$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: 9xiTWh6cirvSR1jBtPQTqWeFkC/ux2+Ik46wXBAQqxs= Subject key identifier: 01:8F:F8:DD:C5:F6:FA:1D:16:69:5D:B3:89:FB:2D:A6:92:80:A4:A2 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 061F Signing time: Fri 03 May 2024 00:02:58 +0000 Manifest this update: Fri 03 May 2024 00:02:58 +0000 Manifest next update: Fri 10 May 2024 00:02:58 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: gyaGZu/+2wwioCG+t2iNCfzjS0+NMFhh/CMnSkrg1QQ=) 2: 96FC6944591111EEBFB2384AC4F9AE02.roa (hash: rvYTS1aH1b3AcodzlLApwdGnHpabMmYS9OY5Ugpek7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: May 3 00:02:58 2024 GMT Not After : May 10 00:02:58 2024 GMT Subject: CN=663429b2-4e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f4:15:6d:f1:09:dc:79:4b:1d:92:f3:4e:45: c2:30:9b:a4:db:84:71:14:74:46:c8:c6:94:89:dd: 15:0e:ed:b6:a6:92:bc:9a:48:76:b5:55:9e:74:34: 0f:50:10:28:44:7a:67:e5:da:ec:3c:ff:20:e8:90: 4d:4f:0f:b9:5d:f8:44:ea:a1:3c:89:33:57:4f:37: d2:be:9f:dd:86:0c:9b:f1:db:60:93:c3:d4:68:21: f8:96:8b:22:f3:23:5a:3c:d0:bc:ee:77:86:0d:af: cf:f7:bb:b7:41:77:b1:4b:10:2a:6e:19:17:75:02: b7:cb:51:63:51:5b:a3:1f:8d:e8:93:a3:72:84:2b: aa:f9:5c:19:b0:e6:97:48:34:52:e6:e3:c5:14:3c: 42:f0:82:77:f2:14:40:36:98:2a:71:26:01:24:15: 03:d4:69:bc:d5:ea:0f:9e:10:18:11:63:6e:0e:ec: 87:c3:38:c7:8c:3c:81:11:76:67:12:ae:c4:e1:4c: ab:c0:40:0b:98:71:4d:09:18:30:ad:2a:9e:8e:05: 58:ca:9c:53:d1:fa:8f:4f:48:dc:4a:c7:08:3b:11: ee:42:6d:bf:5f:a2:cf:7e:48:19:7f:19:fb:72:15: 95:8f:7c:b2:64:e4:ff:43:d7:e1:76:ec:8d:cf:37: e8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8F:F8:DD:C5:F6:FA:1D:16:69:5D:B3:89:FB:2D:A6:92:80:A4:A2 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:bd:df:9d:03:87:27:54:cd:64:ac:9f:81:13:f9:4e:48:33: 84:f2:e3:75:ce:7e:c6:7a:f1:cd:8b:56:70:98:ae:97:89:15: f2:21:96:9b:96:d5:45:ea:ad:09:47:80:01:c2:bb:8a:67:a1: 75:a4:7c:51:34:e9:f4:41:86:59:21:02:49:91:b5:5e:7f:9c: 0b:f0:97:d9:f2:a5:dd:70:37:cb:c2:22:5e:6a:6f:f5:d7:f0: 89:15:cf:e5:7a:68:9e:70:ea:ac:60:5b:03:f3:ce:f5:a1:da: fe:62:ce:40:8c:0e:74:2c:79:ef:02:ae:6f:38:b1:d2:7a:4a: ef:27:0b:7b:6f:86:65:78:a2:ef:85:f4:f2:98:22:4a:ce:ff: ec:31:b8:35:24:6f:64:88:11:bb:47:4e:f6:55:11:bd:ec:34: 92:64:9d:f1:51:bd:71:ad:9a:d9:c7:6d:39:22:29:24:f1:28: 02:1e:72:b4:30:72:93:67:9d:cb:c0:11:6c:4c:f7:72:cf:57: ad:01:a0:5f:ce:ee:a3:12:70:06:3d:3d:4e:f2:a8:4a:e8:37: b9:2d:ec:2e:53:83:64:f5:6b:ab:cb:eb:8a:29:01:18:27:6a: b2:5c:d1:05:ff:af:7f:07:d0:aa:0f:52:41:e3:e8:49:42:7d: 1d:77:c5:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjQwNTAzMDAwMjU4WhcNMjQwNTEwMDAwMjU4WjAYMRYwFAYD VQQDEw02NjM0MjliMi00ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PQVbfEJ3HlLHZLzTkXCMJuk24RxFHRGyMaUid0VDu22ppK8mkh2tVWedDQP UBAoRHpn5drsPP8g6JBNTw+5XfhE6qE8iTNXTzfSvp/dhgyb8dtgk8PUaCH4losi 8yNaPNC87neGDa/P97u3QXexSxAqbhkXdQK3y1FjUVujH43ok6NyhCuq+VwZsOaX SDRS5uPFFDxC8IJ38hRANpgqcSYBJBUD1Gm81eoPnhAYEWNuDuyHwzjHjDyBEXZn Eq7E4UyrwEALmHFNCRgwrSqejgVYypxT0fqPT0jcSscIOxHuQm2/X6LPfkgZfxn7 chWVj3yyZOT/Q9fhduyNzzfoWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGP+N3F 9vodFmlds4n7LaaSgKSiMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxvd+dA4cnVM1krJ+BE/lOSDOE8uN1zn7GevHNi1ZwmK6XiRXyIZab ltVF6q0JR4ABwruKZ6F1pHxRNOn0QYZZIQJJkbVef5wL8JfZ8qXdcDfLwiJeam/1 1/CJFc/lemiecOqsYFsD8871odr+Ys5AjA50LHnvAq5vOLHSekrvJwt7b4ZleKLv hfTymCJKzv/sMbg1JG9kiBG7R072VRG97DSSZJ3xUb1xrZrZx205Iikk8SgCHnK0 MHKTZ53LwBFsTPdyz1etAaBfzu6jEnAGPT1O8qhK6De5LewuU4Nk9Wury+uKKQEY J2qyXNEF/69/B9CqD1JB4+hJQn0dd8V7 -----END CERTIFICATE-----Generated at Fri May 3 00:48:30 2024 by rpki-client on console-ams.rpki-client.org