$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: I+iZfl9bT88yFY6Bce5qqJXmAdxDZlEii4GULS4J4ng= Subject key identifier: 33:46:17:BF:1C:E8:28:C6:05:9A:3D:4C:BA:54:E9:4C:C3:E6:3F:AA Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1D55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1D20 Signing time: Mon 06 May 2024 16:36:33 +0000 Manifest this update: Mon 06 May 2024 16:36:32 +0000 Manifest next update: Mon 13 May 2024 16:36:32 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: Gq9VBllxpsj/zSzWmg0+s03zFNJtHnF47uFzlhfTCHE=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: T96ePwaxRSdFBmc3Y6k58ry+6iGVCBzjCHazC1p/+dY=) 3: 0CE1846A9F5111EA9DED6709C4F9AE02.roa (hash: rOcch6/zR8ixwQuQFoCNSKb2m0W69HbtR3S/DwLEdGk=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: PZql/d1vwq6a5me1tWglT8kuvqcERq7TMmDMG3CMCJE=) 5: 5381FAB49F4F11EAA7970484C4F9AE02.roa (hash: iPKFtoNgdXrr/TwYdCIYZDEUUCFtCaHoMnbiNfQRNEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7509 (0x1d55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: May 6 16:36:32 2024 GMT Not After : May 13 16:36:32 2024 GMT Subject: CN=66390711-ea9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1e:13:70:84:71:8e:cf:99:21:e1:2d:a0:4d: e9:1c:86:5f:f6:95:72:7f:45:52:2c:6d:bf:6c:53: c3:aa:62:c4:59:80:12:29:5c:4e:91:f0:87:33:f6: c2:77:26:85:91:45:b9:0f:61:4d:56:c8:a5:4d:97: 3c:5b:10:c2:e8:73:1d:d4:c9:5b:05:38:f5:41:9e: 6c:00:ed:68:1e:95:59:d1:3d:0f:8d:f1:f3:bb:bf: 46:6d:a0:d5:58:94:b4:7a:42:6e:46:3b:04:d0:5d: 2e:28:2d:4c:6e:12:78:13:d8:07:25:ad:a3:98:a3: 1c:4e:56:d9:77:c5:08:49:20:27:27:21:f5:c9:bf: df:c4:a2:60:bb:d0:d1:63:05:18:69:52:01:f6:29: c4:7a:85:56:a9:ea:21:b3:60:ed:fd:ec:61:9c:15: 72:44:5e:18:79:bd:32:ba:4b:d3:0d:4c:b6:fe:74: e4:2d:0b:01:83:69:c5:2f:f4:e4:85:ba:6e:c8:8d: 3d:72:b2:fb:61:65:37:50:9f:48:cf:f4:b1:c5:85: 50:a3:2e:67:e8:f2:63:8e:88:2f:38:59:98:34:da: 90:53:9a:8c:6e:e7:13:59:60:bb:0e:a7:8f:8e:24: 73:7f:a4:b2:16:97:82:8c:b7:a4:82:fd:2c:5b:b5: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:46:17:BF:1C:E8:28:C6:05:9A:3D:4C:BA:54:E9:4C:C3:E6:3F:AA X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d5:a2:28:6e:bb:0f:8a:25:d9:9f:24:6d:fa:80:78:af:2e: 1e:c5:69:39:58:04:65:6a:4a:c8:fd:df:7b:99:58:3b:42:c6: 8f:41:de:f4:48:55:e7:23:04:0b:f4:98:02:ad:cc:84:e2:9f: 35:43:0b:07:7b:90:4f:26:9d:8e:6a:38:42:0f:89:e9:90:75: b4:23:c3:60:db:9a:9a:e7:c5:38:43:0d:66:6e:59:a8:ae:55: e2:59:52:44:ae:78:46:76:ef:4c:9d:d8:3b:fa:34:0e:9c:ba: ba:62:0f:d9:6e:a2:51:b5:9a:46:2a:45:20:c9:df:d1:d3:d4: f2:d1:db:05:0c:12:ba:b1:a3:1c:47:7e:c7:f9:6d:a4:04:48: 42:53:24:96:2b:44:f5:e0:e9:1d:c6:ee:26:d4:f7:50:fa:21: ef:7e:3f:aa:aa:12:86:d9:eb:99:6c:85:ce:2e:81:b1:6f:dc: ce:a0:9f:90:2c:ab:54:3d:1a:df:cc:5d:29:83:32:6e:7d:be: 9f:e5:f3:11:8a:da:83:a3:f7:0e:f8:75:42:b3:78:c1:48:f4: c8:2a:8c:a4:25:d2:19:0f:26:33:ef:b2:05:d6:0b:b9:89:c4: 50:14:0d:20:e3:28:f2:69:8e:2c:dd:ff:9b:81:54:20:e4:54: ec:00:71:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjQwNTA2MTYzNjMyWhcNMjQwNTEzMTYzNjMyWjAYMRYwFAYD VQQDEw02NjM5MDcxMS1lYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9B4TcIRxjs+ZIeEtoE3pHIZf9pVyf0VSLG2/bFPDqmLEWYASKVxOkfCHM/bC dyaFkUW5D2FNVsilTZc8WxDC6HMd1MlbBTj1QZ5sAO1oHpVZ0T0PjfHzu79GbaDV WJS0ekJuRjsE0F0uKC1MbhJ4E9gHJa2jmKMcTlbZd8UISSAnJyH1yb/fxKJgu9DR YwUYaVIB9inEeoVWqeohs2Dt/exhnBVyRF4Yeb0yukvTDUy2/nTkLQsBg2nFL/Tk hbpuyI09crL7YWU3UJ9Iz/SxxYVQoy5n6PJjjogvOFmYNNqQU5qMbucTWWC7DqeP jiRzf6SyFpeCjLekgv0sW7V3PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNGF78c 6CjGBZo9TLpU6UzD5j+qMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu1aIobrsPiiXZnyRt+oB4ry4exWk5WARlakrI/d97mVg7QsaPQd70 SFXnIwQL9JgCrcyE4p81QwsHe5BPJp2OajhCD4npkHW0I8Ng25qa58U4Qw1mblmo rlXiWVJErnhGdu9Mndg7+jQOnLq6Yg/ZbqJRtZpGKkUgyd/R09Ty0dsFDBK6saMc R37H+W2kBEhCUySWK0T14Okdxu4m1PdQ+iHvfj+qqhKG2euZbIXOLoGxb9zOoJ+Q LKtUPRrfzF0pgzJufb6f5fMRitqDo/cO+HVCs3jBSPTIKoykJdIZDyYz77IF1gu5 icRQFA0g4yjyaY4s3f+bgVQg5FTsAHE5 -----END CERTIFICATE-----Generated at Mon May 6 17:36:21 2024 by rpki-client on console-fra.rpki-client.org