$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft File: nlcX9fFLsp9ntXrX2dXweRWunEM.mft (raw, json) Hash identifier: b8cUJheFIc4rr0pM2sr0r2Q1NEAl4eFLtf2MMpJlgZQ= Subject key identifier: DE:FC:D0:A4:8A:7E:1A:BF:F1:7C:08:AF:10:21:0E:9F:91:EE:58:9B Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft Manifest number: 02CB Signing time: Sun 05 May 2024 03:33:00 +0000 Manifest this update: Sun 05 May 2024 03:32:59 +0000 Manifest next update: Sun 12 May 2024 03:32:59 +0000 Files and hashes: 1: nlcX9fFLsp9ntXrX2dXweRWunEM.crl (hash: cWdj2Cr6eKcNCXLDylcukFNG/zK1V1HmaBEk/lBNwdM=) 2: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (hash: A1a0dPbMqSMo2jhZr8geXRzhFXcgET8jXeb41D5v6i0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: May 5 03:32:59 2024 GMT Not After : May 12 03:32:59 2024 GMT Subject: CN=6636fdeb-93ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:28:3f:a6:97:fd:be:7a:06:21:56:53:7a:5d: dd:12:c0:0e:20:a4:99:5b:57:f8:bc:1f:0e:58:f7: be:82:6a:53:09:b7:7f:75:43:91:3d:b8:b9:17:a5: d3:1a:8d:a8:1e:93:60:16:57:65:81:10:db:30:6a: d2:2a:a2:e3:25:9a:f8:f0:f5:19:3f:ac:a6:21:3c: 84:a8:c0:34:9e:32:3d:f8:8f:22:3f:2a:60:6e:a7: c6:33:af:41:ec:a2:b3:4c:66:e7:51:fa:c8:2d:b7: b0:aa:cd:a0:c5:71:9a:02:23:c2:cd:2e:13:e7:9f: 78:66:c8:27:b5:9f:0e:8a:13:00:85:a8:36:26:8c: fe:2a:ad:24:af:4f:2d:03:7c:99:37:98:41:30:c2: 08:4d:4d:30:82:65:2e:d0:63:1e:7d:9b:82:dd:f4: f1:a1:d8:f7:48:1c:17:7d:00:1b:77:42:3a:59:ac: 44:b6:8f:0b:15:f0:26:d6:75:2c:2e:e4:25:4d:9a: bd:a2:25:8f:af:d2:75:73:4a:84:ab:ab:b6:1f:7e: db:bf:7e:d6:7b:3b:85:be:33:94:01:69:97:11:e1: eb:e3:b1:bd:c1:d2:f0:19:92:45:6d:56:da:c8:4f: 01:06:0f:26:d2:3f:5d:b8:b3:02:e0:7c:27:a6:02: 6b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FC:D0:A4:8A:7E:1A:BF:F1:7C:08:AF:10:21:0E:9F:91:EE:58:9B X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a0:bb:e5:f7:06:9a:2c:94:85:ad:4a:b5:d8:61:51:04:c0: cc:33:e8:29:86:38:94:54:81:4f:d3:a8:e0:43:c4:cd:1c:71: 73:5b:30:d1:f4:25:00:95:07:2a:94:60:7f:e3:20:4d:8a:d9: e0:f8:ac:c4:96:de:df:35:ff:8a:99:d6:53:a1:45:d5:a8:7e: da:32:24:30:5e:07:58:f1:eb:1c:6b:30:ae:50:99:59:b4:d0: 3b:db:9e:d5:fd:f0:04:7c:4f:bc:f8:ed:fa:5a:94:78:f5:df: 91:12:d4:24:c7:d3:06:64:91:93:27:f3:f7:2a:06:8f:ca:ba: 07:b9:35:02:e3:9c:4d:3c:81:4f:01:e3:d8:3c:39:a1:6e:99: 9d:b1:19:41:0e:ae:27:4d:1f:10:a5:56:ab:7f:84:b0:7f:08: c7:ab:b3:7a:a5:eb:b7:1f:32:c2:be:ef:fb:bb:48:d5:03:be: 88:d0:77:7f:75:85:7a:fd:78:48:41:e9:77:b6:85:74:3d:64: 0e:c3:22:d6:42:b5:75:8c:92:c0:92:50:b4:d5:c1:16:ed:41: 7b:78:61:39:bb:6c:2e:3d:70:d8:ea:7f:84:78:19:6b:a4:76: 2d:2a:3f:d6:1a:35:f2:a3:3c:bf:e5:14:65:e0:fa:3a:c0:26: 03:3f:13:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjQwNTA1MDMzMjU5WhcNMjQwNTEyMDMzMjU5WjAYMRYwFAYD VQQDEw02NjM2ZmRlYi05M2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ig/ppf9vnoGIVZTel3dEsAOIKSZW1f4vB8OWPe+gmpTCbd/dUORPbi5F6XT Go2oHpNgFldlgRDbMGrSKqLjJZr48PUZP6ymITyEqMA0njI9+I8iPypgbqfGM69B 7KKzTGbnUfrILbewqs2gxXGaAiPCzS4T5594ZsgntZ8OihMAhag2Joz+Kq0kr08t A3yZN5hBMMIITU0wgmUu0GMefZuC3fTxodj3SBwXfQAbd0I6WaxEto8LFfAm1nUs LuQlTZq9oiWPr9J1c0qEq6u2H37bv37WezuFvjOUAWmXEeHr47G9wdLwGZJFbVba yE8BBg8m0j9duLMC4HwnpgJr2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN780KSK fhq/8XwIrxAhDp+R7libMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAxRS9DNUM2RjA1RTlFQTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNw OW50WHJYMmRYd2VSV3VuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXoLvl9waaLJSFrUq12GFRBMDMM+gphjiUVIFP06jgQ8TNHHFzWzDR 9CUAlQcqlGB/4yBNitng+KzElt7fNf+KmdZToUXVqH7aMiQwXgdY8escazCuUJlZ tNA7257V/fAEfE+8+O36WpR49d+REtQkx9MGZJGTJ/P3KgaPyroHuTUC45xNPIFP AePYPDmhbpmdsRlBDq4nTR8QpVarf4SwfwjHq7N6peu3HzLCvu/7u0jVA76I0Hd/ dYV6/XhIQel3toV0PWQOwyLWQrV1jJLAklC01cEW7UF7eGE5u2wuPXDY6n+EeBlr pHYtKj/WGjXyozy/5RRl4Po6wCYDPxPK -----END CERTIFICATE-----Generated at Sun May 5 04:34:54 2024 by rpki-client on console-fra.rpki-client.org