$ rpki-client -vvf rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft File: nhuiMnN6PQDX-qC03Dg02arwbfg.mft (raw, json) Hash identifier: iJLsKaZIPg1DfQhf2PyfYMx1UzIw9oFdZW4iqHTS8v8= Subject key identifier: C8:FA:C5:19:14:75:EE:35:E4:53:7F:80:3D:1F:4C:32:09:22:E0:87 Authority key identifier: 9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 Certificate issuer: /CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft Manifest number: 0589 Signing time: Mon 29 Apr 2024 00:27:43 +0000 Manifest this update: Mon 29 Apr 2024 00:27:42 +0000 Manifest next update: Mon 06 May 2024 00:27:42 +0000 Files and hashes: 1: nhuiMnN6PQDX-qC03Dg02arwbfg.crl (hash: 5Oc2we2Zvh9Zpjdmxb0dTwFxPO+Hrn0Mi411uybiEDs=) 2: DB883A6E87B511EB91F5691BC4F9AE02.roa (hash: yMkTs1r7zVQCm9Jz8qG1gmsVLTSy0IiX+D6XXQj1kow=) 3: DC0002F687B511EB91F5691BC4F9AE02.roa (hash: X1i23Z6zIN1QjKHMpkGVIlFh6TDoQy5GQPkT3+kLZYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Validity Not Before: Apr 29 00:27:42 2024 GMT Not After : May 6 00:27:42 2024 GMT Subject: CN=662ee97f-36f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:ae:e9:be:a2:3a:a0:1d:c9:2c:5e:3b:24: 08:1e:ee:d0:55:8b:e6:a5:a8:b4:63:2a:cf:f6:d2: 43:61:af:8c:5e:51:dc:f6:15:b6:2e:c4:cb:da:48: 6a:62:29:c3:e1:67:80:5b:bb:fc:9b:0e:2c:f6:9b: 0e:33:6e:16:6f:d2:32:86:2a:4b:d1:6c:66:82:3a: b2:8d:7b:48:e9:7f:98:12:91:c1:87:69:06:2b:55: dc:54:11:d5:4b:11:c9:ee:59:ba:25:1d:48:3d:0f: ea:ad:3c:00:d1:06:40:2f:e3:34:a8:30:ae:01:d6: 2a:66:b4:02:ce:62:38:ac:df:e9:f2:25:b1:75:1f: e5:1a:48:96:02:00:84:da:37:bb:a9:b0:30:1c:56: 5a:b6:b9:f2:b0:6a:1d:56:9d:b8:41:56:9e:2f:21: 54:f1:6b:23:a9:d5:bd:4e:d0:20:fc:36:4f:aa:4f: e2:9c:e6:bc:64:d5:26:ee:81:aa:e3:43:f0:d8:d3: 45:d6:72:29:cc:e4:25:a9:b7:5b:2a:d2:24:06:7b: 36:4f:c0:69:7e:34:8b:70:2b:ba:2f:24:87:b8:22: 2e:4c:78:56:e6:55:80:00:1c:6c:d3:5a:5d:4a:67: a9:ad:37:82:69:ff:60:38:85:58:1c:83:10:75:d6: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FA:C5:19:14:75:EE:35:E4:53:7F:80:3D:1F:4C:32:09:22:E0:87 X509v3 Authority Key Identifier: keyid:9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:64:ab:9a:74:22:23:35:b8:8a:fd:a0:26:1d:46:b5:a4:cd: 9e:53:02:25:ac:95:8e:21:e2:4c:b8:2d:9f:44:fc:dc:47:d4: 24:d7:2a:bd:6a:31:da:99:07:23:64:b1:fb:8b:c4:44:8c:a8: 44:30:8c:ca:d3:a8:bb:0c:e6:df:3a:05:06:27:b7:15:d7:6a: c6:00:86:a6:00:81:4b:b1:d8:69:24:15:66:6c:9f:0b:65:07: f4:c7:ce:2b:e1:9d:db:25:3a:e2:f6:a8:e8:d8:4e:ad:98:d4: ab:1a:f4:70:c1:ef:a3:89:18:02:31:2c:97:57:6f:1d:eb:6c: f4:bf:e7:48:ab:73:a8:f1:ae:18:fd:e6:a6:65:ac:aa:f8:0e: 2b:6e:a3:27:87:9c:bd:99:2c:f6:c7:6c:cc:65:98:12:7b:dc: cd:98:57:f1:f9:07:07:3e:d7:e0:ad:43:07:9f:06:eb:7b:f2: d0:3e:22:1a:b2:c4:0b:f3:29:b7:f1:a3:df:df:3c:93:33:7f: d6:64:db:ba:b6:47:8b:f5:5e:e8:5a:16:2b:cc:ae:38:11:4f: 5e:00:16:94:fe:d8:d9:4f:e5:7a:71:2c:7a:44:0a:05:e9:2c: 32:e6:c5:97:55:88:eb:49:e6:81:8d:59:2f:b0:62:e3:5f:a1: 32:ba:f5:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzgyOTcxMTAvBgNVBAUTKDlFMUJBMjMyNzM3QTNEMDBEN0ZBQTBCNERDMzgzNEQ5 QUFGMDZERjgwHhcNMjQwNDI5MDAyNzQyWhcNMjQwNTA2MDAyNzQyWjAYMRYwFAYD VQQDEw02NjJlZTk3Zi0zNmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlKu6b6iOqAdySxeOyQIHu7QVYvmpai0YyrP9tJDYa+MXlHc9hW2LsTL2khq YinD4WeAW7v8mw4s9psOM24Wb9IyhipL0WxmgjqyjXtI6X+YEpHBh2kGK1XcVBHV SxHJ7lm6JR1IPQ/qrTwA0QZAL+M0qDCuAdYqZrQCzmI4rN/p8iWxdR/lGkiWAgCE 2je7qbAwHFZatrnysGodVp24QVaeLyFU8WsjqdW9TtAg/DZPqk/inOa8ZNUm7oGq 40Pw2NNF1nIpzOQlqbdbKtIkBns2T8BpfjSLcCu6LySHuCIuTHhW5lWAABxs01pd SmeprTeCaf9gOIVYHIMQddZRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj6xRkU de415FN/gD0fTDIJIuCHMB8GA1UdIwQYMBaAFJ4bojJzej0A1/qgtNw4NNmq8G34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODI5Ny80QjFGNzQ4NDg3 QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBRRFgtcUMwM0RnMDJhcndi ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odWlNbk42UFFEWC1xQzAzRGcwMmFyd2JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODI5Ny80QjFGNzQ4NDg3QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBR RFgtcUMwM0RnMDJhcndiZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxZKuadCIjNbiK/aAmHUa1pM2eUwIlrJWOIeJMuC2fRPzcR9Qk1yq9 ajHamQcjZLH7i8REjKhEMIzK06i7DObfOgUGJ7cV12rGAIamAIFLsdhpJBVmbJ8L ZQf0x84r4Z3bJTri9qjo2E6tmNSrGvRwwe+jiRgCMSyXV28d62z0v+dIq3Oo8a4Y /eamZayq+A4rbqMnh5y9mSz2x2zMZZgSe9zNmFfx+QcHPtfgrUMHnwbre/LQPiIa ssQL8ym38aPf3zyTM3/WZNu6tkeL9V7oWhYrzK44EU9eABaU/tjZT+V6cSx6RAoF 6Swy5sWXVYjrSeaBjVkvsGLjX6EyuvU5 -----END CERTIFICATE-----Generated at Mon Apr 29 03:34:59 2024 by rpki-client on console-fra.rpki-client.org