$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: 5S6OefcsO2FIiFpuA2+1NIRPoDmSoDmVvBHkNp8zP9I= Subject key identifier: F2:21:27:7F:21:BF:14:97:AC:90:6A:29:58:54:DC:43:35:01:C1:DE Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 3560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 342D Signing time: Wed 20 Sep 2023 14:51:20 +0000 Manifest this update: Wed 20 Sep 2023 14:51:20 +0000 Manifest next update: Wed 27 Sep 2023 14:51:20 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: Qyfv9xyD1O4ZWJu8yvAz/ACTNLxNq+238CiUrMVW2Dw=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: KkfOtuDBJG2pDkXZx5bb2tWCvb4gNQMGo0l3qNnl6lk=) 3: 35575C68844811EAB301615FC4F9AE02.roa (hash: m8kXjeLN2R4/2SpX25kuPJ+bB6wnSS+WiVF/xRgGVZo=) 4: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: vBH5UvUNESUBRATbVA62oerjKzYQikGnMvGZgZDg1/8=) 5: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: 7YzHbzAlN3P9NWeqg6oeWbPkZEfPbvGU9/a5GYdkevE=) 6: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: nPd316Ss5x2RW4d0EyGxXZD4lPTOQfNdUfeTV93VjA0=) 7: 62F1B55EDC2B11EDB096B435C4F9AE02.roa (hash: WPtrisHv3kSvRs2ts01nNBhgzxT5jUbFeJ0JCRjJ4bQ=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: 6Mar85+uke9D5/lKzQTCekP803m2mQL4RZrcdItZAFY=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: eD4gf2wH1j+GIm+Uh6cabpZMfi7M2Nnmu6uKuqqgyug=) 10: 62464AACDC2B11EDB096B435C4F9AE02.roa (hash: dRLkAXfWPgpPEr2kDMy02kNf7W0VAlKj9wS7O0vK8tg=) 11: 35E95924844811EAB301615FC4F9AE02.roa (hash: yP1z3Hi9irTNK5CturM5keuqBRZDsHOrxX8k/YUFNLg=) 12: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: e6hFjEO2OZBIG7Obl/BshRFIzaRviwBFssIA5WC19IY=) 13: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: j3/P07XCAwfjscQn398eo/DixUgrInPze7jLy5zxCT4=) 14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: wf4GLKWmlE2jjhcu9Ii67Uwx+JylUPxvTsYfwDjvTcw=) 15: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: w4A+gKv5lX7BnApjpOOZ0LTDKUy8hOsGg+JiZyf1mXo=) 16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: ghtsneQrzutRg0n66Ez3VKb8Lj+TN+2xoPOjCGixLHQ=) 17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: Y0JYD9ZSTWq6l9AGGYhH3PhgIOKUHWRvWQxJBcPkFrs=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: CDHRKu4cLpcAHVzMdyu6rQYr30jICm+qYpTVZYhgXRI=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: vUd046BIkUok6rKstTPyGg5c60qZCr4Ec61ggFuzqrw=) 20: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: EzDqJO7NPmldTiOpJ5HxQKxo+kkfjdOLtAk1lrR/fm0=) 21: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: yqIVfwysrk0uor9Z6FBr15Lpsk0JHARmh4bHj1ks068=) 22: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: o+IG2UXKGlweQdZR5ILzIAhIEc2P1LEwRPoAhH0b/jo=) 23: 53E6ACC03B3C11EE9AD03F6DC4F9AE02.roa (hash: faGszzaWLaTCikGs/18YPg+E9I+9uvfi401Vrv4g09A=) 24: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: PeyJY8cseoRCQ1T3dMpA/vd6ZQvDMb2M8X2eQTYrfQc=) 25: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: pWaT8ovfK0F0EuVoZhY8rpCAMllqNJOJ2ia5JEy/+X8=) 26: 61B7C08EDC2B11EDB096B435C4F9AE02.roa (hash: aKr3TrivLM77yZnEMfPIx5Xrtby1gkV8btGYHv7PQrw=) 27: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: XZ24Nlr9Ykfth13KN+60Y3nqanoc0REHI1pUHnxxEYg=) 