$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: ECOSTGkcdvZ9MZu8iIvZXVAGNMsgN7xaEYTYWYXn+sA= Subject key identifier: 43:19:8D:54:B2:5A:CC:E5:E3:F1:97:FB:A0:6D:D7:91:A2:D2:2D:A3 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 20 Signing time: Fri 17 May 2024 08:43:51 +0000 Manifest this update: Fri 17 May 2024 08:43:50 +0000 Manifest next update: Fri 24 May 2024 08:43:50 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: Bo/28RdrbvvPGsEGVKOHm1Nt/mQl3LrksNqFjNYvYE8=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: sKM3XWxgShyOJLKm7YJ4ZHKrS+hkWvA5sgaxqZc+rRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: May 17 08:43:50 2024 GMT Not After : May 24 08:43:50 2024 GMT Subject: CN=664718c7-f498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:a9:41:6e:60:9e:77:e3:9f:ad:5c:53:49: e5:31:5e:90:26:7d:58:e3:5a:78:52:63:af:ae:cb: 85:55:73:d6:56:eb:69:38:5f:f3:72:96:92:12:03: cc:dc:7e:b0:87:41:8e:90:f8:47:c6:0c:cc:3a:6e: 2c:30:e0:9b:c3:92:3d:47:71:78:d3:d3:e3:ac:2b: 9d:b2:87:8b:76:24:e4:6b:ba:ec:5b:61:66:ee:17: 2b:99:82:8a:28:f9:f5:86:eb:c6:44:5b:4a:ab:60: cd:07:38:9b:a1:4f:e0:a4:f8:4d:74:3b:ec:dc:cc: a4:30:bf:af:57:98:b1:ca:d4:03:c2:c0:a4:65:b5: 8f:56:dc:c1:2c:2d:dc:3e:36:fe:82:83:cd:d7:ab: ec:35:e3:cf:93:16:c1:f7:7b:60:30:be:18:7b:dc: 92:cb:bb:25:eb:9c:c3:be:24:b4:52:f8:f9:b7:44: e6:05:08:ba:95:cc:50:e8:00:2a:10:d9:7c:f6:27: f0:cf:ea:7e:8a:b4:77:51:1d:22:38:90:09:56:2b: aa:c9:d4:b9:85:74:dd:e2:bb:9f:94:26:7b:86:86: 52:5e:44:9f:52:5e:1b:9c:93:bd:46:99:a8:99:73: 14:5c:9b:2d:f4:68:06:b6:6d:2f:3e:ca:9b:3a:e7: e7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:19:8D:54:B2:5A:CC:E5:E3:F1:97:FB:A0:6D:D7:91:A2:D2:2D:A3 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7e:8b:98:18:17:6e:c7:6d:2c:f6:0c:91:0e:21:18:d2:db: fd:c6:66:96:ef:d6:40:a2:c1:aa:e8:0b:fa:a9:59:30:f9:21: a1:1b:32:e3:6e:f5:b8:0b:6f:f8:2b:8b:76:d2:48:3e:b2:b5: e2:31:89:7d:40:f0:63:44:c9:5a:ad:ab:3b:eb:de:a3:2a:e2: bc:0c:a0:63:01:73:ba:88:fc:04:43:da:0f:3e:bc:4e:0c:41: 53:c9:74:49:65:56:40:cb:e5:42:ce:2a:f8:c6:d4:2e:ec:2e: 4d:1e:5e:5f:cf:56:af:63:e9:d7:b6:cf:61:34:c6:12:ed:1a: b3:12:f9:17:48:ae:69:81:22:26:da:e2:c3:76:9a:2f:0a:bb: a8:84:01:79:30:87:4a:49:b1:94:33:1b:6a:c5:c6:4e:58:2b: 94:29:47:b9:64:d2:4f:28:b6:b5:dd:c5:7f:6f:68:a7:7d:c7: 37:bc:f3:50:1e:67:40:a7:06:fd:dd:b3:e7:2c:d3:6f:6a:73: 32:76:7a:9f:7f:2d:87:91:7e:fb:09:d1:2f:7f:44:70:d3:f5: 1a:39:cd:4d:82:43:46:44:01:e0:80:1e:66:87:fa:c5:93:ea: bb:1f:e2:06:e4:36:f7:56:64:00:f5:85:bc:fb:af:5e:90:26: ec:40:ea:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Nzc5RDExMC8GA1UEBRMoMzQ4MEM1NjUyMzM0OEREQUJBMzAzRTMxRjIyREZBMzYz Rjg4N0U4RjAeFw0yNDA1MTcwODQzNTBaFw0yNDA1MjQwODQzNTBaMBgxFjAUBgNV BAMTDTY2NDcxOGM3LWY0OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA/KlBbmCed+OfrVxTSeUxXpAmfVjjWnhSY6+uy4VVc9ZW62k4X/NylpISA8zc frCHQY6Q+EfGDMw6biww4JvDkj1HcXjT0+OsK52yh4t2JORruuxbYWbuFyuZgooo +fWG68ZEW0qrYM0HOJuhT+Ck+E10O+zczKQwv69XmLHK1APCwKRltY9W3MEsLdw+ Nv6Cg83Xq+w148+TFsH3e2Awvhh73JLLuyXrnMO+JLRS+Pm3ROYFCLqVzFDoACoQ 2Xz2J/DP6n6KtHdRHSI4kAlWK6rJ1LmFdN3iu5+UJnuGhlJeRJ9SXhuck71GmaiZ cxRcmy30aAa2bS8+yps65+elAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQxmNVLJa zOXj8Zf7oG3XkaLSLaMwHwYDVR0jBBgwFoAUNIDFZSM0jdq6MD4x8i36Nj+Ifo8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NzlELzQ2MEQxQzVBRTJB RTExRUU4NkYzM0MxRUM0RjlBRTAyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZv OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTklERlpTTTBqZHE2TUQ0eDhpMzZOai1JZm84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 NzlELzQ2MEQxQzVBRTJBRTExRUU4NkYzM0MxRUM0RjlBRTAyL05JREZaU00wamRx Nk1ENHg4aTM2TmotSWZvOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAV+i5gYF27HbSz2DJEOIRjS2/3GZpbv1kCiwaroC/qpWTD5IaEbMuNu 9bgLb/gri3bSSD6yteIxiX1A8GNEyVqtqzvr3qMq4rwMoGMBc7qI/ARD2g8+vE4M QVPJdEllVkDL5ULOKvjG1C7sLk0eXl/PVq9j6de2z2E0xhLtGrMS+RdIrmmBIiba 4sN2mi8Ku6iEAXkwh0pJsZQzG2rFxk5YK5QpR7lk0k8otrXdxX9vaKd9xze881Ae Z0CnBv3ds+cs029qczJ2ep9/LYeRfvsJ0S9/RHDT9Ro5zU2CQ0ZEAeCAHmaH+sWT 6rsf4gbkNvdWZAD1hbz7r16QJuxA6p4= -----END CERTIFICATE-----Generated at Fri May 17 10:10:52 2024 by rpki-client on console-fra.rpki-client.org