$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft File: nMiKhtCzfs7o1XZX75l4lTJoDN8.mft (raw, json) Hash identifier: tPIJcXvFTkdDyivFTangqMvIA80Pho6X0jGueV7Bb5w= Subject key identifier: EE:8C:34:AB:9E:6C:C7:A0:7E:5F:E4:C1:6C:9A:E8:0A:39:09:9A:22 Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft Manifest number: 48 Signing time: Wed 15 May 2024 08:12:19 +0000 Manifest this update: Wed 15 May 2024 08:12:18 +0000 Manifest next update: Wed 22 May 2024 08:12:18 +0000 Files and hashes: 1: nMiKhtCzfs7o1XZX75l4lTJoDN8.crl (hash: Vz1bf19gOleA1JOriP+TAWdJpJABbCmn+UDU4P0WuR4=) 2: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (hash: cfrP8N8FCUzi/lWLmEQz3q6QHultJoyGerNEVZ15ORY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: May 15 08:12:18 2024 GMT Not After : May 22 08:12:18 2024 GMT Subject: CN=66446e62-9b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a2:ca:3a:bb:fd:dc:46:7a:df:d7:24:ab:f9: 9e:27:75:03:05:1b:4a:d0:dd:e8:9a:f9:01:f6:b5: 23:5c:87:9e:97:99:0b:d5:92:df:04:3f:2f:80:e7: 4f:e6:0c:98:de:fc:b9:83:dc:48:80:cb:bb:71:00: db:03:6c:72:9e:75:c4:cf:f2:ec:42:02:be:15:43: 59:28:e6:72:10:de:b8:4d:42:6d:e9:de:28:8a:fc: 2e:35:1a:af:91:e6:be:46:36:9e:65:a2:8d:cd:1d: 67:34:92:7b:fe:a2:a1:d9:d0:17:ce:17:d5:46:a8: bf:c0:6f:01:79:4d:9e:a7:f2:af:0f:31:ba:52:11: 11:ed:e8:f6:09:a1:1b:f5:16:7a:6f:c7:02:57:d1: 2b:17:70:0e:2b:63:93:b6:cd:ab:f6:9e:f5:6d:d9: 5b:63:10:73:75:f1:0d:3b:35:a8:d1:8d:0b:c8:95: 40:8d:92:fb:58:a7:04:6f:b1:19:78:81:3b:f8:33: 80:35:fe:53:d3:bf:44:3b:82:ce:5f:bb:fc:6f:94: ac:cc:ce:22:cd:bf:bf:5d:a6:61:f2:ac:4b:0c:2f: 85:a6:11:58:d7:3e:c5:70:03:13:1b:03:ca:1a:5b: 7f:b4:f4:bc:24:f7:44:f9:19:a5:5f:42:17:75:e2: 4b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8C:34:AB:9E:6C:C7:A0:7E:5F:E4:C1:6C:9A:E8:0A:39:09:9A:22 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:28:5d:68:c5:d1:7f:d7:3d:02:a6:ec:d7:7a:7b:ad:b4:ff: e5:76:e0:c9:27:dc:94:07:9c:f5:a9:57:15:6d:78:04:0d:ab: 82:ad:97:18:c7:48:df:ed:a9:2f:65:c7:1c:9a:9b:77:0d:84: e8:5d:e2:2d:04:56:5b:43:43:00:5f:9c:11:53:92:66:c6:41: 27:2e:2a:5c:90:05:b6:27:5c:1e:fe:fe:4e:20:8d:2e:90:92: db:fc:d4:a5:74:1a:03:a2:18:ab:c3:e2:f9:9a:d4:e3:a5:ff: f3:e8:5f:78:5a:a9:2a:b4:5e:8d:f6:dd:04:be:87:90:10:ad: 4d:79:a7:96:d0:24:63:00:b3:dc:1f:29:f5:a2:d1:73:b6:94: 2f:7a:33:b1:a5:5b:f9:d3:43:00:c9:6d:1f:2f:c7:89:4a:ff: fe:16:75:89:82:e6:66:ae:66:d8:27:ca:79:4d:f9:f6:a7:5d: 19:af:44:00:ca:8b:62:9c:09:fa:62:47:d1:15:4b:71:a7:28: 4e:38:74:f8:3b:e2:32:0c:75:56:4e:0b:9d:41:c9:da:20:ca: e9:60:ce:43:cd:28:6c:85:3f:28:ff:b1:6f:8b:70:85:45:c6: 32:8c:be:31:07:4a:8b:d1:3e:0a:55:54:a2:a8:65:a1:46:f5: 37:dc:fc:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NEIzOTExMC8GA1UEBRMoOUNDODhBODZEMEIzN0VDRUU4RDU3NjU3RUY5OTc4OTUz MjY4MENERjAeFw0yNDA1MTUwODEyMThaFw0yNDA1MjIwODEyMThaMBgxFjAUBgNV BAMTDTY2NDQ2ZTYyLTliMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjoso6u/3cRnrf1ySr+Z4ndQMFG0rQ3eia+QH2tSNch56XmQvVkt8EPy+A50/m DJje/LmD3EiAy7txANsDbHKedcTP8uxCAr4VQ1ko5nIQ3rhNQm3p3iiK/C41Gq+R 5r5GNp5loo3NHWc0knv+oqHZ0BfOF9VGqL/AbwF5TZ6n8q8PMbpSERHt6PYJoRv1 FnpvxwJX0SsXcA4rY5O2zav2nvVt2VtjEHN18Q07NajRjQvIlUCNkvtYpwRvsRl4 gTv4M4A1/lPTv0Q7gs5fu/xvlKzMziLNv79dpmHyrEsML4WmEVjXPsVwAxMbA8oa W3+09Lwk90T5GaVfQhd14kt3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7ow0q55s x6B+X+TBbJroCjkJmiIwHwYDVR0jBBgwFoAUnMiKhtCzfs7o1XZX75l4lTJoDN8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0QjM5L0ZFRjU0OUU4QUYx NjExRUU4QzQ4QTc0REM0RjlBRTAyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0RO OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk1pS2h0Q3pmczdvMVhaWDc1bDRsVEpvRE44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 QjM5L0ZFRjU0OUU4QUYxNjExRUU4QzQ4QTc0REM0RjlBRTAyL25NaUtodEN6ZnM3 bzFYWlg3NWw0bFRKb0ROOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOUoXWjF0X/XPQKm7Nd6e620/+V24Mkn3JQHnPWpVxVteAQNq4KtlxjH SN/tqS9lxxyam3cNhOhd4i0EVltDQwBfnBFTkmbGQScuKlyQBbYnXB7+/k4gjS6Q ktv81KV0GgOiGKvD4vma1OOl//PoX3haqSq0Xo323QS+h5AQrU15p5bQJGMAs9wf KfWi0XO2lC96M7GlW/nTQwDJbR8vx4lK//4WdYmC5mauZtgnynlN+fanXRmvRADK i2KcCfpiR9EVS3GnKE44dPg74jIMdVZOC51BydogyulgzkPNKGyFPyj/sW+LcIVF xjKMvjEHSovRPgpVVKKoZaFG9Tfc/Dc= -----END CERTIFICATE-----Generated at Wed May 15 09:28:13 2024 by rpki-client on console-fra.rpki-client.org