$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: VZ/39wKyTsbMNrNOuis34GM7r+uWNvnwktT5oYl7QZw= Subject key identifier: 45:FF:6C:F5:65:20:3B:94:04:A6:0E:DB:CA:7A:C9:C6:D4:CB:45:15 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 0573 Signing time: Sun 05 May 2024 00:49:34 +0000 Manifest this update: Sun 05 May 2024 00:49:34 +0000 Manifest next update: Sun 12 May 2024 00:49:34 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: tLIT3GvwVtF6+9mdPrFmAFX43tGeaJtAPqCPubMtQ5g=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: XhabguNmfoaoaLydzPCMcINuMUCMOCq7nXAwub1uejA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: May 5 00:49:34 2024 GMT Not After : May 12 00:49:34 2024 GMT Subject: CN=6636d79e-d0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:28:50:c0:2d:1e:e4:0b:c9:f1:0e:f8:d8:73: da:1c:a2:fc:3e:22:4f:68:7f:02:b7:8a:bc:67:54: fa:cb:7c:cc:b7:75:16:23:62:59:03:b4:96:59:77: 04:58:09:44:78:ab:48:43:4c:b3:7b:3f:c4:cc:a4: 83:40:72:bd:ba:df:66:d3:67:c1:7b:8d:08:d1:82: 35:64:39:52:6d:b1:2c:41:d5:75:30:c2:72:64:6e: ed:1f:65:2d:48:68:38:2f:4c:d1:eb:32:79:87:17: 9a:24:66:4c:50:f8:e9:1d:b1:7e:a5:17:74:d4:6b: b3:09:ca:c0:c8:b2:3b:10:4f:a0:20:12:35:7f:ac: 8f:2f:da:44:2d:e0:71:5a:1e:6f:09:bc:d3:70:1b: 2b:b2:a6:28:fa:b1:81:5b:fb:bd:95:7f:54:6a:85: 9f:a0:21:25:6a:29:ec:0e:84:12:48:6f:76:5e:ff: c7:2f:2c:54:d4:43:d5:6a:c5:bf:02:3d:6b:c9:bd: 35:6b:36:3e:aa:39:ac:1b:f5:54:05:28:b6:b3:be: 2f:36:ea:33:0d:74:77:0d:42:67:93:4b:b6:ec:7a: 37:ec:22:52:71:ce:72:d5:42:6a:67:f7:68:f0:c8: e1:27:de:ab:0f:ef:28:0e:70:5a:5a:c2:b2:c4:36: 7d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FF:6C:F5:65:20:3B:94:04:A6:0E:DB:CA:7A:C9:C6:D4:CB:45:15 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:84:5f:34:4e:c2:73:0c:5f:ae:32:c0:f3:02:2c:55:63:f4: bc:b6:a0:7d:41:22:a9:a9:44:e1:fa:d9:bf:7a:95:5a:bb:e1: ef:5a:8e:d4:d5:11:c8:b4:47:92:5b:77:c0:d8:ae:bc:2e:c2: 21:8f:30:e1:d2:46:79:70:9a:d8:83:cf:e0:6e:4b:3e:4c:04: 74:db:0e:7d:ed:8c:ee:72:f9:81:a7:71:80:33:d0:58:81:b4: 57:4a:82:99:a4:f8:d8:d7:31:da:87:be:70:78:60:b1:dd:12: 00:17:02:3c:be:76:32:70:64:7c:86:bc:0e:47:0f:c3:28:37: 56:31:bd:c8:ef:42:a7:78:ef:0a:b1:4e:75:53:70:b0:15:25: bd:cd:fc:5d:05:9f:5e:cf:ab:58:f3:d5:e5:21:cf:f3:8b:a5: a2:6e:fb:ae:36:31:81:14:fa:8b:ab:ce:5e:de:90:99:0c:8e: b8:d1:c7:0b:39:b0:2e:0d:d0:96:68:12:d0:99:d1:f6:cb:76: 02:cb:39:77:3c:43:52:38:2e:ee:41:a6:d8:2a:f4:91:79:dc: 7f:02:06:7c:8f:b8:aa:5a:2c:9f:ca:68:1e:34:a8:67:38:21: 1f:10:63:de:1b:34:76:90:55:7f:a1:86:1a:12:6f:41:b3:72: 95:a2:77:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjQwNTA1MDA0OTM0WhcNMjQwNTEyMDA0OTM0WjAYMRYwFAYD VQQDEw02NjM2ZDc5ZS1kMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ShQwC0e5AvJ8Q742HPaHKL8PiJPaH8Ct4q8Z1T6y3zMt3UWI2JZA7SWWXcE WAlEeKtIQ0yzez/EzKSDQHK9ut9m02fBe40I0YI1ZDlSbbEsQdV1MMJyZG7tH2Ut SGg4L0zR6zJ5hxeaJGZMUPjpHbF+pRd01GuzCcrAyLI7EE+gIBI1f6yPL9pELeBx Wh5vCbzTcBsrsqYo+rGBW/u9lX9UaoWfoCElainsDoQSSG92Xv/HLyxU1EPVasW/ Aj1ryb01azY+qjmsG/VUBSi2s74vNuozDXR3DUJnk0u27Ho37CJScc5y1UJqZ/do 8MjhJ96rD+8oDnBaWsKyxDZ9SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEX/bPVl IDuUBKYO28p6ycbUy0UVMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMhF80TsJzDF+uMsDzAixVY/S8tqB9QSKpqUTh+tm/epVau+HvWo7U 1RHItEeSW3fA2K68LsIhjzDh0kZ5cJrYg8/gbks+TAR02w597YzucvmBp3GAM9BY gbRXSoKZpPjY1zHah75weGCx3RIAFwI8vnYycGR8hrwORw/DKDdWMb3I70KneO8K sU51U3CwFSW9zfxdBZ9ez6tY89XlIc/zi6WibvuuNjGBFPqLq85e3pCZDI640ccL ObAuDdCWaBLQmdH2y3YCyzl3PENSOC7uQabYKvSRedx/AgZ8j7iqWiyfymgeNKhn OCEfEGPeGzR2kFV/oYYaEm9Bs3KVoneq -----END CERTIFICATE-----Generated at Sun May 5 02:13:01 2024 by rpki-client on console-ams.rpki-client.org