28: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JE9zy8+/s6cnCi1kVlSF8eOB+0Xz0t+RmT/hBdYZQxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Sep 2023 14:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13664 (0x3560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Sep 20 14:51:20 2023 GMT Not After : Sep 27 14:51:20 2023 GMT Subject: CN=650b06e8-9afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1d:95:38:e4:c8:40:9a:36:b6:79:a0:41:11: d6:4a:f2:cd:2d:ff:88:9d:78:bc:ad:cf:7a:13:69: 4b:93:db:f7:65:e2:fc:79:80:2a:9f:00:1e:9e:7e: af:d9:48:27:ff:15:1d:09:1f:cb:76:b3:69:b3:f0: cb:2c:48:0f:e7:f1:8e:6d:70:02:6f:53:34:ef:85: e4:a5:3a:9a:c3:2c:99:87:ae:8e:2c:89:be:94:f8: 6c:e2:32:7a:48:86:cd:e2:23:c5:ed:1a:c6:19:5c: c2:9d:6f:df:c8:8e:fe:6c:f7:e1:4e:be:e2:aa:6e: 83:b6:35:fb:30:7d:0e:64:62:a7:d3:98:e6:f4:70: 34:2d:5b:96:bc:9d:3f:e4:c9:eb:0a:5e:e8:a1:4d: fa:1f:81:87:0e:b8:49:cd:96:85:84:30:ba:c3:b2: 8a:78:2e:cf:1b:6b:fd:1b:e3:a8:68:1c:a4:9a:76: 0f:84:c9:c2:f0:f8:a0:b9:bd:7b:60:40:46:8e:3e: a3:c8:ad:0e:97:aa:cf:19:13:66:93:79:bd:11:06: bc:80:f3:52:55:34:43:85:86:92:6c:33:49:eb:1b: 60:59:e6:c9:3a:f2:d3:dc:d1:97:c8:b3:54:6d:88: 89:e3:c1:d3:77:2a:ec:4c:55:b8:3b:1f:ec:80:e3: 3f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:21:27:7F:21:BF:14:97:AC:90:6A:29:58:54:DC:43:35:01:C1:DE X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:8f:09:e0:62:65:8a:a8:b4:38:83:56:b8:d5:fb:f5:50:26: d3:e6:41:89:ec:0a:57:6c:52:e6:c7:d6:1f:4f:8d:a8:15:8f: 84:2e:cf:99:53:d9:72:bd:21:7c:ac:20:82:78:63:3c:ee:78: 33:71:05:b9:c7:a2:7a:5b:df:11:9f:1f:16:97:71:a6:0a:2f: 66:51:b4:6e:97:71:33:aa:25:3f:49:8d:7b:f3:89:d2:03:0c: e5:9e:39:76:dd:17:91:e1:2a:ec:4d:aa:27:34:1f:11:f0:91: 5a:24:a6:a6:c9:b4:cb:66:2c:2a:c8:cb:50:b9:87:20:c2:00: 95:0e:64:7d:d2:7b:b4:01:39:6b:c0:4b:f0:e1:9f:d2:10:db: 5f:f0:0b:a5:e2:b7:c0:57:46:ec:df:25:69:e0:a2:43:2b:72: c1:fe:bd:81:32:4f:54:ea:f1:90:d4:35:c8:8e:f8:6f:00:e7: 16:b0:b4:03:65:f7:49:9b:a4:d8:44:0f:1b:5b:4a:ec:cc:bc: b2:fb:79:be:bc:fe:dc:b9:31:1f:e0:d2:95:88:88:fd:4c:59: 46:28:d0:41:ed:d0:3b:43:6f:63:9d:16:72:08:f8:6d:33:29: 60:97:53:ed:b7:74:e3:32:a2:f1:f9:7f:3a:45:a9:35:87:47: 78:88:af:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjMwOTIwMTQ1MTIwWhcNMjMwOTI3MTQ1MTIwWjAYMRYwFAYD VQQDEw02NTBiMDZlOC05YWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB2VOOTIQJo2tnmgQRHWSvLNLf+InXi8rc96E2lLk9v3ZeL8eYAqnwAenn6v 2Ugn/xUdCR/LdrNps/DLLEgP5/GObXACb1M074XkpTqawyyZh66OLIm+lPhs4jJ6 SIbN4iPF7RrGGVzCnW/fyI7+bPfhTr7iqm6DtjX7MH0OZGKn05jm9HA0LVuWvJ0/ 5MnrCl7ooU36H4GHDrhJzZaFhDC6w7KKeC7PG2v9G+OoaBykmnYPhMnC8Pigub17 YEBGjj6jyK0Ol6rPGRNmk3m9EQa8gPNSVTRDhYaSbDNJ6xtgWebJOvLT3NGXyLNU bYiJ48HTdyrsTFW4Ox/sgOM/fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIhJ38h vxSXrJBqKVhU3EM1AcHeMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAjwngYmWKqLQ4g1a41fv1UCbT5kGJ7ApXbFLmx9YfT42oFY+ELs+Z U9lyvSF8rCCCeGM87ngzcQW5x6J6W98Rnx8Wl3GmCi9mUbRul3EzqiU/SY1784nS Awzlnjl23ReR4SrsTaonNB8R8JFaJKamybTLZiwqyMtQuYcgwgCVDmR90nu0ATlr wEvw4Z/SENtf8Aul4rfAV0bs3yVp4KJDK3LB/r2BMk9U6vGQ1DXIjvhvAOcWsLQD ZfdJm6TYRA8bW0rszLyy+3m+vP7cuTEf4NKViIj9TFlGKNBB7dA7Q29jnRZyCPht Mylgl1Ptt3TjMqLx+X86Rak1h0d4iK/K -----END CERTIFICATE-----Generated at Wed Sep 20 15:19:03 2023 by rpki-client on console-fra.rpki-client.org