$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft File: nflMM9P2R649kTYeHxcsIGhvWYk.mft (raw, json) Hash identifier: 5gP4Gy0eBLcn4GE/X2aihctLRYmUTLAwlGD+KGlnEKw= Subject key identifier: DC:54:3B:13:52:72:B2:BE:50:68:52:13:17:C5:50:6D:F4:43:49:95 Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft Manifest number: 0D07 Signing time: Thu 02 May 2024 18:49:02 +0000 Manifest this update: Thu 02 May 2024 18:49:01 +0000 Manifest next update: Thu 09 May 2024 18:49:01 +0000 Files and hashes: 1: nflMM9P2R649kTYeHxcsIGhvWYk.crl (hash: qBatictzvUa9IrECiAtrbPJ9mxM7kFuFZOPZCy4RXBg=) 2: 46B27CC6B82A11E9843DEE0AC4F9AE02.roa (hash: R+8e60KMLF2Q7uDOrIo7+YUjKmBw84tN5qGB1wzHUSs=) 3: 9E78AEC4C78E11EBB4983F5BC4F9AE02.roa (hash: 5uLUZ+7ZABridhPJYI2qa3D2Yl/sh6FiJZCocDj/vgU=) 4: 47E67066B82A11E9843DEE0AC4F9AE02.roa (hash: WGc4CxUWep/OHQ5k+v4j8jGsf4m8CrQpQhz7+cVtEd4=) 5: 9F8B79C2C78E11EBB4983F5BC4F9AE02.roa (hash: tQnBQsTaVMkjPaaCC9AmlwaFsYhC+13rEDRJ04yr2ec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: May 2 18:49:01 2024 GMT Not After : May 9 18:49:01 2024 GMT Subject: CN=6633e01e-60ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:00:75:78:c6:50:0c:bc:b1:a4:45:fa:22:96: 4b:f8:5f:df:ae:ea:20:12:14:de:32:47:37:b6:0a: 2e:73:98:6a:8b:89:3a:60:76:cd:8b:12:b6:f3:55: d6:d1:8e:88:24:ca:e4:ce:98:cb:e5:44:67:af:e0: 6c:f1:20:53:5b:27:25:e1:9e:59:84:db:ff:c4:88: 3d:8d:25:4a:6b:28:ac:aa:49:2f:38:fa:bd:27:35: ae:d4:5e:42:20:3d:19:b3:11:95:63:55:a6:0e:1e: 54:c9:8e:31:f2:81:25:89:16:6a:00:5f:14:a9:d8: 6d:cf:e2:2d:f5:92:d0:08:ca:f6:16:fd:02:ee:10: 71:46:bd:c1:a8:f7:e7:6a:fb:53:c1:ce:f2:a3:96: c0:c2:d3:eb:59:61:23:e6:b5:d1:e2:3b:2b:b3:a0: 92:95:fd:df:1a:db:7d:d1:91:eb:14:a0:39:93:91: 20:56:5c:a0:71:e9:b3:7d:e7:27:12:67:bc:44:b6: f0:73:f3:d5:03:ff:ec:5c:59:da:7c:15:d6:59:08: 36:0b:95:43:ee:b8:a4:82:d0:a7:3b:49:42:fc:82: 43:9e:69:3a:19:94:3a:07:09:d1:dc:7c:ab:c0:2e: 5a:35:1f:ba:f3:f4:6d:f3:e9:ba:c0:c7:ff:96:cb: 5a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:54:3B:13:52:72:B2:BE:50:68:52:13:17:C5:50:6D:F4:43:49:95 X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:f3:f3:04:36:c8:6e:89:1d:5a:e5:99:95:6a:04:da:7f:fd: d7:38:e0:07:21:ae:68:f6:06:0d:4d:64:7d:54:06:0c:9b:ec: d0:8a:ed:a5:f1:d1:fc:37:a8:45:20:c4:18:46:50:4a:d4:51: 02:45:06:7c:93:24:96:22:c8:19:6f:61:28:74:24:20:8f:79: dd:be:8e:b7:69:01:fe:3a:de:61:5b:60:e1:c8:24:7d:c0:03: 4f:4c:0d:c4:b4:40:00:d6:e1:34:fc:fb:77:cb:8d:9a:eb:cc: e8:b0:bc:8c:93:81:db:0e:83:a9:3b:7e:92:58:41:94:ca:84: d4:3f:bd:f3:2a:b9:7e:fa:f1:7a:b5:5f:b8:ab:ef:aa:a0:20: fc:29:88:67:34:7f:f9:cc:a4:59:d6:ef:ca:fb:bb:27:3f:5b: 9d:0d:50:55:d7:bc:d0:aa:55:f8:d5:7d:31:69:65:cb:8e:9e: 30:9e:4b:68:8d:83:1b:3d:9c:5d:82:0f:8d:6d:44:59:5f:cc: 14:04:f4:bf:55:a1:57:14:76:87:d9:08:67:2a:9d:3f:39:4a: 9d:9e:eb:e6:ae:3a:7b:e6:a8:a8:1c:ae:dc:88:51:77:c0:b2: ce:f9:fe:f8:42:0a:f4:80:fa:9c:7e:b0:67:2a:87:33:35:6c: 3a:fe:8d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjQwNTAyMTg0OTAxWhcNMjQwNTA5MTg0OTAxWjAYMRYwFAYD VQQDEw02NjMzZTAxZS02MGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgB1eMZQDLyxpEX6IpZL+F/fruogEhTeMkc3tgouc5hqi4k6YHbNixK281XW 0Y6IJMrkzpjL5URnr+Bs8SBTWycl4Z5ZhNv/xIg9jSVKayisqkkvOPq9JzWu1F5C ID0ZsxGVY1WmDh5UyY4x8oEliRZqAF8Uqdhtz+It9ZLQCMr2Fv0C7hBxRr3BqPfn avtTwc7yo5bAwtPrWWEj5rXR4jsrs6CSlf3fGtt90ZHrFKA5k5EgVlygcemzfecn Eme8RLbwc/PVA//sXFnafBXWWQg2C5VD7rikgtCnO0lC/IJDnmk6GZQ6BwnR3Hyr wC5aNR+68/Rt8+m6wMf/lstaxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxUOxNS crK+UGhSExfFUG30Q0mVMB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCNC83MDlGN0EyNkI4MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2 NDlrVFllSHhjc0lHaHZXWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC98/MENshuiR1a5ZmVagTaf/3XOOAHIa5o9gYNTWR9VAYMm+zQiu2l 8dH8N6hFIMQYRlBK1FECRQZ8kySWIsgZb2EodCQgj3ndvo63aQH+Ot5hW2DhyCR9 wANPTA3EtEAA1uE0/Pt3y42a68zosLyMk4HbDoOpO36SWEGUyoTUP73zKrl++vF6 tV+4q++qoCD8KYhnNH/5zKRZ1u/K+7snP1udDVBV17zQqlX41X0xaWXLjp4wnkto jYMbPZxdgg+NbURZX8wUBPS/VaFXFHaH2QhnKp0/OUqdnuvmrjp75qioHK7ciFF3 wLLO+f74Qgr0gPqcfrBnKoczNWw6/o03 -----END CERTIFICATE-----Generated at Thu May 2 20:04:25 2024 by rpki-client on console-ams.rpki-client.org