$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: Uwoefi8Zj/4pW3bm/Bj0Lz/2ZyWuWAACdtmvRKBDxsw= Subject key identifier: F7:E6:E2:2C:1C:9C:D6:2F:FE:55:F2:E9:BD:D5:D1:2E:7E:64:C1:DF Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 095F Signing time: Mon 24 Jun 2024 20:39:10 +0000 Manifest this update: Mon 24 Jun 2024 20:39:09 +0000 Manifest next update: Mon 01 Jul 2024 20:39:09 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: qIlLkQumIwHGcSRy8YFMA0PRhgEnzvlD8LUZYePs0Mk=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: 51xFCuLNaXT5cGhpR1RrXJQMru8U96eL84Hf/9xFOFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 20:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Jun 24 20:39:09 2024 GMT Not After : Jul 1 20:39:09 2024 GMT Subject: CN=6679d96e-2b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:e0:f0:16:5f:c9:a6:6a:7c:3a:17:67:fd: 11:4a:c6:03:a8:70:74:47:5e:10:4f:91:d3:e3:34: ac:a2:fc:48:78:d2:3e:26:29:dd:56:b3:40:d5:f8: 43:36:4d:f3:86:60:a3:9e:c4:cc:32:5a:84:e0:d1: ff:65:57:89:cd:1c:57:1b:ab:1b:9f:2c:8e:d8:e6: 30:cb:df:b2:e7:7a:d2:1b:ed:18:03:e3:2d:73:1b: cf:25:1b:37:cc:56:2f:9b:0d:a2:7b:ed:7b:58:a9: 0d:1e:d4:9b:d8:58:d0:88:60:16:f0:fb:1f:66:e9: 8b:77:19:28:f1:c2:b2:a6:ad:92:5a:85:7e:b4:7d: 66:24:fa:2c:a1:40:c9:c2:cc:2c:f6:18:16:76:53: 66:d4:87:49:fc:93:ee:d9:7c:25:7d:40:81:e6:dc: ea:b9:52:00:d4:a1:6d:0a:e0:0e:0a:de:f6:49:37: 62:4a:ba:7a:ef:85:8e:22:56:a2:bc:a0:50:4c:16: 81:cb:5f:5d:1c:bc:9f:9c:0f:fc:c6:03:36:8a:47: 4c:cd:38:1b:5b:7c:10:97:8b:9d:a3:40:9a:60:15: 9f:d3:99:f1:df:4d:53:fb:41:eb:17:a9:73:f1:33: e2:50:fe:83:ff:21:52:48:f0:08:3d:8d:40:6f:59: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E6:E2:2C:1C:9C:D6:2F:FE:55:F2:E9:BD:D5:D1:2E:7E:64:C1:DF X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:61:fe:0d:4c:db:e6:eb:24:43:b7:91:af:c9:3f:0a:01:aa: ad:b4:a9:a0:27:19:89:eb:1a:68:f9:ea:81:41:ff:fd:77:d4: d8:a0:04:ae:e3:7e:7a:e9:b2:26:65:4c:3b:fc:fb:ac:73:31: 8a:5e:93:3d:b9:db:82:b8:72:52:6d:5f:58:82:e7:61:2e:8c: b0:40:2d:59:64:2d:0c:c8:dd:c4:3a:ea:d5:7a:2b:86:ad:e1: 7a:6b:4a:89:18:86:90:88:b7:ea:37:64:ad:d1:07:9f:92:2b: dc:d2:3e:24:c7:08:4c:db:36:d7:34:05:8f:2d:53:17:ad:7d: c3:e9:94:bf:da:52:dd:77:8a:05:27:e8:61:77:6a:3f:94:d4: 6b:fa:69:15:12:de:3b:58:c7:ec:7f:8c:8c:9c:0f:c5:20:94: 6f:50:89:db:b7:ff:85:a9:11:0e:35:93:52:af:bd:73:3a:6a: f9:05:5d:4c:d0:b9:fc:0b:39:d1:b8:a0:65:cd:72:e2:25:d3: 03:46:15:3d:2d:f4:39:46:c9:01:39:f6:c2:aa:e0:ff:d8:31: 0e:86:d1:a9:7c:be:5a:e9:d7:ed:e8:6d:91:9a:96:f2:ee:04: c7:85:b9:6d:26:ac:26:85:65:e1:70:00:1c:89:d5:1b:d6:71: 36:c4:d9:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjQwNjI0MjAzOTA5WhcNMjQwNzAxMjAzOTA5WjAYMRYwFAYD VQQDEw02Njc5ZDk2ZS0yYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFXg8BZfyaZqfDoXZ/0RSsYDqHB0R14QT5HT4zSsovxIeNI+JindVrNA1fhD Nk3zhmCjnsTMMlqE4NH/ZVeJzRxXG6sbnyyO2OYwy9+y53rSG+0YA+MtcxvPJRs3 zFYvmw2ie+17WKkNHtSb2FjQiGAW8PsfZumLdxko8cKypq2SWoV+tH1mJPosoUDJ wsws9hgWdlNm1IdJ/JPu2XwlfUCB5tzquVIA1KFtCuAOCt72STdiSrp674WOIlai vKBQTBaBy19dHLyfnA/8xgM2ikdMzTgbW3wQl4udo0CaYBWf05nx301T+0HrF6lz 8TPiUP6D/yFSSPAIPY1Ab1mNCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfm4iwc nNYv/lXy6b3V0S5+ZMHfMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRYf4NTNvm6yRDt5GvyT8KAaqttKmgJxmJ6xpo+eqBQf/9d9TYoASu 43566bImZUw7/PusczGKXpM9uduCuHJSbV9YgudhLoywQC1ZZC0MyN3EOurVeiuG reF6a0qJGIaQiLfqN2St0Qefkivc0j4kxwhM2zbXNAWPLVMXrX3D6ZS/2lLdd4oF J+hhd2o/lNRr+mkVEt47WMfsf4yMnA/FIJRvUInbt/+FqREONZNSr71zOmr5BV1M 0Ln8CznRuKBlzXLiJdMDRhU9LfQ5RskBOfbCquD/2DEOhtGpfL5a6dft6G2Rmpby 7gTHhbltJqwmhWXhcAAcidUb1nE2xNmJ -----END CERTIFICATE-----Generated at Mon Jun 24 23:52:05 2024 by rpki-client on console-fra.rpki-client.org