$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: fcZM/T2cdjUT5t5nbe4SfCF2CYN74EDjrs7z1e99d3k= Subject key identifier: A4:F0:10:DB:15:19:65:C9:E2:37:C6:88:11:A3:71:BE:7B:03:16:50 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0BB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0BA7 Signing time: Mon 06 May 2024 19:19:44 +0000 Manifest this update: Mon 06 May 2024 19:19:43 +0000 Manifest next update: Mon 13 May 2024 19:19:43 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: UtnNnaGqzRbEgzoZnJBBslXaxtsopMLssFfXHw78WKA=) 2: 4E130D564F7F11EDACECBE79C4F9AE02.roa (hash: UqK2nPK8MSEVMGTdyZof+rd09w9rs8SK7fnw6PoYfHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: May 6 19:19:43 2024 GMT Not After : May 13 19:19:43 2024 GMT Subject: CN=66392d4f-94db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e4:cd:c0:75:52:e0:a9:fa:d5:37:4b:1b:61: 92:1b:75:2d:bc:96:58:8f:ad:f0:08:0e:f7:a4:3c: 66:e7:8e:50:4c:0f:95:ca:f2:e5:53:e7:bb:a8:6c: ef:56:2a:2c:79:7b:0a:56:e2:ab:12:87:0e:bf:d5: 6a:72:a3:a2:c4:76:5c:9e:d1:2c:b5:1b:f2:e0:74: df:25:40:ca:9c:37:c5:be:d7:32:1a:1c:08:a6:11: d7:74:c1:8c:5a:6e:68:cf:e0:21:2b:ca:c3:3d:76: 1e:37:b6:e8:5b:63:c5:ca:09:ba:2f:35:52:8c:f5: ac:79:28:d6:fb:3d:4e:94:54:7b:ed:ff:ae:5b:cd: 0f:b8:69:00:26:8b:14:e7:70:4d:35:33:61:36:1f: 6a:25:e6:d8:15:46:1d:33:ac:b7:60:e0:a7:a4:8f: 25:78:7a:52:15:fa:45:90:6d:fb:bd:89:e6:8a:43: 22:df:6f:c5:a7:b8:a0:91:3c:2a:43:a6:18:94:15: 97:26:01:71:9f:22:76:0e:28:a9:c4:64:ea:85:76: 28:28:51:30:d4:da:83:4a:6a:ae:19:fe:6f:66:e9: 11:bc:af:1d:15:62:1c:2d:21:47:99:5b:35:69:bd: 3a:56:dd:90:db:65:6a:46:14:3f:d7:c5:44:bb:6e: 84:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F0:10:DB:15:19:65:C9:E2:37:C6:88:11:A3:71:BE:7B:03:16:50 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:92:ce:f3:48:d7:26:93:dd:99:ef:34:4e:e3:7c:6f:8d:a9: 96:b9:14:e3:7f:c8:06:d9:9c:f5:f7:01:10:8e:30:87:72:fd: f1:1e:41:85:c3:d1:ba:fc:91:8a:9b:14:1c:83:36:ab:33:bc: f1:0d:ad:05:14:62:07:6e:9c:39:d2:41:0a:0c:3f:1c:59:38: a9:6b:d3:b1:9e:5c:e7:eb:91:e2:d6:1b:3f:d7:8a:52:21:2b: a7:bc:13:94:8d:5a:b7:a0:00:18:02:a0:b2:16:f5:85:cd:9a: 9f:05:f1:46:f0:ec:fd:e9:5d:15:fb:e2:46:ed:ea:fe:92:80: 79:5f:43:c0:4f:76:fe:53:33:49:48:7e:e1:f1:bc:ba:6b:85: d1:6d:8e:ef:6c:03:03:91:67:81:a9:16:74:60:fb:01:f4:2d: 02:0b:8a:75:65:d3:22:de:8a:ea:aa:b1:0f:8b:39:26:1a:5a: ba:05:23:0a:c8:08:0b:0c:51:7d:46:c0:15:a1:f2:de:de:47: cf:1b:55:1d:8c:59:a8:28:be:7d:f1:2a:14:99:95:40:8a:96: 95:ba:37:84:75:7e:ec:b1:ab:6f:82:f2:cb:5c:66:1a:38:15: 20:03:b5:5e:4e:07:7a:fa:75:8e:1f:67:32:b1:91:5d:57:25: c2:70:f8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjQwNTA2MTkxOTQzWhcNMjQwNTEzMTkxOTQzWjAYMRYwFAYD VQQDEw02NjM5MmQ0Zi05NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eTNwHVS4Kn61TdLG2GSG3UtvJZYj63wCA73pDxm545QTA+VyvLlU+e7qGzv VioseXsKVuKrEocOv9VqcqOixHZcntEstRvy4HTfJUDKnDfFvtcyGhwIphHXdMGM Wm5oz+AhK8rDPXYeN7boW2PFygm6LzVSjPWseSjW+z1OlFR77f+uW80PuGkAJosU 53BNNTNhNh9qJebYFUYdM6y3YOCnpI8leHpSFfpFkG37vYnmikMi32/Fp7igkTwq Q6YYlBWXJgFxnyJ2DiipxGTqhXYoKFEw1NqDSmquGf5vZukRvK8dFWIcLSFHmVs1 ab06Vt2Q22VqRhQ/18VEu26EJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTwENsV GWXJ4jfGiBGjcb57AxZQMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmks7zSNcmk92Z7zRO43xvjamWuRTjf8gG2Zz19wEQjjCHcv3xHkGF w9G6/JGKmxQcgzarM7zxDa0FFGIHbpw50kEKDD8cWTipa9Oxnlzn65Hi1hs/14pS ISunvBOUjVq3oAAYAqCyFvWFzZqfBfFG8Oz96V0V++JG7er+koB5X0PAT3b+UzNJ SH7h8by6a4XRbY7vbAMDkWeBqRZ0YPsB9C0CC4p1ZdMi3orqqrEPizkmGlq6BSMK yAgLDFF9RsAVofLe3kfPG1UdjFmoKL598SoUmZVAipaVujeEdX7ssatvgvLLXGYa OBUgA7VeTgd6+nWOH2cysZFdVyXCcPip -----END CERTIFICATE-----Generated at Mon May 6 20:19:32 2024 by rpki-client on console-ams.rpki-client.org