b: 7b:95:da:f1:03:9e:25:30:4b:12:d8:2a:92:3c:e1:14:38:91: 4f:11:9e:9f:aa:a3:55:f6:19:8b:34:aa:69:94:fa:9d:ab:96: f8:81:34:a9:5a:fc:3c:1d:09:5b:57:aa:e0:2f:f5:70:0d:62: 3a:99:ca:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCQTYxMTAvBgNVBAUTKDlFRUFBNDUwOUI5RDZBQ0E5MUNEQTQwMjFGMTA1RTky MTAzN0VCNzQwHhcNMjQwNTE4MjEyNDMyWhcNMjQwNTI1MjEyNDMyWjAYMRYwFAYD VQQDEw02NjQ5MWM5MC1lNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ja4IizgTZL7WZSrMT2bdixI7urb0xpmXAIb4jDFE7xBTxvRct/xqL9Biqoi Q0v1cvE4HBYyckjN3Fa/sR/j4soFyf6xRHtDdj+0kB/0bAPJ23dhcQtU3Bet/elA PP/Z6ctlHojyAukml0M/ZzqZruilMm0arqaY1I1b/a/m9gFPRccxTp+NeLAewUs0 OylT7yHnbg8fayY5HyEo2U2fdgdIJSOerT1W9YPORaa4xW1XMEPaDEp98aaanhgC yNkO4TyqWBo4ARog0DVWvJWlwrHdez39jv3bJ7SaNNaUU0dhJshEm2hLow1FuOF/ FcMIhbrsgDCqZPuV9XNykd5e2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErmbEDO 26SmLL4QoaVGzm1m5WgBMB8GA1UdIwQYMBaAFJ7qpFCbnWrKkc2kAh8QXpIQN+t0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkJBNi84NERENzlFMDhC NzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFzcVJ6YVFDSHhCZWtoQTM2 M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL251cWtVSnVkYXNxUnphUUNIeEJla2hBMzYzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkJBNi84NERENzlFMDhCNzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFz cVJ6YVFDSHhCZWtoQTM2M1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTyEPbflDl678d3iTKmP9O7i4nlsBV8CPWu+BLJ4s05xxxw5RXeoX2 gfsVtHokYogn/EcvjVMDDr38TySha+P7mK/5FW30weRGaFepxh0yVakeJWv0b299 vMZdnZUaIrvDUTyikUAysqOg2jgWgHCV8URszkKO/HgqgQ80yAsmf/NSde35ovM9 3VRU6zdG5+W4VDgaZAzw4LeXYYHcT7qw3i70x9zLAoFWcQR3gM2vwCGjtuXNOo/Z 9Ez3jy1dv6gl+BRAG1t7ldrxA54lMEsS2CqSPOEUOJFPEZ6fqqNV9hmLNKpplPqd q5b4gTSpWvw8HQlbV6rgL/VwDWI6mcob -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org