$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: 8rqryIQKSi9MspfqUae5EHEGUEbLqE9sZQtZcUzFsaQ= Subject key identifier: B2:F6:FA:8E:85:22:1F:2D:0B:20:A0:A9:0C:EA:9A:1E:84:4E:3E:C4 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 05CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 05C6 Signing time: Tue 07 May 2024 00:10:43 +0000 Manifest this update: Tue 07 May 2024 00:10:43 +0000 Manifest next update: Tue 14 May 2024 00:10:43 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: Vpvqah5cVbBRcKbIpJblZD0clBZZoZzn6KY+f0md+ys=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: YpKPPRjvZay6AfBO/f+Z23/o4Pt74yWgYQZvoPLBwlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: May 7 00:10:43 2024 GMT Not After : May 14 00:10:43 2024 GMT Subject: CN=66397183-2ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d1:c2:11:21:7d:6c:b0:f6:53:6f:d2:12:7e: 60:fd:60:ff:d9:46:a9:7f:79:45:af:48:68:ec:a0: 5f:6b:65:7c:0b:4b:e3:02:14:c4:b1:6b:c9:f3:9c: bb:90:97:59:68:6e:ac:35:f6:fb:02:72:66:de:dc: 85:7d:af:ff:a2:25:d1:16:1b:c4:77:d1:05:41:57: d3:fc:b7:65:27:fb:c1:c6:0c:c4:c2:8f:e2:c6:17: f1:4b:7e:df:6e:5b:8a:67:04:62:b6:1c:9a:9a:c5: 18:c3:16:bd:dd:bc:14:a8:b7:a7:a3:0c:d6:8f:34: 6b:fc:d6:0a:3c:9c:b2:36:67:13:32:64:0a:7b:49: c6:85:63:31:59:79:85:96:60:79:08:70:ae:20:57: e6:fe:69:37:17:2b:2c:55:8c:8c:ff:68:65:e0:df: 41:cb:bf:f4:d4:91:a5:89:43:c3:ad:95:51:2b:f2: b1:bd:c0:e3:19:a6:6f:51:ed:60:c5:7d:01:88:3b: 54:ae:02:4f:cf:fa:60:21:2c:1c:98:16:bd:32:76: a1:59:8d:07:6c:ed:9d:80:13:bc:8f:86:81:ad:8d: 10:a0:aa:f0:77:d7:ce:0f:91:2f:39:74:ae:a0:96: c9:ed:b7:c4:b8:88:4f:c3:7d:6e:b0:57:b6:e4:fb: 04:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F6:FA:8E:85:22:1F:2D:0B:20:A0:A9:0C:EA:9A:1E:84:4E:3E:C4 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:10:09:f1:a5:80:64:df:68:7f:7d:5b:b5:9c:b6:e9:c7:56: cd:aa:35:a9:7c:3d:03:3f:0a:28:10:83:a0:cf:98:6f:37:aa: 89:02:43:ef:f0:ef:b0:5c:f1:2b:fb:39:2f:c3:64:dd:45:03: 83:1d:53:a8:91:2d:c1:ca:68:e1:8f:ca:b2:43:81:bd:bf:67: 9d:c0:09:e7:54:09:c0:5b:1d:3a:63:b8:9f:2b:17:8f:80:d5: b3:d9:9b:07:d5:63:c2:25:3a:33:be:81:2f:3b:5f:ce:5d:37: bd:04:9a:a8:82:1e:b1:2b:38:91:44:32:43:c9:56:f1:7a:8e: 32:3d:f0:5d:42:8c:a7:55:ee:e3:0e:da:c8:21:2a:28:7b:65: 33:f9:b5:6d:f3:bf:94:86:6f:fa:ca:63:7f:56:b2:e9:b9:f9: 6b:07:a1:4c:28:a3:41:d9:fd:91:3f:4c:73:7e:f5:b9:b8:2a: dc:72:82:3e:ce:6d:38:1d:84:9e:70:b9:58:6f:17:4f:50:08: 04:ba:a7:31:19:43:c2:6f:4e:18:60:09:f3:d3:64:72:9b:04: 93:8a:1f:33:5a:30:d5:01:ca:8b:c4:4d:aa:39:83:52:4b:7f: 40:af:6c:c5:58:85:2e:15:5c:ba:af:a3:ea:21:6e:2d:bf:46: c8:54:07:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjQwNTA3MDAxMDQzWhcNMjQwNTE0MDAxMDQzWjAYMRYwFAYD VQQDEw02NjM5NzE4My0yZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9HCESF9bLD2U2/SEn5g/WD/2Uapf3lFr0ho7KBfa2V8C0vjAhTEsWvJ85y7 kJdZaG6sNfb7AnJm3tyFfa//oiXRFhvEd9EFQVfT/LdlJ/vBxgzEwo/ixhfxS37f bluKZwRithyamsUYwxa93bwUqLenowzWjzRr/NYKPJyyNmcTMmQKe0nGhWMxWXmF lmB5CHCuIFfm/mk3FyssVYyM/2hl4N9By7/01JGliUPDrZVRK/KxvcDjGaZvUe1g xX0BiDtUrgJPz/pgISwcmBa9MnahWY0HbO2dgBO8j4aBrY0QoKrwd9fOD5EvOXSu oJbJ7bfEuIhPw31usFe25PsEgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL2+o6F Ih8tCyCgqQzqmh6ETj7EMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYEAnxpYBk32h/fVu1nLbpx1bNqjWpfD0DPwooEIOgz5hvN6qJAkPv 8O+wXPEr+zkvw2TdRQODHVOokS3Bymjhj8qyQ4G9v2edwAnnVAnAWx06Y7ifKxeP gNWz2ZsH1WPCJTozvoEvO1/OXTe9BJqogh6xKziRRDJDyVbxeo4yPfBdQoynVe7j DtrIISooe2Uz+bVt87+Uhm/6ymN/VrLpuflrB6FMKKNB2f2RP0xzfvW5uCrccoI+ zm04HYSecLlYbxdPUAgEuqcxGUPCb04YYAnz02RymwSTih8zWjDVAcqLxE2qOYNS S39Ar2zFWIUuFVy6r6PqIW4tv0bIVAdF -----END CERTIFICATE-----Generated at Tue May 7 00:53:17 2024 by rpki-client on console-ams.rpki-client.org