$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: 18LdxZnj4Q5M9h3uAQjtkEzHF7Nlw7ud/wU6cgAN5cQ= Subject key identifier: AF:B6:ED:45:8E:C2:E3:66:64:B5:D6:E4:8F:3A:79:AC:D6:79:3E:DB Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 016F Signing time: Tue 07 May 2024 04:48:22 +0000 Manifest this update: Tue 07 May 2024 04:48:21 +0000 Manifest next update: Tue 14 May 2024 04:48:21 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: lqPKw/k8E5gIxh/jzgic4ac8pGf9s4kDl5OMeQctT+c=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: 9p5AYhef85mple/Ik9DCUWr7N53+ZA1TcUS4mh0rAJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: May 7 04:48:21 2024 GMT Not After : May 14 04:48:21 2024 GMT Subject: CN=6639b296-218f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b2:2d:a4:36:6a:7a:a0:36:35:b2:22:3e:2b: 3e:af:02:2c:6f:1f:06:90:fe:cd:a3:67:c2:63:8a: 7c:27:8c:0d:81:df:e8:3c:cf:bb:fe:30:99:e8:a3: 4d:60:c4:6d:46:d7:36:91:25:10:ea:e9:1d:3b:c8: 13:5e:ac:c6:7b:a0:2a:45:94:2d:a9:7f:3c:fc:85: 8d:3d:78:49:23:b6:e6:53:2e:ee:34:dc:18:5c:2a: ba:b9:eb:c1:b2:4a:e3:2f:14:80:14:a8:96:57:2c: 95:d0:1d:77:b3:40:ef:a8:25:fe:84:d7:07:18:ab: 62:af:75:77:c7:c1:53:3a:a3:5d:46:45:90:98:fb: 56:e8:42:62:6d:d9:2b:e5:e8:08:a5:c4:11:60:4b: 6c:e1:5e:95:a5:29:74:14:59:25:1f:54:4e:f2:eb: 30:d0:de:48:ba:a4:7d:d2:a0:f7:5b:09:73:cd:ef: 53:ad:5f:31:a8:bc:28:16:23:f9:33:f1:49:58:14: 45:f4:c3:c4:a6:5e:d7:f8:f9:02:0f:83:bb:c0:0f: cf:0e:87:4e:bc:f8:5d:aa:c3:8f:56:bd:5f:1a:63: b4:42:eb:d6:9c:0b:a7:97:c3:9d:30:21:b3:8b:7e: 2f:bb:6c:47:bc:c1:05:75:49:19:d5:89:9f:10:54: 06:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B6:ED:45:8E:C2:E3:66:64:B5:D6:E4:8F:3A:79:AC:D6:79:3E:DB X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:02:1b:4d:e7:8d:5b:77:ef:8f:fe:39:b7:75:74:e9:41:29: e9:c3:b7:4f:5c:7f:6f:7b:a6:6a:73:29:f0:88:27:df:b6:f9: 5e:79:98:ec:7c:84:03:99:3f:bc:89:58:13:8a:fb:24:40:91: 50:b3:2c:d3:64:89:db:fc:37:0d:91:10:73:cb:48:80:69:de: 5a:46:1f:1e:e5:40:1f:8a:82:49:9f:7a:b1:26:c0:3f:2d:df: 0b:41:1b:d9:24:b0:c5:de:69:22:9e:ff:bf:84:50:1d:ad:e6: 84:98:d7:02:1c:a7:c9:b0:0b:4f:09:29:9f:be:02:13:07:c5: ff:a8:43:7c:87:ef:52:8a:cd:1f:0a:51:d4:ef:02:9f:ae:7d: 7d:96:fa:90:79:5e:a3:57:61:57:df:65:e8:fe:e1:ea:7f:df: 81:59:18:2b:06:25:7a:e8:12:ca:23:7d:90:cd:c6:80:3a:d8: 99:51:98:bb:9f:4e:59:0d:1f:ae:27:95:5b:5a:6b:ac:f5:11: 62:09:70:6b:39:54:74:7a:e0:ac:5b:79:e0:bd:5b:e2:7a:5a: 0b:cb:3c:5a:48:3b:f8:b4:4b:ba:44:3d:c8:af:93:ce:e7:5e: ce:4c:e6:69:d3:d1:48:dc:39:3f:d4:cc:d9:f6:f4:05:a1:0f: 65:5e:c1:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjQwNTA3MDQ0ODIxWhcNMjQwNTE0MDQ0ODIxWjAYMRYwFAYD VQQDEw02NjM5YjI5Ni0yMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LItpDZqeqA2NbIiPis+rwIsbx8GkP7No2fCY4p8J4wNgd/oPM+7/jCZ6KNN YMRtRtc2kSUQ6ukdO8gTXqzGe6AqRZQtqX88/IWNPXhJI7bmUy7uNNwYXCq6uevB skrjLxSAFKiWVyyV0B13s0DvqCX+hNcHGKtir3V3x8FTOqNdRkWQmPtW6EJibdkr 5egIpcQRYEts4V6VpSl0FFklH1RO8usw0N5IuqR90qD3Wwlzze9TrV8xqLwoFiP5 M/FJWBRF9MPEpl7X+PkCD4O7wA/PDodOvPhdqsOPVr1fGmO0QuvWnAunl8OdMCGz i34vu2xHvMEFdUkZ1YmfEFQGWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+27UWO wuNmZLXW5I86eazWeT7bMB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAAhtN541bd++P/jm3dXTpQSnpw7dPXH9ve6ZqcynwiCfftvleeZjs fIQDmT+8iVgTivskQJFQsyzTZInb/DcNkRBzy0iAad5aRh8e5UAfioJJn3qxJsA/ Ld8LQRvZJLDF3mkinv+/hFAdreaEmNcCHKfJsAtPCSmfvgITB8X/qEN8h+9Sis0f ClHU7wKfrn19lvqQeV6jV2FX32Xo/uHqf9+BWRgrBiV66BLKI32QzcaAOtiZUZi7 n05ZDR+uJ5VbWmus9RFiCXBrOVR0euCsW3ngvVvieloLyzxaSDv4tEu6RD3Ir5PO 517OTOZp09FI3Dk/1MzZ9vQFoQ9lXsGJ -----END CERTIFICATE-----Generated at Tue May 7 05:40:32 2024 by rpki-client on console-fra.rpki-client.org