$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: g7uoWDjQJ+HofKgSSxPS+6eXxlS05HVO74FgLgNU2/M= Subject key identifier: 36:B0:45:4E:BA:5B:61:B3:37:F6:AE:74:22:D2:C0:32:27:52:83:CC Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 03BA Signing time: Sun 05 May 2024 02:34:12 +0000 Manifest this update: Sun 05 May 2024 02:34:11 +0000 Manifest next update: Sun 12 May 2024 02:34:11 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: EH61dtY3/W6Ae3zFEco+5NZzVEXoaMOB5pm3xhhbRTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: May 5 02:34:11 2024 GMT Not After : May 12 02:34:11 2024 GMT Subject: CN=6636f024-ae0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:96:87:af:2b:32:be:a1:12:03:ea:ef:a9:6d: 7f:02:30:c3:3f:78:4b:40:3c:d3:ed:8f:33:81:51: d8:5e:d7:c6:a0:56:b9:61:c8:3e:4f:e2:3e:44:e6: 29:b2:c4:c5:de:46:ee:17:1a:dc:05:6a:c7:47:1a: d2:f9:1b:ee:5f:46:0d:52:fc:d6:6e:32:54:2b:02: 6a:53:d1:c4:25:f1:15:88:20:f6:e7:09:c2:94:1a: 33:69:5f:fc:c4:02:8e:07:8e:ba:42:34:64:f0:4f: 6d:99:a8:86:12:65:c1:41:af:03:eb:5e:c6:05:a2: 28:d7:f9:47:4d:cb:8c:f1:b5:d3:4e:1b:43:de:59: 13:3e:4c:bb:d9:b2:27:b8:bc:62:f0:43:06:42:f9: 6e:2a:49:51:e5:07:ee:de:58:8c:07:cf:6b:bf:3b: 99:4e:8e:c2:ca:10:28:e3:49:a5:b4:ba:ac:91:a0: 07:97:06:92:20:5a:ed:38:70:1a:69:61:9f:a9:97: f7:8d:fb:54:96:bb:3a:eb:5c:d1:f3:01:a0:a7:1e: 48:6d:d1:db:59:9d:7c:e5:de:07:9f:71:88:32:f5: 47:4c:d9:27:42:83:bd:dc:d3:7f:f7:3c:bd:2b:fd: d3:8e:83:7e:cc:f9:d6:cf:95:56:89:03:4c:2f:bd: b5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B0:45:4E:BA:5B:61:B3:37:F6:AE:74:22:D2:C0:32:27:52:83:CC X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f0:3f:77:74:12:bf:18:65:b2:0e:3b:d7:a9:24:52:e1:2f: 36:81:13:54:fc:1f:7c:a9:35:25:f3:fd:f6:77:58:e3:9a:6d: 0b:8e:81:de:58:cd:1f:5c:61:2a:fd:76:5b:5f:94:0c:ae:0d: 53:d9:5c:ab:f3:dd:38:cd:02:d7:10:78:d6:be:bb:47:bb:80: e1:34:01:ab:24:50:57:01:46:23:c8:dc:9b:12:6a:e3:41:78: 68:a9:88:79:60:22:4a:01:0f:0c:10:fd:90:bd:94:2e:4e:26: 03:0d:5d:2d:58:3b:4d:6a:d3:c6:a1:81:54:60:f4:f1:83:7f: 5e:ee:1a:15:48:eb:80:65:80:a2:f0:b0:6b:f6:7e:71:48:da: f7:40:3f:d1:86:83:d4:c3:8a:53:08:4c:3b:32:b1:35:c5:22: 25:f4:2a:93:7f:7c:7e:41:63:f6:f8:04:a9:11:5d:91:84:42: 25:ab:4c:ce:20:20:7c:8b:19:13:6c:7e:3b:77:c4:1d:38:d6: 45:2f:6e:a4:4a:19:a0:e4:82:90:8e:30:35:a4:43:be:2f:ac: 14:ca:74:1d:43:09:06:0f:ea:bf:d6:1b:d6:ff:d0:ab:ae:dc: 94:88:6c:8d:27:c3:f2:0c:2d:83:19:2d:b6:0c:8e:64:d2:96: 89:fe:a6:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjQwNTA1MDIzNDExWhcNMjQwNTEyMDIzNDExWjAYMRYwFAYD VQQDEw02NjM2ZjAyNC1hZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5aHrysyvqESA+rvqW1/AjDDP3hLQDzT7Y8zgVHYXtfGoFa5Ycg+T+I+ROYp ssTF3kbuFxrcBWrHRxrS+RvuX0YNUvzWbjJUKwJqU9HEJfEViCD25wnClBozaV/8 xAKOB466QjRk8E9tmaiGEmXBQa8D617GBaIo1/lHTcuM8bXTThtD3lkTPky72bIn uLxi8EMGQvluKklR5Qfu3liMB89rvzuZTo7CyhAo40mltLqskaAHlwaSIFrtOHAa aWGfqZf3jftUlrs661zR8wGgpx5IbdHbWZ185d4Hn3GIMvVHTNknQoO93NN/9zy9 K/3TjoN+zPnWz5VWiQNML721hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDawRU66 W2GzN/audCLSwDInUoPMMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG8D93dBK/GGWyDjvXqSRS4S82gRNU/B98qTUl8/32d1jjmm0LjoHe WM0fXGEq/XZbX5QMrg1T2Vyr8904zQLXEHjWvrtHu4DhNAGrJFBXAUYjyNybEmrj QXhoqYh5YCJKAQ8MEP2QvZQuTiYDDV0tWDtNatPGoYFUYPTxg39e7hoVSOuAZYCi 8LBr9n5xSNr3QD/RhoPUw4pTCEw7MrE1xSIl9CqTf3x+QWP2+ASpEV2RhEIlq0zO ICB8ixkTbH47d8QdONZFL26kShmg5IKQjjA1pEO+L6wUynQdQwkGD+q/1hvW/9Cr rtyUiGyNJ8PyDC2DGS22DI5k0paJ/qbD -----END CERTIFICATE-----Generated at Sun May 5 03:47:45 2024 by rpki-client on console-fra.rpki-client.org