$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: ewSDZJYFYhWjTtgzVP90SwY40fmVrRaTm/tRKtHmbNM= Subject key identifier: ED:49:D7:3D:49:FD:90:73:45:DC:F0:E8:9D:02:F7:77:02:3F:D1:F3 Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 0338 Signing time: Sat 25 May 2024 03:07:08 +0000 Manifest this update: Sat 25 May 2024 03:07:07 +0000 Manifest next update: Sat 01 Jun 2024 03:07:07 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: 874CA6aIZgApRLCEhuba0EpH+feHZ8zAoPskInIaufw=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: gUq1YbiXljB/vgz+My+3uXVVQGjJZX+vawmC3PqjAu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: May 25 03:07:07 2024 GMT Not After : Jun 1 03:07:07 2024 GMT Subject: CN=665155db-e973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:40:3b:92:22:c1:32:12:44:e6:fe:71:f3:dd: 15:c0:92:f7:3a:df:0b:bc:f5:8c:a2:7d:50:18:af: 7b:bf:87:32:6e:3d:d5:1b:68:91:14:b5:e3:84:e0: 51:31:0c:8a:2f:83:1f:e7:88:37:cb:f2:f4:83:97: 17:f0:70:94:c5:27:94:50:e8:58:cc:aa:c6:09:d1: 9b:5f:87:b3:45:15:87:2c:f5:1a:8e:ab:fb:d7:02: 00:6d:f9:ad:35:3b:ee:86:b6:68:8f:82:83:9f:58: f5:b5:38:9d:eb:3a:9a:a0:4d:b5:c8:45:39:07:ac: c0:d2:1c:46:d3:88:2d:26:1e:7c:a3:81:2d:3c:33: 22:ce:6d:fe:33:45:15:08:b1:1f:fd:38:86:c9:04: 15:b6:ac:5e:5e:df:1a:8d:7c:f3:63:9c:6a:fd:37: d2:98:10:03:3f:76:34:9d:b4:f8:3a:8a:5a:73:dc: bd:96:48:d8:0e:9b:9b:b2:28:9f:8d:2f:ac:19:36: 0e:c5:0e:23:d7:ca:c8:43:bb:1b:25:4e:fc:b6:fb: ba:79:ec:6f:84:1b:48:bb:1f:0c:c6:16:f4:8f:7a: 46:61:05:72:da:89:64:88:02:bc:3c:ec:fc:25:7d: 82:67:81:ae:ac:91:9f:ca:77:6f:3e:12:07:38:e4: 8c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:49:D7:3D:49:FD:90:73:45:DC:F0:E8:9D:02:F7:77:02:3F:D1:F3 X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:20:47:00:70:e8:54:ee:f0:02:2f:2d:f7:66:79:de:3e:8b: 83:6c:3c:6d:bc:f8:5c:0c:b7:f7:10:2c:fb:01:a7:56:24:c0: 35:11:d2:1b:e6:7b:28:89:1a:d6:eb:b3:e9:a7:31:7d:72:6e: bc:77:62:9e:9b:c5:22:c3:82:70:04:11:de:49:21:64:34:c8: 2e:8d:b8:ad:dc:39:d8:7d:db:31:cc:7e:8b:d3:87:50:d0:0b: 84:18:ab:a5:67:27:4a:97:74:09:4a:19:fe:b6:29:20:bd:be: 14:c1:53:01:57:5a:5f:50:3b:3b:9f:0e:2a:29:1b:39:f5:60: 5a:ad:e7:b8:e5:b3:81:14:be:48:fe:04:66:83:4d:21:13:0b: 6e:72:0f:30:23:d3:ba:c4:27:f2:0d:f3:bc:f1:da:4f:91:bd: b9:17:19:ec:80:50:c7:cc:9b:de:d8:5a:64:02:ff:c4:bb:9c: 4c:da:e0:3b:cf:f1:1b:0c:a3:b3:49:30:0e:e0:9c:47:2f:7e: c9:b1:ee:c8:9c:e4:59:53:b6:3d:d7:1c:22:51:56:e5:76:19: 23:cd:5d:ef:93:15:3b:06:20:3b:90:06:ce:e4:ec:8c:31:b5: e0:0b:4e:a0:47:c2:0b:ec:89:09:51:e1:1b:b2:d7:5c:d4:9c: a6:b6:6d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjQwNTI1MDMwNzA3WhcNMjQwNjAxMDMwNzA3WjAYMRYwFAYD VQQDEw02NjUxNTVkYi1lOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EA7kiLBMhJE5v5x890VwJL3Ot8LvPWMon1QGK97v4cybj3VG2iRFLXjhOBR MQyKL4Mf54g3y/L0g5cX8HCUxSeUUOhYzKrGCdGbX4ezRRWHLPUajqv71wIAbfmt NTvuhrZoj4KDn1j1tTid6zqaoE21yEU5B6zA0hxG04gtJh58o4EtPDMizm3+M0UV CLEf/TiGyQQVtqxeXt8ajXzzY5xq/TfSmBADP3Y0nbT4Oopac9y9lkjYDpubsiif jS+sGTYOxQ4j18rIQ7sbJU78tvu6eexvhBtIux8Mxhb0j3pGYQVy2olkiAK8POz8 JX2CZ4GurJGfyndvPhIHOOSMZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1J1z1J /ZBzRdzw6J0C93cCP9HzMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqIEcAcOhU7vACLy33ZnnePouDbDxtvPhcDLf3ECz7AadWJMA1EdIb 5nsoiRrW67PppzF9cm68d2Kem8Uiw4JwBBHeSSFkNMgujbit3DnYfdsxzH6L04dQ 0AuEGKulZydKl3QJShn+tikgvb4UwVMBV1pfUDs7nw4qKRs59WBaree45bOBFL5I /gRmg00hEwtucg8wI9O6xCfyDfO88dpPkb25FxnsgFDHzJve2FpkAv/Eu5xM2uA7 z/EbDKOzSTAO4JxHL37Jse7InORZU7Y91xwiUVbldhkjzV3vkxU7BiA7kAbO5OyM MbXgC06gR8IL7IkJUeEbstdc1Jymtm2/ -----END CERTIFICATE-----Generated at Sat May 25 04:34:55 2024 by rpki-client on console-ams.rpki-client.org