$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: MKiiEI6yQ8JUwKLOF2dwuOXxrYNCPj8k1KMrd13whMg= Subject key identifier: EC:19:C1:F1:99:8B:2B:36:9B:93:1D:90:14:0A:82:85:92:03:0F:08 Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 094D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0939 Signing time: Mon 06 May 2024 21:17:25 +0000 Manifest this update: Mon 06 May 2024 21:17:25 +0000 Manifest next update: Mon 13 May 2024 21:17:25 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: Qya4rFim1SP4PPz2OmizAd8BMZ8XRqDy7+UVwnc0SD8=) 2: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: menbjtgG3OL9FP2gHIv3HpKwGpwOaKUkt24pbDLYnNA=) 3: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: bMJemH5ceUwe7SSoHueO95SQnaFhnEbPA4cUZ9QObys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2381 (0x94d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: May 6 21:17:25 2024 GMT Not After : May 13 21:17:25 2024 GMT Subject: CN=663948e5-80c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:02:4c:ce:c6:4f:fc:6c:d8:f1:8a:4c:cb: d6:f6:d6:7d:e6:ae:5f:a7:c8:24:2c:ad:cb:fa:67: de:e4:78:be:56:c8:bc:aa:d2:4a:20:84:15:51:41: 51:46:8e:45:df:20:20:88:74:f8:d4:34:17:17:d3: 66:dd:fa:c3:43:53:f5:df:2c:c3:00:ea:a5:01:3f: 6f:80:30:be:48:82:ec:21:08:a3:52:8c:60:dc:a9: 5c:f1:ca:60:7a:45:3c:21:f0:9a:ea:4c:e1:88:64: 84:6d:30:57:71:ee:92:9d:74:89:6a:3b:a3:dd:0b: 23:c6:35:73:57:8c:3c:c5:aa:33:cc:2a:ea:0c:94: 9a:c6:3c:e8:2c:59:93:8d:4b:30:2c:e7:9e:e7:50: ae:f6:76:3a:bd:2b:d6:2a:23:34:39:28:ab:4b:ec: 64:fc:d2:b1:c6:01:9f:79:0b:62:2e:34:1b:a7:b1: 29:c3:cc:c1:de:78:8b:c9:19:12:1f:14:2c:60:e5: 1a:87:59:12:e8:d3:90:94:ee:24:63:e1:38:ac:cb: 03:1f:9b:4e:c9:ab:9d:0b:4b:8d:b3:25:72:21:8a: 03:c9:20:f6:7a:4e:c2:c3:09:64:f7:89:89:f1:a2: 51:9a:5a:37:ed:bf:eb:0e:dd:1f:b3:1e:1f:5d:4c: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:19:C1:F1:99:8B:2B:36:9B:93:1D:90:14:0A:82:85:92:03:0F:08 X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b5:3a:5f:61:45:f0:ea:64:21:6a:fd:68:1e:83:6e:8d:3f: ae:51:34:10:f0:61:40:7b:49:db:b1:bc:ad:d1:19:94:9e:40: cc:2e:00:83:43:82:11:9f:2c:6d:ca:86:53:6c:0a:1a:57:c0: cd:35:eb:4d:26:f9:0d:bf:80:fd:b5:36:cd:32:b3:79:03:4f: c5:ec:9b:9c:c1:1a:c4:be:e0:90:7f:da:fd:33:09:7a:2b:18: a2:41:e9:6a:e9:74:02:f4:26:f2:13:55:b7:61:3c:8c:1c:02: bf:7e:7d:55:1c:8d:ca:2f:4f:98:dc:54:4c:1f:c0:ed:0b:4c: b5:8f:e3:4f:39:69:5e:bf:8b:4f:2c:1e:4d:aa:1d:f4:bf:ca: e8:06:db:53:e8:a8:fc:ac:f3:46:2e:80:cf:e2:69:24:d0:9d: 49:7e:c3:7a:06:0a:2e:71:a7:e7:e3:3c:78:02:3f:65:b0:a1: 37:ca:3f:3e:19:5e:08:60:93:33:71:68:6f:c2:cb:e5:77:68: 0a:e0:81:ba:d8:85:ed:0b:8b:50:60:c8:da:a2:43:9f:27:4a: 84:0a:12:13:35:80:99:af:bb:ee:ba:a0:17:7a:b0:9e:c9:80: 7c:be:df:57:61:0c:8c:40:8b:2f:cd:b6:ea:ff:07:35:f6:a7: a7:e1:45:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjQwNTA2MjExNzI1WhcNMjQwNTEzMjExNzI1WjAYMRYwFAYD VQQDEw02NjM5NDhlNS04MGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgACTM7GT/xs2PGKTMvW9tZ95q5fp8gkLK3L+mfe5Hi+Vsi8qtJKIIQVUUFR Ro5F3yAgiHT41DQXF9Nm3frDQ1P13yzDAOqlAT9vgDC+SILsIQijUoxg3Klc8cpg ekU8IfCa6kzhiGSEbTBXce6SnXSJajuj3QsjxjVzV4w8xaozzCrqDJSaxjzoLFmT jUswLOee51Cu9nY6vSvWKiM0OSirS+xk/NKxxgGfeQtiLjQbp7Epw8zB3niLyRkS HxQsYOUah1kS6NOQlO4kY+E4rMsDH5tOyaudC0uNsyVyIYoDySD2ek7Cwwlk94mJ 8aJRmlo37b/rDt0fsx4fXUzQmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwZwfGZ iys2m5MdkBQKgoWSAw8IMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXtTpfYUXw6mQhav1oHoNujT+uUTQQ8GFAe0nbsbyt0RmUnkDMLgCD Q4IRnyxtyoZTbAoaV8DNNetNJvkNv4D9tTbNMrN5A0/F7JucwRrEvuCQf9r9Mwl6 KxiiQelq6XQC9CbyE1W3YTyMHAK/fn1VHI3KL0+Y3FRMH8DtC0y1j+NPOWlev4tP LB5Nqh30v8roBttT6Kj8rPNGLoDP4mkk0J1JfsN6Bgoucafn4zx4Aj9lsKE3yj8+ GV4IYJMzcWhvwsvld2gK4IG62IXtC4tQYMjaokOfJ0qEChITNYCZr7vuuqAXerCe yYB8vt9XYQyMQIsvzbbq/wc19qen4UUl -----END CERTIFICATE-----Generated at Mon May 6 22:40:55 2024 by rpki-client on console-ams.rpki-client.org