$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: 72bOuukyPd1J+WKpjCBIakaWr7+7JvNbomL4rIkLI6k= Subject key identifier: 95:5A:BF:00:CD:4A:78:A9:9D:33:59:7E:2B:F3:8E:46:42:4F:96:57 Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 03C5 Signing time: Sun 05 May 2024 02:33:32 +0000 Manifest this update: Sun 05 May 2024 02:33:31 +0000 Manifest next update: Sun 12 May 2024 02:33:31 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: /uJetPSEoF/R7mdzjxyEypCdBOATSdOVhK1DehNhAr4=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: +h5qtjB2rh3OTWAt/hrIJ/YPW42+7Eiqyx8b24ZG7ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: May 5 02:33:31 2024 GMT Not After : May 12 02:33:31 2024 GMT Subject: CN=6636effb-9c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1f:51:81:c6:f2:5c:d7:72:68:e1:92:c2:c1: e8:42:9a:5b:59:e2:22:1b:38:f5:fe:fa:bb:6c:84: 61:ff:d7:83:37:75:00:ab:fb:55:59:ec:6d:5f:d3: 57:47:84:d5:a2:1b:1a:f2:5c:5e:31:28:e0:f7:9d: 9c:5c:83:6b:22:7e:aa:17:ab:a4:dd:b5:1d:a2:fb: 73:dd:75:47:2e:c6:f1:8c:53:5a:b4:3f:df:05:72: 31:c4:73:fa:1b:81:04:62:ec:a6:d6:7f:c7:b3:6a: 58:dd:28:12:de:35:85:53:69:6c:7e:e4:75:93:57: b9:b6:56:46:f9:1a:62:31:b7:1c:ec:96:9f:e0:b0: e1:e8:c6:4e:b7:f3:45:99:3a:54:b2:20:7f:a8:c8: 0d:ae:c5:7b:41:dd:07:57:ca:49:b2:5c:4b:5e:84: fe:58:b9:f6:4b:7a:ee:71:39:7e:4e:fd:26:0c:9f: 4e:b7:6a:32:e6:61:6b:2b:b5:c3:db:18:81:e8:83: af:96:a7:5d:93:8f:91:b7:23:6a:70:81:fc:f5:2d: 4f:54:25:9f:79:28:fe:a3:5a:72:fe:50:70:42:ab: 64:ff:0a:0c:62:ed:9e:9d:e1:b6:86:f0:12:ff:9e: ed:7d:1a:65:02:ea:6b:91:aa:04:1c:0d:a7:35:7d: 2c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:5A:BF:00:CD:4A:78:A9:9D:33:59:7E:2B:F3:8E:46:42:4F:96:57 X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ea:f6:54:57:65:31:65:61:3c:ca:f4:9e:76:ef:5d:92:20: 2f:02:4a:f5:8d:dd:ab:8e:1b:df:49:01:18:9a:1d:7b:82:41: 2d:d6:cf:bf:ab:1d:87:c1:3b:2b:4a:46:76:57:42:8d:60:4a: 0a:22:f7:55:a8:25:3c:9e:91:28:4f:d2:4a:49:5b:d4:ed:73: 0d:87:f7:dc:75:a8:f3:a4:54:15:29:4a:79:c6:00:b6:2b:e3: a1:b2:9a:c2:15:ed:50:71:78:e3:2b:5e:7c:37:e9:1a:19:83: 9f:8c:e6:da:9c:00:1f:58:7e:c6:e3:fb:06:f4:ee:1a:29:64: a8:cf:f8:44:22:5f:ed:4d:ef:76:7e:79:07:5d:98:24:71:da: a2:4d:98:2d:fb:3e:ba:ad:39:62:ac:43:c7:a3:d7:af:9e:90: bf:65:e3:d8:98:03:6e:e8:d6:60:d2:d5:50:6c:93:80:91:17: e2:58:57:70:63:a6:f4:50:44:b0:d2:0a:82:b0:e2:78:f3:9b: 9c:91:d0:b0:1c:60:ef:a0:f0:68:39:d7:0c:95:47:33:93:04: 95:00:f2:a1:21:79:14:d8:3b:ff:2e:8e:ec:30:be:36:0b:13: 3a:93:47:0d:4f:1a:47:bf:2d:c0:46:6b:e6:02:37:fd:e0:3d: 4a:ce:b6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjQwNTA1MDIzMzMxWhcNMjQwNTEyMDIzMzMxWjAYMRYwFAYD VQQDEw02NjM2ZWZmYi05YzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh9RgcbyXNdyaOGSwsHoQppbWeIiGzj1/vq7bIRh/9eDN3UAq/tVWextX9NX R4TVohsa8lxeMSjg952cXINrIn6qF6uk3bUdovtz3XVHLsbxjFNatD/fBXIxxHP6 G4EEYuym1n/Hs2pY3SgS3jWFU2lsfuR1k1e5tlZG+RpiMbcc7Jaf4LDh6MZOt/NF mTpUsiB/qMgNrsV7Qd0HV8pJslxLXoT+WLn2S3rucTl+Tv0mDJ9Ot2oy5mFrK7XD 2xiB6IOvlqddk4+RtyNqcIH89S1PVCWfeSj+o1py/lBwQqtk/woMYu2eneG2hvAS /57tfRplAuprkaoEHA2nNX0s9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVavwDN SnipnTNZfivzjkZCT5ZXMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq6vZUV2UxZWE8yvSedu9dkiAvAkr1jd2rjhvfSQEYmh17gkEt1s+/ qx2HwTsrSkZ2V0KNYEoKIvdVqCU8npEoT9JKSVvU7XMNh/fcdajzpFQVKUp5xgC2 K+OhsprCFe1QcXjjK158N+kaGYOfjObanAAfWH7G4/sG9O4aKWSoz/hEIl/tTe92 fnkHXZgkcdqiTZgt+z66rTlirEPHo9evnpC/ZePYmANu6NZg0tVQbJOAkRfiWFdw Y6b0UESw0gqCsOJ485uckdCwHGDvoPBoOdcMlUczkwSVAPKhIXkU2Dv/Lo7sML42 CxM6k0cNTxpHvy3ARmvmAjf94D1KzrbY -----END CERTIFICATE-----Generated at Sun May 5 03:09:56 2024 by rpki-client on console-ams.rpki-client.org