$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: 9hxjeZ6xHCkc6V4FlCJyZuGMPLQx27NU3H8WdGqbchM= Subject key identifier: 90:92:CC:C2:2B:18:1B:EA:48:43:46:DC:C1:6E:EE:38:CF:F3:F5:32 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 34A8 Signing time: Wed 24 Apr 2024 14:55:50 +0000 Manifest this update: Wed 24 Apr 2024 14:55:49 +0000 Manifest next update: Wed 01 May 2024 14:55:49 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: Ja38iSORDxtLFiLR4/fN43ua6BaCuQyaWOoeP77rgPA=) 2: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: 47XFa+/O+1qqR8kJkOYUWNPtX/jddJ4oiNfmWLvRACU=) 3: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: LBNk1tfUJampIMab/HBL4IKi/kl38X1uItIjEED/pcI=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: scAkB2YxvmpKM0vTyAyFR4YKIa6v02k7HMa7T8PXuMU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: Yr03PVq8IWmvSQd8YplMKtRPvK8aE0RE5eBXhq1JqoE=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: 8qJxtIluB8sM+LZnkacpelPmvOz8hP9HI8PWhXk1wS0=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: 1uChfw6a7c78Tsk47WiN/3OWObxxNLMM+Pvz7qduz8c=) 8: 62F1B55EDC2B11EDB096B435C4F9AE02.roa (hash: GqOiWg5pPVhf3X3hTvW8lyS/vBT54lvlTVmRhdPhZpo=) 9: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: l6UBTddYJHs1/LWO/G11IXkxeJJ3Aag62DZxhCm7A54=) 10: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: 7uSEP+EaGOL6jhiRrZZDidMEE4Q6ZMSCeR2XEgAzR3g=) 11: 62464AACDC2B11EDB096B435C4F9AE02.roa (hash: Dnz30DAJVZekOhvq+//5DuLg0jOYzT0DGqPm+r3BNP0=) 12: 35E95924844811EAB301615FC4F9AE02.roa (hash: QffUMTUeuvtyF27iQo20k15LFogH2o21+do3RK9SDkw=) 13: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: 31E/ZBgEZp5hDhd3GcEv5U1+3VGXi8jHHKHblZde33E=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: hJAxgmR4Z+emMMwOy/r6GbMsFRX/U1CaozsenKNvc0Y=) 15: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: 8b2oWDeo2NAVLwOXE4IA/dxtMM6fmKBuLK7hAntrx5c=) 16: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Kkanqfb0HHYlyfEyvZ64WJPtstPkb2JUboKtDpUj3Vw=) 17: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: I2+kj9ESr7gvLOHQDl/+DMksQTAQFnymnLrvUXSFx3Q=) 18: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: r7v3xSqKRg362nT6+bK/58sR5Z8YroSxwlVV2Uh5tfU=) 19: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: Krb9ZcAkVTReFzizLQ3T9UA+S18Hy0Vo8CDdBjRYIGM=) 20: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: twh6qhZSVHLqsqE4ZeRMAhfEc2FEKfo/QNtTa8WFc90=) 21: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: hbcyS6DwPCtBqKVBG5WmrWNdNFB962BI6jMzmVkyHyk=) 22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: NKaWR27X7N0yTdapOCDpWGOjKNUWONO9ba73Q3IbiMc=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: K0Np4Cl29ZUrHLxi4sReARlc3kr6lRG2EbDfgQGX3/A=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: pSsD3QiCjiwXaKzOdTSfuSM5BCqQA6q1WIOuV0AxvXw=) 25: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: /5ry63GzDrxpI6Kkb9gHRk8/jvRviawvIpgBTnsdspg=) 26: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: Svh+zqulap5hyqgsKeuAwzqAl3vJyRUhZqeALz03n0w=) 27: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: ITrdVs65XiKT5eY7TYbNYiODzMY+u/b74/g0UqMYEiM=) 28: 61B7C08EDC2B11EDB096B435C4F9AE02.roa (hash: DqzkLxKVvK4huIuJVgp9owytPLWfNX9jgYBJjFmMTrs=) 