$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft File: NZYOHhaeA_Rvr5H04_8TUUamMTo.mft (raw, json) Hash identifier: ZRmksAO+/HLU5rf27Cn1Ba2QfSPDkZFah1L0zaFiorw= Subject key identifier: 06:12:0E:B2:36:48:45:87:1D:E5:72:22:9F:78:20:B2:CB:75:FB:20 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 12AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft Manifest number: 12A6 Signing time: Thu 02 May 2024 17:40:24 +0000 Manifest this update: Thu 02 May 2024 17:40:24 +0000 Manifest next update: Thu 09 May 2024 17:40:24 +0000 Files and hashes: 1: NZYOHhaeA_Rvr5H04_8TUUamMTo.crl (hash: +8NltVHb1LhV9ruC1R/dQKZG2k5cMkXYws4077ob1iM=) 2: 21333DA69B2E11E8908CC50FC4F9AE02.roa (hash: Y+ST/2SAya5xqWC2Mrhoz3ZNiP+AUEx9jUaeouaZI0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4780 (0x12ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: May 2 17:40:24 2024 GMT Not After : May 9 17:40:24 2024 GMT Subject: CN=6633d008-66fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4f:c3:da:23:bb:06:15:bc:e5:5a:ac:a5:23: 6b:98:d8:d7:16:25:d2:68:9a:8d:22:bf:17:b0:3d: 05:40:03:4a:ef:73:a0:c8:bc:eb:60:d1:22:d5:e0: 84:d2:00:a8:84:cb:eb:de:cc:86:a4:59:f4:7e:bf: 89:7b:29:cd:52:da:86:cb:4a:cf:b4:f8:74:1b:b2: 5d:80:c2:3e:31:89:6c:99:e8:23:41:00:79:2b:d8: 12:a8:56:59:94:f7:cb:e1:01:8d:06:53:b0:23:1c: ae:c9:41:f7:d0:93:ca:0d:c4:34:bc:55:fa:e5:20: a6:4c:69:3e:60:2f:ac:9e:48:d3:36:2a:ca:e4:dc: e5:97:d7:96:9e:44:d9:8a:0b:75:b5:4c:43:64:fb: 5a:bd:b4:ab:2c:e0:83:ee:b6:6a:48:49:d6:32:cf: a4:33:a7:ac:c6:38:ef:00:7f:e9:a8:08:b5:ad:d0: 3f:f8:6a:c4:38:2c:e5:0a:f1:1e:ad:ab:3f:d3:32: 2c:ec:a7:5a:d3:51:bb:e7:e0:31:e3:5e:9e:71:8e: 4f:3a:f4:8c:80:6f:b0:45:d8:26:d1:89:85:d3:e2: a6:d3:07:2e:d4:a9:f1:32:c6:bb:8d:2e:b2:27:92: 16:98:fc:72:02:4b:66:35:89:86:eb:36:6f:ee:3d: 8e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:12:0E:B2:36:48:45:87:1D:E5:72:22:9F:78:20:B2:CB:75:FB:20 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:87:e1:70:f1:32:a4:c8:d7:c2:4b:1b:57:2a:8b:6d:1d:ff: c8:dc:87:fb:f6:b0:08:e9:3e:a4:74:6a:58:87:91:b4:cc:6a: a4:31:5e:84:1c:4c:61:1a:d3:3b:0d:a3:f4:53:14:f9:14:2d: bf:c5:83:da:5a:3c:5b:0c:98:aa:0a:40:50:49:40:51:c9:39: 63:f6:41:e1:40:97:f9:39:45:cf:a4:e4:68:b3:78:ec:9e:78: e9:dd:2e:b8:d5:b0:47:75:50:32:29:a6:59:bd:16:89:c9:94: d1:9a:09:6c:5e:43:ff:ba:35:48:cd:6f:55:96:88:9b:9d:31: e8:5c:e9:0d:19:01:c4:ee:76:db:4e:8c:3d:57:04:79:28:90: 75:e8:f7:d3:2e:44:61:80:ce:c0:59:c0:56:59:34:23:f3:80: d7:27:19:d8:4f:15:62:14:ca:d7:25:f7:fa:ce:d5:b4:df:1e: 63:5a:d9:07:cd:4e:93:09:e4:92:63:b0:5e:74:50:54:76:13: e4:f0:e4:2d:5f:76:f8:90:26:ea:ff:c7:ff:47:96:ee:68:d7: 1d:f6:a3:2b:1c:51:e8:04:81:f5:ce:d0:5d:53:21:f2:3f:e3: 2e:5b:a9:8c:fb:c8:60:eb:18:cd:d8:33:39:ea:b2:9b:07:30: 24:1e:93:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjQwNTAyMTc0MDI0WhcNMjQwNTA5MTc0MDI0WjAYMRYwFAYD VQQDEw02NjMzZDAwOC02NmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6E/D2iO7BhW85VqspSNrmNjXFiXSaJqNIr8XsD0FQANK73OgyLzrYNEi1eCE 0gCohMvr3syGpFn0fr+JeynNUtqGy0rPtPh0G7JdgMI+MYlsmegjQQB5K9gSqFZZ lPfL4QGNBlOwIxyuyUH30JPKDcQ0vFX65SCmTGk+YC+snkjTNirK5Nzll9eWnkTZ igt1tUxDZPtavbSrLOCD7rZqSEnWMs+kM6esxjjvAH/pqAi1rdA/+GrEOCzlCvEe ras/0zIs7Kda01G75+Ax416ecY5POvSMgG+wRdgm0YmF0+Km0wcu1KnxMsa7jS6y J5IWmPxyAktmNYmG6zZv7j2O0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYSDrI2 SEWHHeVyIp94ILLLdfsgMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkJBNS9FNjQ4NEFDRTlCMkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFf UnZyNUgwNF84VFVVYW1NVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQh+Fw8TKkyNfCSxtXKottHf/I3If79rAI6T6kdGpYh5G0zGqkMV6E HExhGtM7DaP0UxT5FC2/xYPaWjxbDJiqCkBQSUBRyTlj9kHhQJf5OUXPpORos3js nnjp3S641bBHdVAyKaZZvRaJyZTRmglsXkP/ujVIzW9VloibnTHoXOkNGQHE7nbb Tow9VwR5KJB16PfTLkRhgM7AWcBWWTQj84DXJxnYTxViFMrXJff6ztW03x5jWtkH zU6TCeSSY7BedFBUdhPk8OQtX3b4kCbq/8f/R5buaNcd9qMrHFHoBIH1ztBdUyHy P+MuW6mM+8hg6xjN2DM56rKbBzAkHpO+ -----END CERTIFICATE-----Generated at Thu May 2 20:04:53 2024 by rpki-client on console-ams.rpki-client.org