$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: aVAGiQhly7e4Ud5XSkpgn2RSD0f1KfhrcoIEdrhAJsk= Subject key identifier: 2B:00:2D:3A:6F:1B:69:D4:BD:52:8A:F4:2D:58:B8:D4:D9:96:43:8D Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 01A2 Signing time: Wed 01 May 2024 04:57:18 +0000 Manifest this update: Wed 01 May 2024 04:57:18 +0000 Manifest next update: Wed 08 May 2024 04:57:18 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: kMBaU+yaPGBBkqJiYPNVPT4h9xac18nYKhO+Tt633uY=) 2: C54D0330AA4211EE9EF2DA5CC4F9AE02.roa (hash: pPNr2vP938YFjWaE0p7iyrMUE/RcTz0DWkVXQ5BT9KU=) 3: B19EF9D8AA4211EE844BD455C4F9AE02.roa (hash: 1jHSuX078XHq1fu4zlmcM4VBSWXhCHJT4qlwEPLPstg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: May 1 04:57:18 2024 GMT Not After : May 8 04:57:18 2024 GMT Subject: CN=6631cbae-a866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0e:46:d5:ca:13:25:52:c5:4a:37:83:01:dc: 65:80:93:cd:74:1b:98:31:12:f3:3c:27:17:dc:19: 48:83:8c:7a:b6:dc:69:44:92:53:cf:13:cd:b5:d6: a3:89:38:06:ba:59:21:67:69:a4:8a:c2:fe:a5:84: 86:77:bb:61:06:c6:16:2c:26:b5:58:ff:9d:23:7f: 7a:e5:fe:77:ef:2c:8b:3f:b0:8e:3a:54:fd:27:84: 65:a0:30:37:26:b3:71:de:f4:5b:cc:48:4a:62:08: e7:f1:64:dd:1b:cb:ac:e7:cb:f4:f8:e9:4e:ce:14: 7b:68:3c:c7:79:5b:89:3c:b5:fd:6f:3f:62:63:93: 05:36:71:6c:81:e3:ca:74:4d:c1:37:f2:d2:f3:78: 50:24:7d:c5:23:e8:5e:d4:7d:85:e6:5d:fa:60:2d: 79:57:ec:26:64:d6:d5:70:45:f3:84:0c:81:e1:b7: 05:e1:a9:75:75:02:72:72:33:56:14:7c:1b:5a:b2: e9:46:c3:e1:90:7a:bd:7e:02:68:6a:81:a1:49:99: fe:66:bc:0c:e2:70:69:5b:f6:34:ba:22:df:8e:8b: 84:1a:a3:67:4e:a5:1f:f1:5b:93:33:4f:b8:d7:77: 93:8e:24:6d:90:ce:5a:65:71:2f:c1:7e:d1:d6:c3: 87:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:00:2D:3A:6F:1B:69:D4:BD:52:8A:F4:2D:58:B8:D4:D9:96:43:8D X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:16:29:9e:9d:9f:07:fc:0f:09:52:8e:1d:85:21:3a:4a:b3: bf:aa:50:c6:9c:11:44:ab:68:c3:a4:34:ec:ac:c5:4a:b6:6d: 71:2a:ba:91:9d:04:82:a2:ab:15:0c:5f:05:29:39:6c:c9:7a: 65:48:34:59:f6:eb:92:c6:af:55:04:c0:91:c2:eb:04:c0:93: a1:bd:c2:4a:2a:03:4e:a1:07:02:d6:d6:89:26:27:ae:ce:b3: 86:a1:a0:e5:ff:57:1d:b0:7d:27:97:e0:84:1d:92:46:be:0d: 62:27:3a:ce:b2:50:9a:9c:1d:57:4d:af:c6:16:79:4f:a7:f2: 03:3a:a4:93:ff:fa:7e:90:ac:9b:3b:1f:60:bb:ff:60:bc:77: 18:01:42:bc:51:8f:f6:46:b4:df:db:bb:7b:58:08:1c:d4:6b: f2:c7:c4:a3:6f:32:2d:be:7c:41:5a:12:d1:cc:81:56:f0:59: 37:2b:f3:4f:6a:d7:26:69:0a:fe:66:40:ed:60:e5:23:6f:a1: 12:32:fc:a9:d0:30:96:00:78:0c:48:22:f3:11:ec:ce:27:97: 87:11:0a:05:df:c2:5f:0f:b8:89:47:6a:ff:6e:85:eb:9a:b8: ba:b3:99:21:17:85:6f:5c:26:85:4a:b7:62:ac:f2:d5:12:8c: 07:61:af:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjQwNTAxMDQ1NzE4WhcNMjQwNTA4MDQ1NzE4WjAYMRYwFAYD VQQDEw02NjMxY2JhZS1hODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtg5G1coTJVLFSjeDAdxlgJPNdBuYMRLzPCcX3BlIg4x6ttxpRJJTzxPNtdaj iTgGulkhZ2mkisL+pYSGd7thBsYWLCa1WP+dI3965f537yyLP7COOlT9J4RloDA3 JrNx3vRbzEhKYgjn8WTdG8us58v0+OlOzhR7aDzHeVuJPLX9bz9iY5MFNnFsgePK dE3BN/LS83hQJH3FI+he1H2F5l36YC15V+wmZNbVcEXzhAyB4bcF4al1dQJycjNW FHwbWrLpRsPhkHq9fgJoaoGhSZn+ZrwM4nBpW/Y0uiLfjouEGqNnTqUf8VuTM0+4 13eTjiRtkM5aZXEvwX7R1sOHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsALTpv G2nUvVKK9C1YuNTZlkONMB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+FimenZ8H/A8JUo4dhSE6SrO/qlDGnBFEq2jDpDTsrMVKtm1xKrqR nQSCoqsVDF8FKTlsyXplSDRZ9uuSxq9VBMCRwusEwJOhvcJKKgNOoQcC1taJJieu zrOGoaDl/1cdsH0nl+CEHZJGvg1iJzrOslCanB1XTa/GFnlPp/IDOqST//p+kKyb Ox9gu/9gvHcYAUK8UY/2RrTf27t7WAgc1Gvyx8SjbzItvnxBWhLRzIFW8Fk3K/NP atcmaQr+ZkDtYOUjb6ESMvyp0DCWAHgMSCLzEezOJ5eHEQoF38JfD7iJR2r/boXr mri6s5khF4VvXCaFSrdirPLVEowHYa9i -----END CERTIFICATE-----Generated at Wed May 1 05:55:43 2024 by rpki-client on console-ams.rpki-client.org