29: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: T8DpA+KoY5SlE2bbdf8haxYxrxa9m5STIimA7EMRnII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 14:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13822 (0x35fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 24 14:55:49 2024 GMT Not After : May 1 14:55:49 2024 GMT Subject: CN=66291d75-0881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4d:93:d2:59:0d:a6:a0:67:a0:06:28:da:a9: 26:6c:85:bf:26:89:99:46:6f:1e:e4:86:c0:da:ce: 59:e2:7d:59:9e:fa:3f:f2:8d:79:f1:9a:56:a8:cf: d1:a5:90:11:36:a8:ed:40:78:96:6f:39:16:bf:46: 75:6c:af:4f:bd:b4:6b:2a:3c:37:d9:d0:d0:cf:fd: fe:3b:82:bc:2a:76:f7:03:f8:59:ec:15:b4:4d:18: a2:ef:70:bd:ae:94:9d:46:07:f7:cb:72:d4:69:e7: bc:d2:06:10:84:09:f5:c2:61:9a:19:8c:0c:1b:0d: d8:5e:de:fa:07:af:e1:5b:3e:54:eb:7d:8e:fb:6e: 5f:e0:af:36:5d:6c:b4:21:20:a6:a8:0c:e3:c0:6a: 28:31:a9:fd:42:d3:04:97:9d:81:91:97:87:81:93: 6d:57:26:a7:bd:85:50:c4:f2:48:c7:d9:bc:fd:e2: d4:ef:e3:9f:a1:b7:d0:c6:cb:56:8a:f7:96:d4:cd: af:d3:6c:8d:e0:c4:01:4d:5d:08:f2:8e:3a:b9:d5: 1f:dd:58:8e:fa:78:54:2b:3b:9d:d3:ad:fb:33:d6: 9f:83:9c:31:f7:0b:49:56:67:37:cf:e1:ec:f2:88: a0:86:80:21:fa:a8:6b:fa:27:b7:4e:b0:17:14:3e: 20:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:92:CC:C2:2B:18:1B:EA:48:43:46:DC:C1:6E:EE:38:CF:F3:F5:32 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cf:17:16:aa:b9:9e:8e:b4:86:a6:e9:36:f2:d5:6a:c4:95: 90:01:e0:19:11:dd:90:5d:3d:a5:48:92:81:b1:69:89:6d:ec: 85:ec:2a:3a:2d:0e:23:78:b0:d6:80:c8:17:57:7e:40:f6:fa: 55:dc:18:9e:0f:d0:62:47:c0:10:ce:6f:4e:94:7b:e5:1c:66: 5b:bd:6c:3f:fd:f8:33:a5:fd:1b:af:a3:c7:6e:cd:35:68:45: 22:42:46:d0:8f:1e:ea:79:66:75:96:f0:51:c1:e8:62:96:21: 14:c9:83:49:a9:92:97:1c:97:54:9b:f1:6f:88:92:92:38:16: 3a:7a:ae:09:ad:26:bd:2a:1c:a7:69:93:3c:42:e4:2b:05:72: f9:d9:22:bf:61:83:3f:8a:03:a2:eb:70:13:87:dc:d8:24:9d: bc:6a:29:bc:e2:c7:d0:c0:98:28:94:a6:fa:c5:0e:81:40:7e: 42:17:b7:83:7d:1e:c0:a3:58:5d:5e:94:c3:80:cd:74:43:91: f5:a9:56:5e:6d:30:b0:7f:fc:e0:73:92:f8:b1:a6:8c:80:6c: b9:d0:5f:5e:2e:29:eb:77:46:a9:20:f4:f9:cd:72:61:ff:6a: 62:c8:3d:54:82:37:1a:25:09:ce:ff:c3:14:98:11:40:ba:b4: 87:36:e3:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDI0MTQ1NTQ5WhcNMjQwNTAxMTQ1NTQ5WjAYMRYwFAYD VQQDEw02NjI5MWQ3NS0wODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2E2T0lkNpqBnoAYo2qkmbIW/JomZRm8e5IbA2s5Z4n1Znvo/8o158ZpWqM/R pZARNqjtQHiWbzkWv0Z1bK9PvbRrKjw32dDQz/3+O4K8Knb3A/hZ7BW0TRii73C9 rpSdRgf3y3LUaee80gYQhAn1wmGaGYwMGw3YXt76B6/hWz5U632O+25f4K82XWy0 ISCmqAzjwGooMan9QtMEl52BkZeHgZNtVyanvYVQxPJIx9m8/eLU7+OfobfQxstW iveW1M2v02yN4MQBTV0I8o46udUf3ViO+nhUKzud0637M9afg5wx9wtJVmc3z+Hs 8oighoAh+qhr+ie3TrAXFD4g3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCSzMIr GBvqSENG3MFu7jjP8/UyMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9zxcWqrmejrSGpuk28tVqxJWQAeAZEd2QXT2lSJKBsWmJbeyF7Co6 LQ4jeLDWgMgXV35A9vpV3BieD9BiR8AQzm9OlHvlHGZbvWw//fgzpf0br6PHbs01 aEUiQkbQjx7qeWZ1lvBRwehiliEUyYNJqZKXHJdUm/FviJKSOBY6eq4JrSa9Khyn aZM8QuQrBXL52SK/YYM/igOi63ATh9zYJJ28aim84sfQwJgolKb6xQ6BQH5CF7eD fR7Ao1hdXpTDgM10Q5H1qVZebTCwf/zgc5L4saaMgGy50F9eLinrd0apIPT5zXJh /2piyD1UgjcaJQnO/8MUmBFAurSHNuNg -----END CERTIFICATE-----Generated at Wed Apr 24 16:36:12 2024 by rpki-client on console-fra.rpki-client.org