$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: lRhQvQCPoIRfk1UU2spJbs5cF9NVFpRd25Dcy+DVtUQ= Subject key identifier: B9:A8:4A:B9:32:57:C0:77:1D:D4:D8:41:2A:12:6F:36:16:79:D5:7D Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 07C1 Signing time: Tue 30 Apr 2024 22:24:12 +0000 Manifest this update: Tue 30 Apr 2024 22:24:12 +0000 Manifest next update: Tue 07 May 2024 22:24:12 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: QyqA/KyvlUxVxUdAlSgc7AvdVKVhrAQNaA9DHKswEW0=) 2: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: oyfqbNAm/grRauQuYwryKL5TfKT95AwlRc5waGwKCq4=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: Z4uebeNAd6A8H5elWWiPDFv8e17vfsalUb9RId47Vxc=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: jq5ePz7ty7L0uy4urN1EtjyHtiSLjkb5CTxQNGbreHA=) 5: F814A546C01411EA912AC365C4F9AE02.roa (hash: CSrekpMbUtQxRsDfHQqz7muBflhWUtCH6yCR/F332RE=) 6: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: py2hU/JLNVXJOLcikkxI++3yZ7lCPoif0ARBrnq9Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Apr 30 22:24:12 2024 GMT Not After : May 7 22:24:12 2024 GMT Subject: CN=66316f8c-923d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:65:82:ff:87:30:82:15:b2:f8:31:fb:c2:dd: 7d:57:2c:cc:40:5e:a7:6f:43:d7:76:81:9e:d4:7e: 41:30:d9:e2:c2:2b:c0:9c:73:4c:d7:89:4f:af:1e: 37:4a:31:ab:72:9e:1f:ad:ab:77:79:b4:b3:1b:47: 0f:2e:d2:33:35:2b:c6:0c:05:8d:90:ef:6e:97:1a: ae:78:ee:2b:9f:2f:44:e2:93:c9:a2:68:6c:b7:ec: db:5a:0c:42:53:0a:57:70:e9:d8:d2:a4:b4:0d:fd: 14:67:e8:62:34:49:f2:42:60:0a:ea:44:dd:2c:6a: 34:75:44:49:05:70:d7:18:e9:96:61:78:7e:a9:c3: 72:c0:f1:06:5b:a1:13:a5:ad:0a:67:0b:96:7e:37: 9f:b3:98:f7:52:46:f0:ab:25:3d:05:5f:7c:a0:69: 8c:b5:5a:06:2d:ac:ca:ba:4d:f1:e5:88:2f:9e:a5: cc:37:00:92:96:a0:88:f2:f9:a0:9a:db:20:b6:6a: a1:0d:ae:a5:cc:df:50:6a:9c:9f:77:80:57:2b:42: 01:78:0b:56:16:4d:52:2b:50:59:51:e9:97:67:fd: 83:78:cf:3b:8a:3d:39:9e:11:ff:2b:26:98:ab:50: ac:2c:38:70:12:93:8d:50:96:3b:8c:71:f7:f0:5b: e3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A8:4A:B9:32:57:C0:77:1D:D4:D8:41:2A:12:6F:36:16:79:D5:7D X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:57:eb:d0:41:18:59:bd:1d:5e:77:3e:6f:e7:f8:b1:a3:2b: 30:b3:5a:2d:07:f7:9c:42:52:6e:2e:35:fc:66:22:b7:62:73: c5:13:89:7f:51:7c:5d:c6:a9:70:52:77:a9:f9:ae:93:8d:a1: 10:cb:f9:b4:9f:b2:3f:be:67:71:f1:81:40:6e:29:04:6d:e4: c5:9d:44:57:fe:fa:a1:3c:03:16:e4:aa:ca:3e:71:6a:8d:50: 06:2e:96:7b:66:65:8c:9b:cd:2f:09:27:c2:07:b8:28:7f:00: 6a:2e:a5:86:c4:a6:6d:23:16:87:9b:d0:e5:27:39:c3:7a:59: c9:c7:8e:f5:a0:6f:d0:42:5e:da:14:e5:55:4f:31:4a:07:1b: 63:83:c9:10:1d:3b:eb:39:26:9d:ae:cf:b0:14:15:2b:03:86: c3:81:dc:1e:9f:f8:55:fb:48:46:79:ad:86:0e:ea:a3:89:82: 21:86:a3:7f:65:ca:89:9a:41:65:94:20:4f:be:98:bf:81:8f: 25:21:67:d0:2c:ef:3b:3d:3d:a0:20:06:5f:f2:68:e5:88:b3: e4:9d:a0:5b:39:b7:b1:aa:83:24:4e:ce:e2:81:e8:a3:53:6d: d0:a1:87:46:f0:a9:87:71:5b:a5:a0:a9:7c:02:fb:18:c8:ac: 7e:6b:6e:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjQwNDMwMjIyNDEyWhcNMjQwNTA3MjIyNDEyWjAYMRYwFAYD VQQDEw02NjMxNmY4Yy05MjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWWC/4cwghWy+DH7wt19VyzMQF6nb0PXdoGe1H5BMNniwivAnHNM14lPrx43 SjGrcp4frat3ebSzG0cPLtIzNSvGDAWNkO9ulxqueO4rny9E4pPJomhst+zbWgxC UwpXcOnY0qS0Df0UZ+hiNEnyQmAK6kTdLGo0dURJBXDXGOmWYXh+qcNywPEGW6ET pa0KZwuWfjefs5j3UkbwqyU9BV98oGmMtVoGLazKuk3x5YgvnqXMNwCSlqCI8vmg mtsgtmqhDa6lzN9Qapyfd4BXK0IBeAtWFk1SK1BZUemXZ/2DeM87ij05nhH/KyaY q1CsLDhwEpONUJY7jHH38FvjfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmoSrky V8B3HdTYQSoSbzYWedV9MB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQV+vQQRhZvR1edz5v5/ixoysws1otB/ecQlJuLjX8ZiK3YnPFE4l/ UXxdxqlwUnep+a6TjaEQy/m0n7I/vmdx8YFAbikEbeTFnURX/vqhPAMW5KrKPnFq jVAGLpZ7ZmWMm80vCSfCB7gofwBqLqWGxKZtIxaHm9DlJznDelnJx471oG/QQl7a FOVVTzFKBxtjg8kQHTvrOSadrs+wFBUrA4bDgdwen/hV+0hGea2GDuqjiYIhhqN/ ZcqJmkFllCBPvpi/gY8lIWfQLO87PT2gIAZf8mjliLPknaBbObexqoMkTs7igeij U23QoYdG8KmHcVuloKl8AvsYyKx+a242 -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:13 2024 by rpki-client on console-fra.rpki-client.org