$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: ARiwnEYxbGMdCD5fDpnz8rY7DhJk61oemfweViq9OPs= Subject key identifier: 49:68:53:30:98:EB:65:48:38:F4:E3:25:54:C4:9D:D6:8A:B4:75:E0 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 067F Signing time: Mon 06 May 2024 23:30:35 +0000 Manifest this update: Mon 06 May 2024 23:30:34 +0000 Manifest next update: Mon 13 May 2024 23:30:34 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: F18f2EdHZyjisJsnR7zPYKYLmniCsRn1MV4UAfcqTIA=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: FYue8PoamMqo7F//3yfaJFMx07sCioBTeOAwzl4Q7z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: May 6 23:30:34 2024 GMT Not After : May 13 23:30:34 2024 GMT Subject: CN=6639681a-01da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e3:b8:95:7e:eb:18:b3:d2:4b:01:72:39:4c: 2e:d0:ae:fc:48:48:cf:45:91:c5:0f:d7:d0:86:2c: 65:04:03:12:dc:32:b8:07:cd:a1:1b:ab:86:ff:83: cb:23:9b:06:1f:42:ec:cd:2e:ed:99:0b:f0:6a:96: dc:08:b7:6a:4d:61:16:70:91:c0:64:02:c8:60:e8: 79:c4:4f:03:e5:3d:9e:04:66:e4:11:f8:fc:08:c2: b5:b6:48:3a:f4:93:44:dd:2c:18:8b:c2:09:ae:74: 8a:ec:0e:89:88:e1:16:83:cd:22:82:2d:3f:c1:0b: b9:a7:6a:be:3a:a3:e4:3c:cd:f8:bc:c1:c3:ce:62: be:83:c8:06:42:28:f2:6a:8d:84:67:5b:96:30:00: 0d:23:ff:8a:0a:6d:51:36:8e:45:b5:7d:9d:18:98: c2:14:81:50:e7:50:78:75:e5:68:72:45:55:ad:64: 06:1f:c9:74:17:d3:63:16:3b:bc:9d:64:d7:72:d1: 18:de:1e:d8:67:cc:4c:a7:d7:85:e9:4d:14:09:8e: e3:c6:28:dc:7b:d9:7c:21:cf:f0:64:57:4c:49:68: 13:5c:4d:69:b3:7a:b6:a8:30:81:c1:14:3c:c5:9a: 70:96:8d:87:5a:b0:8f:f4:0f:7b:5f:74:35:08:9e: 97:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:68:53:30:98:EB:65:48:38:F4:E3:25:54:C4:9D:D6:8A:B4:75:E0 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:78:51:e0:80:27:19:93:09:f8:b0:7c:d7:da:67:1b:b5:28: 21:dd:0c:12:79:91:9a:63:92:b3:2d:cf:ba:bc:48:eb:cd:20: 16:88:b0:14:8d:76:0b:e9:7a:69:88:bd:be:ae:ee:9c:b2:ec: 0f:c8:e9:ea:e4:6a:15:23:19:1b:be:df:94:bf:6c:bd:44:f7: 85:ab:78:82:64:d8:8d:dc:fe:d3:a1:14:69:b2:cb:27:61:ff: 61:6f:4d:78:0e:ec:82:6c:d6:be:7c:3b:02:2d:94:96:11:20: f4:19:25:e1:72:64:61:98:01:77:09:80:39:ae:7f:b2:35:0b: 77:75:13:32:b1:00:5c:4f:2b:14:11:7a:6f:d1:e3:55:87:70: e6:a5:c9:22:f1:a6:cc:c0:d4:23:ae:be:0d:66:b3:98:51:d9: fa:2b:76:84:5c:ca:cc:5b:85:52:bc:26:18:38:ef:73:cf:69: e8:9e:aa:08:86:0e:10:0d:6d:30:40:14:02:2c:a4:01:2c:df: de:f9:0f:ff:10:3c:dd:3e:67:18:0a:2f:fb:d5:88:4f:fc:f1: 75:18:19:08:fa:a7:34:7f:05:d7:4d:a2:2f:8d:0d:2a:fa:23: b7:20:d1:03:8b:2a:ac:e0:54:b0:ee:b2:c9:a5:d0:28:ca:f9: 86:da:1d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjQwNTA2MjMzMDM0WhcNMjQwNTEzMjMzMDM0WjAYMRYwFAYD VQQDEw02NjM5NjgxYS0wMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuO4lX7rGLPSSwFyOUwu0K78SEjPRZHFD9fQhixlBAMS3DK4B82hG6uG/4PL I5sGH0LszS7tmQvwapbcCLdqTWEWcJHAZALIYOh5xE8D5T2eBGbkEfj8CMK1tkg6 9JNE3SwYi8IJrnSK7A6JiOEWg80igi0/wQu5p2q+OqPkPM34vMHDzmK+g8gGQijy ao2EZ1uWMAANI/+KCm1RNo5FtX2dGJjCFIFQ51B4deVockVVrWQGH8l0F9NjFju8 nWTXctEY3h7YZ8xMp9eF6U0UCY7jxijce9l8Ic/wZFdMSWgTXE1ps3q2qDCBwRQ8 xZpwlo2HWrCP9A97X3Q1CJ6X4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEloUzCY 62VIOPTjJVTEndaKtHXgMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7eFHggCcZkwn4sHzX2mcbtSgh3QwSeZGaY5KzLc+6vEjrzSAWiLAU jXYL6XppiL2+ru6csuwPyOnq5GoVIxkbvt+Uv2y9RPeFq3iCZNiN3P7ToRRpsssn Yf9hb014DuyCbNa+fDsCLZSWESD0GSXhcmRhmAF3CYA5rn+yNQt3dRMysQBcTysU EXpv0eNVh3Dmpcki8abMwNQjrr4NZrOYUdn6K3aEXMrMW4VSvCYYOO9zz2nonqoI hg4QDW0wQBQCLKQBLN/e+Q//EDzdPmcYCi/71YhP/PF1GBkI+qc0fwXXTaIvjQ0q +iO3INEDiyqs4FSw7rLJpdAoyvmG2h0F -----END CERTIFICATE-----Generated at Tue May 7 00:53:15 2024 by rpki-client on console-ams.rpki-client.org