$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: nij4HQkPwKn5sATno/Of6dp4eaX8d2mtfsnI+oKYwmQ= Subject key identifier: 5D:48:C5:F9:B2:FE:A4:82:1B:41:37:CA:D1:4C:18:CC:04:B7:76:EA Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0ECF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0EAC Signing time: Wed 24 Apr 2024 18:23:00 +0000 Manifest this update: Wed 24 Apr 2024 18:23:00 +0000 Manifest next update: Wed 01 May 2024 18:23:00 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: CJYLwLSJsmyrAW71JLJEmMKcVOQKBcIJzeZUK/8MABI=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: Wgl12J3aO6xtiEgwwFNRQx2lXEcg0zHav6fTzt5T3BE=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: Ox9R9PiD8T0HlZTCVj50DkgG3vmsXlU+75pqLoh4Z1Y=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: gl6wFA8dPzIoLv1TnXCbO0ajqlLPYVSjBbHWje+e0k8=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: 55sVOk6/UnAp/fexIIaN6RRwH8HC98g4QsPN92ZTKEc=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: Qd2fS017bmmI4dqXgfO7lOJxE7pdpoytjHBgfsVzSRw=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: mILgjaEaplyNRnR3VkJIbJkHq2ArOnJINitmDYzwuDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3791 (0xecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Apr 24 18:23:00 2024 GMT Not After : May 1 18:23:00 2024 GMT Subject: CN=66294e04-fe2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:33:b5:21:43:c4:de:7a:f6:1c:7f:32:c5:15: f2:4c:63:93:91:af:b9:24:7f:96:2f:fd:7a:5d:8d: be:95:ce:0d:c3:34:bc:72:59:fa:1e:1a:8f:e8:37: c1:99:8f:99:60:1b:74:40:e2:f6:03:7c:75:a1:0f: 6e:40:5c:9b:81:af:27:7d:15:01:37:46:68:1e:f0: a7:7d:bf:3f:66:b4:13:10:89:70:da:33:15:a9:7a: cc:0a:f8:40:88:14:f8:a0:6a:ae:a2:5d:59:55:4e: 38:de:ec:a7:f3:25:16:6b:a5:3c:cf:ba:bf:04:20: 1a:b8:a4:86:84:2f:1c:fa:1f:6a:d4:ab:c0:79:e9: f5:71:9c:48:a9:1e:ce:77:ea:dd:bb:ca:47:3b:21: 46:d0:89:a8:ca:e2:a9:36:06:07:1e:33:99:39:4f: 32:bd:cf:9e:2c:4b:8f:af:ce:0f:86:21:42:5e:18: 96:7c:5f:83:0d:cd:c9:90:27:1b:17:80:52:83:8c: c5:69:c4:54:10:e9:12:90:ab:1b:7e:3c:b4:64:91: 4d:20:5a:24:84:65:97:c0:3a:d6:ef:73:b2:fd:ad: 78:87:3a:7a:13:09:43:43:d9:3a:3d:ba:5c:ed:31: 6d:e4:c7:51:18:f2:6e:2d:f8:04:da:24:fa:8e:a4: 47:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:48:C5:F9:B2:FE:A4:82:1B:41:37:CA:D1:4C:18:CC:04:B7:76:EA X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:09:bf:45:86:54:0a:c7:28:a3:ab:12:41:21:e1:2b:c6:66: c1:78:23:a8:68:2a:2d:eb:9f:c4:19:e9:5e:fb:b8:26:ec:ac: fc:7a:a5:d4:cd:2a:8e:93:f0:74:15:be:41:b4:90:e4:84:7c: 08:c5:94:87:b1:1c:d4:98:d4:ff:47:6e:bf:40:74:ac:c5:83: 0c:56:f1:f0:df:39:e9:8e:70:57:80:d9:51:10:80:de:d3:65: 63:cf:b2:d8:d7:3c:3b:82:dc:6a:e7:8d:5e:81:c6:f5:8a:a9: 21:ea:2e:09:aa:ff:ef:9c:8b:2b:14:45:84:cf:31:22:8a:88: 76:9e:e4:59:b1:cb:b6:ff:df:e1:c5:1a:b0:7e:8c:38:b7:85: 33:72:71:1c:60:25:89:d1:7d:0b:39:82:36:73:2c:f5:4e:95: 75:5b:73:bf:26:e3:21:f5:7f:5e:f0:4c:67:39:33:45:13:93: 54:7b:0d:53:b3:42:1b:77:a8:b1:ed:f4:c3:36:46:77:14:ef: 02:ca:9c:d2:61:d6:c0:56:cf:3e:93:bf:f3:ea:44:b8:d1:13: 96:7a:e6:79:99:2d:3f:55:d1:f7:d4:bd:56:6d:f3:b8:66:3f: e7:cc:c7:1a:9b:ab:0a:98:6e:ba:7c:09:97:40:f2:15:67:3b: a1:b5:3c:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjQwNDI0MTgyMzAwWhcNMjQwNTAxMTgyMzAwWjAYMRYwFAYD VQQDEw02NjI5NGUwNC1mZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TO1IUPE3nr2HH8yxRXyTGOTka+5JH+WL/16XY2+lc4NwzS8cln6HhqP6DfB mY+ZYBt0QOL2A3x1oQ9uQFybga8nfRUBN0ZoHvCnfb8/ZrQTEIlw2jMVqXrMCvhA iBT4oGquol1ZVU443uyn8yUWa6U8z7q/BCAauKSGhC8c+h9q1KvAeen1cZxIqR7O d+rdu8pHOyFG0ImoyuKpNgYHHjOZOU8yvc+eLEuPr84PhiFCXhiWfF+DDc3JkCcb F4BSg4zFacRUEOkSkKsbfjy0ZJFNIFokhGWXwDrW73Oy/a14hzp6EwlDQ9k6Pbpc 7TFt5MdRGPJuLfgE2iT6jqRHOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1Ixfmy /qSCG0E3ytFMGMwEt3bqMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Cb9FhlQKxyijqxJBIeErxmbBeCOoaCot65/EGele+7gm7Kz8eqXU zSqOk/B0Fb5BtJDkhHwIxZSHsRzUmNT/R26/QHSsxYMMVvHw3znpjnBXgNlREIDe 02Vjz7LY1zw7gtxq541egcb1iqkh6i4Jqv/vnIsrFEWEzzEiioh2nuRZscu2/9/h xRqwfow4t4UzcnEcYCWJ0X0LOYI2cyz1TpV1W3O/JuMh9X9e8ExnOTNFE5NUew1T s0Ibd6ix7fTDNkZ3FO8CypzSYdbAVs8+k7/z6kS40ROWeuZ5mS0/VdH31L1WbfO4 Zj/nzMcam6sKmG66fAmXQPIVZzuhtTz9 -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:11 2024 by rpki-client on console-ams.rpki-client.org