$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: xC47dK4rXlYLGVxED4Hu8rUhVmjxCcDuNczMdvT2LMc= Subject key identifier: 62:B4:A6:53:DB:4C:5D:83:FB:0F:A1:FF:A8:08:37:76:89:51:0C:87 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 079F Signing time: Thu 02 May 2024 22:16:01 +0000 Manifest this update: Thu 02 May 2024 22:16:01 +0000 Manifest next update: Thu 09 May 2024 22:16:01 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: TZ3YzH7EU0BN/+tjUjf7stsHTZ0gH2F2Ji47KlF2lVs=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: HMYkkHF8wzszCT03b/fn+ryBFfhplqg/NikJU1t3Vus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: May 2 22:16:01 2024 GMT Not After : May 9 22:16:01 2024 GMT Subject: CN=663410a1-40d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:02:15:8b:d2:73:ae:c4:0f:cb:d7:d4:74: ca:15:80:94:1a:22:90:c9:e4:09:6c:10:79:2b:bd: 3f:5e:5e:19:98:65:b3:4b:6e:6e:99:1f:92:91:d9: 9c:a8:38:8e:fc:3b:d8:2c:0b:3f:04:42:bc:db:69: dc:90:00:4d:0c:93:cd:26:aa:cf:ea:0b:9b:c8:5f: 68:6c:d7:b5:3c:fc:51:71:2a:9a:9a:4c:9d:26:2f: 3d:be:e6:64:a2:1b:bf:5a:d7:fd:96:1c:9c:c0:a2: a7:9b:16:fd:e9:42:20:7f:d2:d6:6c:b1:2b:02:1b: 53:d8:fb:cc:3f:9d:41:0b:ef:2a:e7:b6:d2:d1:c0: 43:5d:27:d8:99:49:c7:f0:da:61:7e:30:ac:fc:29: 3d:c4:ee:56:a0:44:ff:27:4e:aa:1e:86:99:c0:bb: 00:17:30:c7:b4:e9:19:53:47:6f:87:67:dc:ac:51: 74:96:ef:34:70:11:e4:06:da:74:be:30:74:91:de: 47:88:55:ec:34:9c:31:a9:c6:12:92:4f:4c:83:25: e6:39:2c:2c:d7:27:a6:ed:39:ec:44:01:de:3f:37: 56:4e:9f:f2:40:eb:fc:d3:d4:c9:d7:a8:46:5c:67: d0:f2:f2:3b:24:2e:5c:20:21:fc:46:3f:ae:a0:97: 8a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B4:A6:53:DB:4C:5D:83:FB:0F:A1:FF:A8:08:37:76:89:51:0C:87 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a5:1a:8c:a1:35:cf:73:42:b3:a7:14:49:83:e7:3c:81:1f: c5:b4:72:51:38:92:ed:8f:29:21:c0:ce:85:5b:29:1b:52:c2: 80:bb:40:f3:6b:8c:97:0a:37:bc:24:f2:18:6c:10:d8:bc:d4: 60:a3:46:ce:7c:d7:bf:73:1d:52:8e:72:a9:21:75:1b:26:4a: 79:e8:88:36:6f:a9:af:11:e4:e3:20:6d:af:a6:28:c9:89:fe: 93:48:dd:be:a9:d1:ea:f0:ac:dc:aa:7d:5a:48:e3:5c:2d:1a: 0f:60:d1:e1:8a:7d:cf:5d:27:77:2e:11:cb:f4:c0:36:c5:c2: 17:29:dc:02:db:21:61:e6:d1:2a:47:bc:0b:10:eb:9b:0f:89: ce:e4:3f:44:e6:16:40:16:88:cc:c9:80:0a:ed:75:30:05:41: 1b:d2:c3:d3:53:d2:4f:99:e8:42:e5:a0:4d:20:9c:f9:c0:6d: 38:42:65:40:f9:2c:23:9e:8c:76:f7:7f:51:da:aa:dd:03:be: 99:52:f6:c4:10:ad:eb:2b:17:b7:08:8b:11:67:5f:7e:11:cf: 58:c7:dd:38:93:7a:27:d5:b8:24:28:1a:9f:62:25:08:12:3e: 85:9c:b9:06:d1:57:d1:6d:65:6e:dd:0f:22:8b:43:b5:db:c4: d3:66:a7:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjQwNTAyMjIxNjAxWhcNMjQwNTA5MjIxNjAxWjAYMRYwFAYD VQQDEw02NjM0MTBhMS00MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkACFYvSc67ED8vX1HTKFYCUGiKQyeQJbBB5K70/Xl4ZmGWzS25umR+Skdmc qDiO/DvYLAs/BEK822nckABNDJPNJqrP6gubyF9obNe1PPxRcSqamkydJi89vuZk ohu/Wtf9lhycwKKnmxb96UIgf9LWbLErAhtT2PvMP51BC+8q57bS0cBDXSfYmUnH 8NphfjCs/Ck9xO5WoET/J06qHoaZwLsAFzDHtOkZU0dvh2fcrFF0lu80cBHkBtp0 vjB0kd5HiFXsNJwxqcYSkk9MgyXmOSws1yem7TnsRAHePzdWTp/yQOv809TJ16hG XGfQ8vI7JC5cICH8Rj+uoJeK5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGK0plPb TF2D+w+h/6gIN3aJUQyHMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGpRqMoTXPc0KzpxRJg+c8gR/FtHJROJLtjykhwM6FWykbUsKAu0Dz a4yXCje8JPIYbBDYvNRgo0bOfNe/cx1SjnKpIXUbJkp56Ig2b6mvEeTjIG2vpijJ if6TSN2+qdHq8Kzcqn1aSONcLRoPYNHhin3PXSd3LhHL9MA2xcIXKdwC2yFh5tEq R7wLEOubD4nO5D9E5hZAFojMyYAK7XUwBUEb0sPTU9JPmehC5aBNIJz5wG04QmVA +Swjnox2939R2qrdA76ZUvbEEK3rKxe3CIsRZ19+Ec9Yx904k3on1bgkKBqfYiUI Ej6FnLkG0VfRbWVu3Q8ii0O128TTZqcL -----END CERTIFICATE-----Generated at Thu May 2 23:03:14 2024 by rpki-client on console-fra.rpki-client.org