$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: mw7O1H1Nuq6VYBASatkbbviKdkuYbB3zMsFqgi83xYk= Subject key identifier: 4C:82:8D:FF:CC:74:A3:1D:85:AA:53:27:E5:91:92:1B:E5:2B:16:01 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0A6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0A5F Signing time: Tue 30 Apr 2024 20:39:27 +0000 Manifest this update: Tue 30 Apr 2024 20:39:27 +0000 Manifest next update: Tue 07 May 2024 20:39:27 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: CFHkiPW/fBhY5/pi7Kdj1iXcTdnBAFU6XRh/oWMjLWs=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: gboNyYgIS6YvfAbfqVsjKY5cK/rMG1yxF8IlQtGsFAE=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: 7KJPfBZhvIPaRhj9wlG1esKUxLEGwOUb5xu1CyMWqDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2666 (0xa6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: Apr 30 20:39:27 2024 GMT Not After : May 7 20:39:27 2024 GMT Subject: CN=663156ff-d36e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:ec:00:66:5e:a7:de:36:94:40:09:1d:29: 90:af:29:f0:13:51:a6:ab:25:b8:2a:c1:d4:a2:4c: 2e:a7:2f:e9:b7:fe:32:72:e6:70:d5:88:e4:3c:48: 9f:f0:20:60:a2:33:ed:4e:38:1a:82:d4:6b:e0:17: bb:5f:8e:fc:32:57:2c:45:c3:92:40:2e:fe:70:b9: ab:84:cd:42:14:57:db:a5:8e:05:1c:2e:05:bd:71: ba:20:60:5f:70:56:c5:e7:7a:82:c4:3d:73:6b:31: fe:56:6b:88:67:0f:d0:73:13:20:e2:df:8e:40:c8: 0f:e9:86:9c:a3:38:7c:96:03:cf:6b:c3:19:23:98: 9e:0d:79:a2:0f:0f:9b:75:a7:36:38:f8:98:a5:d5: 71:dc:61:36:7c:c9:3f:7b:17:9e:63:a5:2b:4f:cb: bb:14:66:de:aa:ab:e8:c0:98:32:f1:4e:87:a5:41: c9:4f:9b:23:c5:3b:3d:72:c5:61:a6:6d:88:d9:09: b6:d2:6c:b8:4a:bd:c7:4d:d2:40:0b:ef:61:71:d4: a5:7a:65:27:39:c5:bb:7c:7c:a5:6e:17:d3:b4:4a: a0:69:c2:b5:10:61:14:25:2b:05:50:a3:13:f8:82: 88:4e:9e:a8:e5:87:e9:b5:9a:ff:4d:32:40:b3:f4: 60:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:82:8D:FF:CC:74:A3:1D:85:AA:53:27:E5:91:92:1B:E5:2B:16:01 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:6b:bc:d7:de:e6:aa:cf:e3:07:fb:eb:3f:4e:ae:7c:88:53: a4:83:6c:a4:fd:a5:2c:4d:69:e2:68:b0:f4:f0:ea:f5:fa:31: bc:97:e0:f9:e8:f7:02:01:43:c1:72:7a:b7:68:4d:ed:28:cb: 6d:30:86:6d:38:10:61:b3:84:55:f3:6c:61:d2:24:c7:a0:e7: e8:b3:5c:9c:6e:8e:ad:b9:0e:06:f6:70:6a:9c:cf:18:50:69: 1d:49:92:07:cc:3f:14:74:44:70:72:d5:fc:67:f0:a3:d9:53: 18:fa:8a:19:e6:ba:d7:41:02:de:9d:40:e1:d1:aa:ae:23:22: 8a:4f:c0:fb:b0:94:ed:9a:03:0e:26:b2:16:c5:4e:ad:c2:49: 3e:cc:89:84:f0:11:0b:29:33:56:e2:91:19:3c:27:92:65:88: 4d:56:a8:a9:21:b7:d9:cb:e2:b3:6a:3b:cb:7a:e1:e0:ce:16: 98:03:73:bc:c8:4f:71:19:57:6f:cb:7f:47:0a:81:ed:0e:9f: ba:56:35:2e:06:e7:69:24:7d:fd:a7:5e:9a:f8:be:bd:d8:48: a8:3d:16:7c:15:1e:b2:9e:89:c9:65:2b:ec:a5:22:51:64:0c: 42:0e:1d:6c:0d:8a:e2:a5:5d:e7:18:af:56:42:d1:15:59:46: fe:13:33:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjQwNDMwMjAzOTI3WhcNMjQwNTA3MjAzOTI3WjAYMRYwFAYD VQQDEw02NjMxNTZmZi1kMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtXsAGZep942lEAJHSmQrynwE1GmqyW4KsHUokwupy/pt/4ycuZw1YjkPEif 8CBgojPtTjgagtRr4Be7X478MlcsRcOSQC7+cLmrhM1CFFfbpY4FHC4FvXG6IGBf cFbF53qCxD1zazH+VmuIZw/QcxMg4t+OQMgP6Yacozh8lgPPa8MZI5ieDXmiDw+b dac2OPiYpdVx3GE2fMk/exeeY6UrT8u7FGbeqqvowJgy8U6HpUHJT5sjxTs9csVh pm2I2Qm20my4Sr3HTdJAC+9hcdSlemUnOcW7fHylbhfTtEqgacK1EGEUJSsFUKMT +IKITp6o5YfptZr/TTJAs/RgpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyCjf/M dKMdhapTJ+WRkhvlKxYBMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYa7zX3uaqz+MH++s/Tq58iFOkg2yk/aUsTWniaLD08Or1+jG8l+D5 6PcCAUPBcnq3aE3tKMttMIZtOBBhs4RV82xh0iTHoOfos1ycbo6tuQ4G9nBqnM8Y UGkdSZIHzD8UdERwctX8Z/Cj2VMY+ooZ5rrXQQLenUDh0aquIyKKT8D7sJTtmgMO JrIWxU6twkk+zImE8BELKTNW4pEZPCeSZYhNVqipIbfZy+KzajvLeuHgzhaYA3O8 yE9xGVdvy39HCoHtDp+6VjUuBudpJH39p16a+L692EioPRZ8FR6ynonJZSvspSJR ZAxCDh1sDYripV3nGK9WQtEVWUb+EzOo -----END CERTIFICATE-----Generated at Tue Apr 30 21:59:04 2024 by rpki-client on console-ams.rpki-client.org