$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: ZHAHxtI2zB/Jpg5Cx5Ty7y+60zPImvUJ2nWQ2aASwFs= Subject key identifier: 40:06:40:DB:B0:21:C9:E2:3E:DD:99:7D:ED:EE:58:D8:30:73:6F:21 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 43 Signing time: Fri 17 May 2024 08:17:44 +0000 Manifest this update: Fri 17 May 2024 08:17:44 +0000 Manifest next update: Fri 24 May 2024 08:17:44 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: FuoCZ1qYX4R5P4p0ijpUWI9xmveIp19455fvH9BEcv4=) 2: A244D92411E111EFBEBDD04FC4F9AE02.roa (hash: Sn/X8QwI7RWARUV5M3ib9s4fogqlJ/WgTeiO4skend4=) 3: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: JxI86Wejjp4xvatXjkIX7nssbC2BudoqYiXNb8glC5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: May 17 08:17:44 2024 GMT Not After : May 24 08:17:44 2024 GMT Subject: CN=664712a8-b075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5b:2b:71:9a:6b:fe:00:57:2e:9c:97:cf:9e: 3f:6b:9f:24:f1:e7:c7:26:7b:7b:2a:69:91:a0:b6: db:8f:65:c4:6d:55:97:95:e0:02:c6:65:e7:e1:da: 67:1a:53:c1:3f:98:88:87:6a:36:36:f0:85:2c:a7: bc:be:1d:75:c0:bd:42:6f:ee:7d:9c:be:f8:97:cd: 71:a1:6d:74:53:24:18:c0:65:bb:31:b7:d1:d3:ce: 2d:99:0a:3f:80:3f:24:fe:62:b6:0f:ae:69:4d:91: 75:b7:ae:60:d6:dc:25:11:43:d5:4f:f7:05:04:a3: a6:0b:74:fe:cd:45:3a:bd:69:7c:5e:7a:76:01:37: 32:9e:c4:7f:fe:94:1f:20:00:f3:32:d2:41:c5:99: 21:b6:bf:33:ef:d5:6f:88:ce:f2:72:c7:24:22:4c: 1a:08:48:f1:be:53:86:1f:4a:33:af:cf:65:88:0f: 53:29:3b:7b:44:3d:5f:de:a6:56:6d:ad:3b:15:9f: 7f:b7:8e:93:31:7b:f3:e1:7c:ec:48:f3:cf:8a:f9: 7f:26:25:60:a0:72:13:15:a1:1f:f7:d4:eb:92:10: ca:a4:9c:14:3c:3b:12:b5:2b:72:e9:0e:74:f8:87: df:f8:1b:8a:01:23:46:3a:25:0b:1c:50:b0:41:9f: d3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:06:40:DB:B0:21:C9:E2:3E:DD:99:7D:ED:EE:58:D8:30:73:6F:21 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:fd:ea:2d:a9:7a:b9:87:48:db:d1:4d:bd:3c:76:a4:bb:47: 42:4e:e1:75:3b:c5:18:df:5c:1f:71:79:a9:82:1b:2d:d6:41: 2b:02:40:56:02:31:e4:3c:42:f4:26:d5:de:8a:5b:10:4a:26: c6:3d:10:bf:0a:67:77:eb:3a:92:3b:3e:41:ec:4c:cb:fc:34: 6d:05:ab:b7:46:77:16:fd:14:49:37:30:2e:a8:be:a0:67:84: 27:c7:d3:fd:74:c2:27:90:52:09:7b:d8:75:6f:b1:fd:e4:77: 22:f6:1b:70:b8:c8:e5:a4:2a:31:a1:5e:b9:12:bf:ed:56:cf: 4f:88:1f:93:46:f4:ce:98:ad:9b:69:ba:fd:25:12:3c:71:8e: 40:3c:cc:38:26:9c:0e:99:57:27:eb:4f:df:63:43:01:60:d9: 5e:4d:84:6a:f4:41:47:e2:f4:b2:d8:95:69:b5:a8:1b:ef:62: c8:9f:72:ea:d8:a2:89:f7:a3:58:43:bf:2c:52:2e:fa:1b:aa: 2b:b4:2f:64:3b:8f:99:c0:9b:89:ab:dd:d9:13:3b:91:ba:84: 6a:1f:2c:92:f3:59:b7:80:63:d9:f9:d7:39:84:4e:fa:ec:76: 97:57:79:46:aa:ad:b0:b0:4f:86:6d:86:df:4c:1e:38:98:61: ca:be:db:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NjNBRjExMC8GA1UEBRMoMzQ3NEMyNTM5ODYxMTAwQUZEOTYzQTE2M0M4MDJEMDI2 NEY4RUM3RDAeFw0yNDA1MTcwODE3NDRaFw0yNDA1MjQwODE3NDRaMBgxFjAUBgNV BAMTDTY2NDcxMmE4LWIwNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoWytxmmv+AFcunJfPnj9rnyTx58cme3sqaZGgttuPZcRtVZeV4ALGZefh2mca U8E/mIiHajY28IUsp7y+HXXAvUJv7n2cvviXzXGhbXRTJBjAZbsxt9HTzi2ZCj+A PyT+YrYPrmlNkXW3rmDW3CURQ9VP9wUEo6YLdP7NRTq9aXxeenYBNzKexH/+lB8g APMy0kHFmSG2vzPv1W+IzvJyxyQiTBoISPG+U4YfSjOvz2WID1MpO3tEPV/eplZt rTsVn3+3jpMxe/PhfOxI88+K+X8mJWCgchMVoR/31OuSEMqknBQ8OxK1K3LpDnT4 h9/4G4oBI0Y6JQscULBBn9NxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQAZA27Ah yeI+3Zl97e5Y2DBzbyEwHwYDVR0jBBgwFoAUNHTCU5hhEAr9ljoWPIAtAmT47H0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2M0FGLzRERkU2ODI0QjZC NzExRUVBOUQ3RkMzQUM0RjlBRTAyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTkhUQ1U1aGhFQXI5bGpvV1BJQXRBbVQ0N0gwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2 M0FGLzRERkU2ODI0QjZCNzExRUVBOUQ3RkMzQUM0RjlBRTAyL05IVENVNWhoRUFy OWxqb1dQSUF0QW1UNDdIMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADX96i2permHSNvRTb08dqS7R0JO4XU7xRjfXB9xeamCGy3WQSsCQFYC MeQ8QvQm1d6KWxBKJsY9EL8KZ3frOpI7PkHsTMv8NG0Fq7dGdxb9FEk3MC6ovqBn hCfH0/10wieQUgl72HVvsf3kdyL2G3C4yOWkKjGhXrkSv+1Wz0+IH5NG9M6YrZtp uv0lEjxxjkA8zDgmnA6ZVyfrT99jQwFg2V5NhGr0QUfi9LLYlWm1qBvvYsifcurY oon3o1hDvyxSLvobqiu0L2Q7j5nAm4mr3dkTO5G6hGofLJLzWbeAY9n51zmETvrs dpdXeUaqrbCwT4Ztht9MHjiYYcq+2yY= -----END CERTIFICATE-----Generated at Fri May 17 10:10:53 2024 by rpki-client on console-fra.rpki-client.org