$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: A7EGC+9VcssmMgWYBOFt0FstsTPoV+VXH/cXKCSdclo= Subject key identifier: 13:25:17:42:0D:8A:6E:36:24:64:8E:70:47:CC:57:3D:26:95:EC:22 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1B78 Signing time: Tue 30 Apr 2024 16:43:43 +0000 Manifest this update: Tue 30 Apr 2024 16:43:43 +0000 Manifest next update: Tue 07 May 2024 16:43:43 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: FMDm6eF1ml3aNB2XhHgzZQU/QpA4pBTjcAGv2OrUW1g=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: kFVKxbbFT5Rz5CAh15r46L+LqsFg7mETx8eHEj3hmPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7052 (0x1b8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Apr 30 16:43:43 2024 GMT Not After : May 7 16:43:43 2024 GMT Subject: CN=66311fbf-2e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:65:7a:a6:5a:a0:40:30:68:14:f6:15:79:ca: 56:87:3f:ae:2a:e8:2f:b7:b3:ff:b0:c3:39:b1:64: 84:8d:16:bf:50:7c:aa:ba:c4:b0:f3:fe:f4:94:93: f3:ae:ac:68:79:a6:7a:fe:c8:ac:24:54:c1:2f:9b: 69:c9:e1:ac:3f:16:c6:c8:2f:40:71:02:2f:71:59: 1d:e5:2e:dc:29:c3:f1:af:25:21:97:69:54:64:c0: 1c:76:45:61:b9:63:0d:1b:e0:7e:b9:73:e1:68:22: 40:88:93:59:24:a0:e9:fe:0d:8a:56:81:44:3d:45: 51:7d:b3:fb:ec:3c:32:2e:10:bc:75:d4:32:7d:8b: 84:c9:f7:c9:4a:78:c4:d3:73:ae:a1:aa:8c:c8:b4: 62:e8:2c:6c:e4:ef:7b:46:23:a8:b3:29:3e:41:2b: 69:ff:50:04:5a:53:3b:05:79:d8:c7:19:0a:ef:ec: a7:30:17:25:06:5e:e7:89:a5:d1:83:58:a0:8b:ae: 65:10:c1:29:c8:f6:16:95:24:51:f1:33:b7:6a:80: 97:20:57:d6:19:c9:cf:85:96:ba:73:14:4e:6b:28: bd:d3:a4:da:63:66:7b:f2:3f:4c:b2:b3:12:60:5e: ff:20:9a:d4:cf:76:ac:41:9b:a7:eb:88:82:7f:60: 3e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:25:17:42:0D:8A:6E:36:24:64:8E:70:47:CC:57:3D:26:95:EC:22 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:37:95:22:60:ca:0a:e4:b9:4b:d8:56:2a:24:7b:c6:83:30: 9f:07:8b:21:19:cf:64:5e:12:7a:2d:be:5f:be:fd:07:9f:97: 36:35:08:6c:d4:09:a2:3d:a3:6d:68:c5:e3:07:c9:87:3a:99: 80:91:f2:48:c5:db:8e:62:53:7b:01:c0:e2:30:b6:bc:d5:39: 2b:de:17:6f:35:b1:b1:8b:8f:66:ab:1f:6a:e2:d9:94:40:14: 19:dc:5d:40:b0:e9:38:3a:86:23:ce:37:5c:32:e6:17:b4:12: 5a:0e:67:49:10:9e:b9:3f:69:43:cf:b0:b6:08:45:cb:f7:4a: 22:14:69:92:bb:f1:9e:ef:ed:50:76:07:a9:ef:75:36:87:bb: de:29:cc:bb:e9:ca:9a:c0:40:93:e3:45:31:f0:4f:3c:49:47: e5:0c:55:c2:84:9f:79:9b:08:b0:b7:af:7e:df:2e:0e:78:ae: e5:08:d0:88:2b:08:15:a9:30:d6:47:5e:e5:6f:b7:ae:61:04: d4:bc:e9:f0:86:31:e1:3e:e0:68:61:43:cd:c5:2b:24:fd:bc: 57:e4:f6:3e:e8:74:43:95:9d:28:41:f6:e0:59:8d:a1:44:9f: 8d:be:fd:ca:96:4a:d0:b9:8e:0f:1e:c0:89:c1:1d:67:fa:ce: 15:78:63:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjQwNDMwMTY0MzQzWhcNMjQwNTA3MTY0MzQzWjAYMRYwFAYD VQQDEw02NjMxMWZiZi0yZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32V6plqgQDBoFPYVecpWhz+uKugvt7P/sMM5sWSEjRa/UHyqusSw8/70lJPz rqxoeaZ6/sisJFTBL5tpyeGsPxbGyC9AcQIvcVkd5S7cKcPxryUhl2lUZMAcdkVh uWMNG+B+uXPhaCJAiJNZJKDp/g2KVoFEPUVRfbP77DwyLhC8ddQyfYuEyffJSnjE 03OuoaqMyLRi6Cxs5O97RiOosyk+QStp/1AEWlM7BXnYxxkK7+ynMBclBl7niaXR g1igi65lEMEpyPYWlSRR8TO3aoCXIFfWGcnPhZa6cxROayi906TaY2Z78j9MsrMS YF7/IJrUz3asQZun64iCf2A+lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMlF0IN im42JGSOcEfMVz0mlewiMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0N5UiYMoK5LlL2FYqJHvGgzCfB4shGc9kXhJ6Lb5fvv0Hn5c2NQhs 1AmiPaNtaMXjB8mHOpmAkfJIxduOYlN7AcDiMLa81Tkr3hdvNbGxi49mqx9q4tmU QBQZ3F1AsOk4OoYjzjdcMuYXtBJaDmdJEJ65P2lDz7C2CEXL90oiFGmSu/Ge7+1Q dgep73U2h7veKcy76cqawECT40Ux8E88SUflDFXChJ95mwiwt69+3y4OeK7lCNCI KwgVqTDWR17lb7euYQTUvOnwhjHhPuBoYUPNxSsk/bxX5PY+6HRDlZ0oQfbgWY2h RJ+Nvv3KlkrQuY4PHsCJwR1n+s4VeGOZ -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:24 2024 by rpki-client on console-ams.rpki-client.org