$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: RcwEnP0Vd2EsVjURbhdwGr6d0YmwoGAU1h1NHB3dA6Y= Subject key identifier: B3:06:1E:F8:2B:45:A9:D5:0F:9C:34:41:B6:25:23:CE:E3:35:02:04 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 10B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0F57 Signing time: Wed 20 Nov 2024 17:39:52 +0000 Manifest this update: Wed 20 Nov 2024 17:39:52 +0000 Manifest next update: Wed 27 Nov 2024 17:39:52 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: IR0j2uSPhOIP4q7wpWDYnZcbE06vd6ie4BGnrvM5UAg=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: ED397A542A1211EFBF48A87FC4F9AE02.roa (hash: tNirD4O5n/APlr4VXtRqMXUQrZa9HBGyAXXcJdhkx8g=) 4: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 5: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 6: EE0AC1B82A1211EFBF48A87FC4F9AE02.roa (hash: rO7clzQPDfrbQiofxJnNNd8hLM/5/riPsot/0I2BTXI=) 7: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 8: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 9: 76963436A9FF11ECB6C3AB15C4F9AE02.roa (hash: WYh5jKFsNnvFwf1lrj6edQJiVxSbecy7vR6NrQJbqDM=) 10: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 11: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 12: 721709C63F6711EF879C2E11C4F9AE02.roa (hash: 4+7i8uhqmJcz0PVrJF2uPtR5QXEiHBewcipuHNR3zFs=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 14: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4275 (0x10b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Nov 20 17:39:52 2024 GMT Not After : Nov 27 17:39:52 2024 GMT Subject: CN=673e1ee8-761b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:47:2e:c9:ff:6f:05:4e:0a:4d:a3:fe:fc:59: 38:a7:b5:b5:1e:ef:67:dc:08:40:45:be:c3:44:75: 6a:79:eb:59:66:3e:6f:96:e7:90:e9:a0:a6:26:50: ac:2f:d8:1a:d3:2b:3c:0b:c3:a4:e7:d7:3b:80:fc: fe:24:13:b3:51:a3:05:fc:1b:04:95:59:3c:aa:6c: f6:66:12:27:da:fd:83:e7:7b:5e:5a:4b:00:32:61: 6e:d2:2b:91:ae:90:68:20:9f:66:b6:a8:f9:eb:f6: dd:c7:02:66:cf:d7:0b:1e:5f:75:10:66:8d:1f:01: 11:9f:e1:53:c3:4c:40:ac:51:78:70:a7:38:41:ea: 7d:c9:dd:c2:61:ae:3d:6a:fb:e0:dc:23:e6:3d:ad: 6b:13:4f:96:29:a7:e8:e5:32:e7:5d:a2:f1:de:39: da:74:e3:41:34:8c:f1:3b:e3:f3:46:16:6e:95:84: 8a:ff:6b:4c:85:98:45:2d:f9:53:42:7e:38:d8:ea: 52:a5:9a:25:eb:15:31:02:d2:46:eb:d5:09:1d:f8: 96:b1:99:53:20:ae:fc:dc:4d:f5:c7:77:90:44:fa: 69:7f:b8:7d:ba:a5:52:73:fe:8b:b9:55:33:a8:08: 3c:87:e4:0c:3b:6c:d8:cd:25:5b:c7:ef:46:88:3d: d9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:06:1E:F8:2B:45:A9:D5:0F:9C:34:41:B6:25:23:CE:E3:35:02:04 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a7:fa:2a:bc:6b:dc:0b:e3:6a:12:c5:84:21:5e:65:0a:7b: 2d:16:fd:9f:ed:ff:d1:41:93:4e:d9:25:11:3e:b8:cd:af:3c: ff:2d:43:15:44:03:10:04:2b:ad:a0:c6:72:56:48:e2:86:65: c1:79:18:60:96:25:f5:44:44:48:96:71:64:00:6d:12:a6:43: 98:27:2f:a3:72:a2:61:2a:23:77:95:ae:52:ca:ff:cb:89:96: c3:1e:9a:70:0a:b4:29:26:db:f9:13:33:00:7b:b7:a7:76:f9: 22:b2:17:be:bb:b7:6e:5a:20:75:44:40:60:62:32:de:63:b6: 9e:ef:21:13:82:0e:fc:89:98:d5:5c:ca:95:ed:05:f9:19:14: 1d:21:b5:24:07:f9:63:12:20:d7:37:41:06:92:dc:24:4a:f3: bf:15:df:48:56:0c:5f:04:d7:c6:ce:fe:3b:92:53:4b:7d:82: cf:a8:8f:67:ae:12:73:91:dd:bc:f7:18:ce:5c:c7:ce:a7:cd: fe:14:05:12:b8:03:17:23:e6:bf:bf:01:1e:6e:be:81:b1:24: 0f:6a:74:43:6c:05:3a:a3:c8:06:f9:2a:32:a9:77:83:b0:d1: 2a:03:6b:b8:61:f6:b8:d9:09:c1:4f:ca:56:f9:21:a3:ba:31: be:f8:6a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQxMTIwMTczOTUyWhcNMjQxMTI3MTczOTUyWjAYMRYwFAYD VQQDEw02NzNlMWVlOC03NjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0cuyf9vBU4KTaP+/Fk4p7W1Hu9n3AhARb7DRHVqeetZZj5vlueQ6aCmJlCs L9ga0ys8C8Ok59c7gPz+JBOzUaMF/BsElVk8qmz2ZhIn2v2D53teWksAMmFu0iuR rpBoIJ9mtqj56/bdxwJmz9cLHl91EGaNHwERn+FTw0xArFF4cKc4Qep9yd3CYa49 avvg3CPmPa1rE0+WKafo5TLnXaLx3jnadONBNIzxO+PzRhZulYSK/2tMhZhFLflT Qn442OpSpZol6xUxAtJG69UJHfiWsZlTIK783E31x3eQRPppf7h9uqVSc/6LuVUz qAg8h+QMO2zYzSVbx+9GiD3ZnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMGHvgr RanVD5w0QbYlI87jNQIEMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBep/oqvGvcC+NqEsWEIV5lCnstFv2f7f/RQZNO2SURPrjNrzz/LUMV RAMQBCutoMZyVkjihmXBeRhgliX1RERIlnFkAG0SpkOYJy+jcqJhKiN3la5Syv/L iZbDHppwCrQpJtv5EzMAe7endvkishe+u7duWiB1REBgYjLeY7ae7yETgg78iZjV XMqV7QX5GRQdIbUkB/ljEiDXN0EGktwkSvO/Fd9IVgxfBNfGzv47klNLfYLPqI9n rhJzkd289xjOXMfOp83+FAUSuAMXI+a/vwEebr6BsSQPanRDbAU6o8gG+SoyqXeD sNEqA2u4Yfa42QnBT8pW+SGjujG++Gox -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:01 2024 by rpki-client on console-fra.rpki-client.org