$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: NZd5b30FobQ7izBNSQzrNIiQVH9gw+N8q28FEy02fQY= Subject key identifier: 9B:01:DD:CD:5B:EF:4B:DC:05:9D:9D:F4:AF:05:CD:D2:4A:6B:EC:C7 Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: C4 Signing time: Fri 03 May 2024 06:49:55 +0000 Manifest this update: Fri 03 May 2024 06:49:55 +0000 Manifest next update: Fri 10 May 2024 06:49:55 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: fBZMSvklKIBTlmhhazHs/7g/FevwQwL5kLuEBqhHw/I=) 2: BE7ACD44FEDF11EDB4C36F29C4F9AE02.roa (hash: XvPpK73yQ7IRxyPallfmcFZ9RhrXsoC3LQs+zpaUSLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: May 3 06:49:55 2024 GMT Not After : May 10 06:49:55 2024 GMT Subject: CN=66348913-e2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:8d:2e:1c:0c:26:15:3c:45:00:1f:65:99: dd:41:41:6f:1e:21:60:4f:87:32:3d:85:d7:3c:85: 39:04:57:4b:c2:bb:cb:11:7c:96:e3:05:59:56:23: c8:27:b0:f5:b1:ab:6a:10:5d:66:44:d5:80:73:31: 74:9c:cc:4a:f8:13:69:55:00:0a:1c:c0:13:c0:5d: b4:1b:2e:7b:b2:23:c2:10:18:44:9e:1a:30:f3:c1: 2b:34:19:b1:31:f1:19:8f:a7:68:3d:03:33:fc:6f: 14:a1:de:58:d1:6d:49:f0:ac:a2:39:6a:25:5d:28: a3:0e:ff:77:13:77:3a:e9:54:ce:67:0f:6b:2a:02: 25:83:40:dc:f1:a1:58:6b:ca:b0:70:0b:df:70:14: 1f:d4:00:b1:04:2a:f5:1b:ad:97:31:44:4f:9e:6d: 57:f5:d3:cb:d6:8b:53:58:9b:78:65:f8:b3:66:70: 87:b5:d5:60:1d:cb:34:ce:08:76:31:bc:e9:39:a7: 3d:05:7b:e5:25:8d:be:21:0c:f4:da:cf:18:02:d1: 00:5a:1b:43:4b:c0:41:d7:23:e4:1d:a4:8a:c8:05: f0:98:a6:a8:c7:81:d6:c8:98:60:32:a5:ea:85:af: 48:b6:cb:2a:a2:fc:e5:66:0d:f5:0b:d6:28:59:68: 79:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:01:DD:CD:5B:EF:4B:DC:05:9D:9D:F4:AF:05:CD:D2:4A:6B:EC:C7 X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1d:c1:09:2e:8e:ea:3f:40:cd:e6:e2:37:3d:f8:b6:f7:30: 72:06:bb:6f:06:01:81:ab:21:94:f5:a4:5e:cb:6b:a6:0d:49: 30:5c:5d:2c:ad:04:f1:d0:dc:8c:ff:ce:16:89:9b:74:ac:48: b6:9c:b8:f8:30:0c:f7:e9:58:a1:97:76:fb:7a:c6:09:c4:54: 5f:a4:c4:6d:14:cc:d8:a6:cb:1d:cc:0c:91:52:c6:84:47:7f: 68:5c:6d:fc:1e:58:ca:be:78:de:20:4e:f4:17:af:5a:ae:61: cd:ec:3a:8d:3e:f7:d3:a0:ee:58:5d:31:56:8b:5d:b3:d1:9c: 0c:a2:a5:14:83:07:ad:9d:80:01:d4:65:e0:68:f1:cd:16:b9: 1f:6f:69:8c:1d:0c:13:58:48:ce:f4:03:25:f3:d5:ca:ad:37: a4:aa:11:29:aa:9e:fd:05:65:00:06:55:da:08:b4:19:4d:99: c0:47:5b:41:ad:9b:72:d2:5c:3f:2b:76:ca:2e:82:f2:4a:82: 82:9e:f5:b0:97:af:de:3f:0c:19:9a:6d:fd:fd:35:02:cf:99: d0:5b:d5:68:11:65:ca:c7:f5:e5:c9:cf:32:17:9c:46:14:f8: b0:6e:00:3c:03:5c:b4:5e:2b:36:ae:d6:14:bf:c0:ba:b9:27: 47:4f:d6:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjQwNTAzMDY0OTU1WhcNMjQwNTEwMDY0OTU1WjAYMRYwFAYD VQQDEw02NjM0ODkxMy1lMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gSNLhwMJhU8RQAfZZndQUFvHiFgT4cyPYXXPIU5BFdLwrvLEXyW4wVZViPI J7D1satqEF1mRNWAczF0nMxK+BNpVQAKHMATwF20Gy57siPCEBhEnhow88ErNBmx MfEZj6doPQMz/G8Uod5Y0W1J8KyiOWolXSijDv93E3c66VTOZw9rKgIlg0Dc8aFY a8qwcAvfcBQf1ACxBCr1G62XMURPnm1X9dPL1otTWJt4ZfizZnCHtdVgHcs0zgh2 MbzpOac9BXvlJY2+IQz02s8YAtEAWhtDS8BB1yPkHaSKyAXwmKaox4HWyJhgMqXq ha9ItssqovzlZg31C9YoWWh5eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsB3c1b 70vcBZ2d9K8FzdJKa+zHMB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXHcEJLo7qP0DN5uI3Pfi29zByBrtvBgGBqyGU9aRey2umDUkwXF0s rQTx0NyM/84WiZt0rEi2nLj4MAz36Vihl3b7esYJxFRfpMRtFMzYpssdzAyRUsaE R39oXG38HljKvnjeIE70F69armHN7DqNPvfToO5YXTFWi12z0ZwMoqUUgwetnYAB 1GXgaPHNFrkfb2mMHQwTWEjO9AMl89XKrTekqhEpqp79BWUABlXaCLQZTZnAR1tB rZty0lw/K3bKLoLySoKCnvWwl6/ePwwZmm39/TUCz5nQW9VoEWXKx/Xlyc8yF5xG FPiwbgA8A1y0Xis2rtYUv8C6uSdHT9bM -----END CERTIFICATE-----Generated at Fri May 3 09:08:50 2024 by rpki-client on console-fra.rpki-client.org