$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: PQ1E5ZT7MCT5n3PtxdHP8xIyhhSC5ePk4SlBKazQnIA= Subject key identifier: 7A:E9:77:08:DA:B9:B5:9D:A8:C2:97:26:C3:A7:AA:A2:0D:B7:7F:04 Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: E6 Signing time: Fri 03 May 2024 05:57:13 +0000 Manifest this update: Fri 03 May 2024 05:57:13 +0000 Manifest next update: Fri 10 May 2024 05:57:13 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: CEz1Ym43Kksjf5An/dqMzswwZx4v0PVnWIUf9EPWvvM=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: XONGVvjvwqUG2k0rcMxU+8QUhjI2+qT2DM4JudN4zmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: May 3 05:57:13 2024 GMT Not After : May 10 05:57:13 2024 GMT Subject: CN=66347cb9-e3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:6d:8b:96:58:d6:41:f7:1f:f0:0d:b6:a3: 4e:c5:92:ba:2c:7d:aa:bd:d4:22:f2:af:90:ed:cd: 3f:00:86:ed:e3:a2:05:8c:4c:bf:2f:67:27:75:02: c8:3c:a2:fb:33:3d:7f:95:ec:07:14:01:19:1c:19: 12:cc:17:8a:b0:ed:a3:2b:b1:80:a8:6e:c5:16:f9: c4:da:c7:de:cb:30:3d:3d:07:4a:95:d4:d1:48:19: b4:72:da:d5:b7:b0:64:1a:2e:9d:87:04:d2:63:08: d2:4a:d1:8e:48:9e:4c:ee:ed:43:e3:4f:d2:43:d2: 39:84:f6:e0:a8:61:a6:09:a2:77:7c:d8:8c:0d:f2: 8e:5f:cd:ca:ea:bd:0a:74:5d:79:bb:12:06:73:7e: 07:05:ce:b4:d2:94:74:8a:15:44:d3:69:c6:86:61: ac:79:57:42:fe:32:36:87:95:81:12:fd:02:5f:2e: 59:ad:db:14:ff:eb:e0:c7:75:3d:c8:c2:ce:27:3d: 54:fd:ed:52:bf:84:c4:de:9c:2e:af:7a:18:d1:28: 90:54:37:e7:10:f7:a5:cf:2e:c1:61:eb:e7:b5:21: d2:a7:70:7e:5a:01:57:de:df:e7:5c:d1:40:d0:c6: 5a:05:6e:a9:4a:53:78:a7:03:8b:c0:f3:7c:e3:cb: 6c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E9:77:08:DA:B9:B5:9D:A8:C2:97:26:C3:A7:AA:A2:0D:B7:7F:04 X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:fb:8a:9b:95:31:f0:05:19:2a:ed:0d:01:06:e3:8e:b2:f1: f1:10:40:a2:e7:f1:eb:8b:9c:42:af:9a:50:c3:c0:f6:30:10: 4d:3f:c4:09:f8:f4:96:16:45:ec:c4:f4:af:73:d8:2f:97:3c: d7:84:82:dc:5d:df:dd:2c:78:50:f2:9d:38:a9:81:b1:ab:2f: 0c:18:3f:9d:2a:cc:88:1d:f6:5d:45:bc:b9:66:89:36:09:5a: a9:84:69:84:f9:81:3b:fe:a1:ac:ef:b0:72:33:35:80:52:18: ba:eb:a3:e9:3e:e7:8e:e1:69:8b:6b:0b:ea:b5:a7:d1:e2:2d: 0b:5a:44:11:61:e8:22:0a:b0:ff:30:f0:f5:9c:2d:1d:31:3a: 99:f9:b0:95:d4:df:df:ea:d6:19:6a:3c:ab:07:ee:43:10:8c: 8f:83:5e:e3:8c:dd:96:9a:da:d4:8e:27:81:c3:12:f5:12:b3: 80:2f:3b:95:75:37:7b:01:54:84:e4:06:d2:18:ec:8f:0f:f3: 7d:ca:89:c2:8c:f2:cb:de:9c:72:14:6f:dc:61:a0:77:ab:b7: 2e:99:aa:fd:c3:f9:c6:ba:e9:82:04:1f:34:16:6f:4c:4a:f5: 0a:22:cf:f6:bd:74:eb:81:35:f1:66:e5:3b:f1:2d:f4:22:81: d3:2e:b5:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjQwNTAzMDU1NzEzWhcNMjQwNTEwMDU1NzEzWjAYMRYwFAYD VQQDEw02NjM0N2NiOS1lM2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE5ti5ZY1kH3H/ANtqNOxZK6LH2qvdQi8q+Q7c0/AIbt46IFjEy/L2cndQLI PKL7Mz1/lewHFAEZHBkSzBeKsO2jK7GAqG7FFvnE2sfeyzA9PQdKldTRSBm0ctrV t7BkGi6dhwTSYwjSStGOSJ5M7u1D40/SQ9I5hPbgqGGmCaJ3fNiMDfKOX83K6r0K dF15uxIGc34HBc600pR0ihVE02nGhmGseVdC/jI2h5WBEv0CXy5ZrdsU/+vgx3U9 yMLOJz1U/e1Sv4TE3pwur3oY0SiQVDfnEPelzy7BYevntSHSp3B+WgFX3t/nXNFA 0MZaBW6pSlN4pwOLwPN848tsVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrpdwja ubWdqMKXJsOnqqINt38EMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ+4qblTHwBRkq7Q0BBuOOsvHxEECi5/Hri5xCr5pQw8D2MBBNP8QJ +PSWFkXsxPSvc9gvlzzXhILcXd/dLHhQ8p04qYGxqy8MGD+dKsyIHfZdRby5Zok2 CVqphGmE+YE7/qGs77ByMzWAUhi666PpPueO4WmLawvqtafR4i0LWkQRYegiCrD/ MPD1nC0dMTqZ+bCV1N/f6tYZajyrB+5DEIyPg17jjN2WmtrUjieBwxL1ErOALzuV dTd7AVSE5AbSGOyPD/N9yonCjPLL3pxyFG/cYaB3q7cumar9w/nGuumCBB80Fm9M SvUKIs/2vXTrgTXxZuU78S30IoHTLrV2 -----END CERTIFICATE-----Generated at Fri May 3 06:29:21 2024 by rpki-client on console-fra.rpki-client.org