$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: ojP4Gymcb7pzAoV2R9wPunnCcRCT52hssc5NffXIYdE= Subject key identifier: 04:E9:2F:49:B2:93:70:1D:E8:89:21:0B:05:E7:CD:15:2E:51:C6:E7 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: AE Signing time: Fri 17 May 2024 06:43:24 +0000 Manifest this update: Fri 17 May 2024 06:43:23 +0000 Manifest next update: Fri 24 May 2024 06:43:23 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: wO4J9/4ep+Sk2Tc5NOOwiPTFkhR7QSFHlDz3pN+3v54=) 2: CDB8866E0BCF11EE8FB8EE16C4F9AE02.roa (hash: 3Gab0tar+DbE6VYwqMTHVdYIYHtJEMldQy3rlsPG4vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: May 17 06:43:23 2024 GMT Not After : May 24 06:43:23 2024 GMT Subject: CN=6646fc8c-fc13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1b:7a:eb:86:4a:c5:0a:e4:f9:c3:70:2e:14: 81:c9:aa:c1:7b:63:c3:82:ff:03:f4:d3:8c:aa:7d: 54:f3:b7:70:6e:35:0e:e7:1d:1a:75:89:10:9b:2c: 8e:63:1e:86:0c:c9:ea:62:46:ec:da:b8:9a:88:c2: aa:f5:14:2e:f5:dd:bf:23:89:a1:09:6d:82:9b:38: 31:43:73:29:1c:73:bd:07:8a:30:0e:c5:bf:fc:cb: 95:8e:d8:da:43:5f:9f:68:3a:df:98:0a:87:1b:5b: 97:27:76:14:25:fe:9b:96:1e:d8:6b:42:9d:90:e1: 00:7b:31:94:7a:34:1e:73:23:46:24:1d:d6:4c:45: 92:e8:0e:47:e6:32:82:cb:b1:f1:80:18:93:5d:9e: 2f:e3:b2:41:02:8d:25:95:b2:b0:eb:4e:4b:77:c9: fe:cd:5f:b5:a3:70:6c:0d:c4:0f:55:a4:18:5b:9e: c1:a4:2f:31:20:83:af:b4:cc:4f:fa:da:a2:27:be: 9e:07:8a:06:4d:9f:d0:94:03:90:1a:ac:fe:23:aa: dd:83:98:ed:b0:8b:43:88:dc:06:2b:32:f5:d2:ac: 8d:0c:dd:46:e0:7c:0d:12:64:69:57:cc:b4:4d:4c: 0b:df:53:4e:e0:5a:66:a7:04:a0:4b:3c:ad:93:f9: 36:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E9:2F:49:B2:93:70:1D:E8:89:21:0B:05:E7:CD:15:2E:51:C6:E7 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:da:0b:5e:0b:46:ed:9a:89:4f:21:8d:f2:b1:d7:99:2d:28: ff:23:5f:5b:74:ea:9f:ea:56:93:6e:99:4c:e7:20:66:d7:e5: ef:21:63:22:dc:90:86:c4:0c:51:85:f4:ca:94:78:16:f9:41: b8:e0:ae:61:f4:1d:51:dc:07:0f:c9:26:ba:1c:1f:4a:f6:74: d8:0a:c7:37:d9:d7:72:35:d8:9b:fe:52:46:bb:89:83:96:0d: d4:99:2d:11:33:4f:a8:38:f2:0a:e0:03:2e:d0:ba:46:c8:f7: 27:fb:be:1e:f8:49:96:84:c2:4a:e0:bb:50:13:69:42:ee:64: a3:a6:2b:0e:0f:e6:0f:98:ce:5f:6e:b6:c8:46:cc:29:c3:ff: 76:a2:9a:e6:ce:ae:3b:c4:cb:fc:ab:27:6d:ce:94:4e:b0:ae: a4:da:80:d5:c4:0c:69:a2:a4:55:6a:d5:6f:99:e3:9e:0e:cf: 49:dc:b4:07:d6:2b:eb:5c:34:9e:2c:2b:e1:70:76:93:4e:86: 51:1b:ee:40:6e:12:72:b7:9e:9c:97:58:54:e2:46:46:bd:60: 5c:ac:2a:80:99:70:7c:da:68:2d:4d:28:00:fb:16:27:73:ba: 4b:a8:42:9a:8b:0d:d9:8b:5e:ab:33:37:06:e8:b1:01:ef:40: 2c:6b:83:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjQwNTE3MDY0MzIzWhcNMjQwNTI0MDY0MzIzWjAYMRYwFAYD VQQDEw02NjQ2ZmM4Yy1mYzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xt664ZKxQrk+cNwLhSByarBe2PDgv8D9NOMqn1U87dwbjUO5x0adYkQmyyO Yx6GDMnqYkbs2riaiMKq9RQu9d2/I4mhCW2CmzgxQ3MpHHO9B4owDsW//MuVjtja Q1+faDrfmAqHG1uXJ3YUJf6blh7Ya0KdkOEAezGUejQecyNGJB3WTEWS6A5H5jKC y7HxgBiTXZ4v47JBAo0llbKw605Ld8n+zV+1o3BsDcQPVaQYW57BpC8xIIOvtMxP +tqiJ76eB4oGTZ/QlAOQGqz+I6rdg5jtsItDiNwGKzL10qyNDN1G4HwNEmRpV8y0 TUwL31NO4FpmpwSgSzytk/k29QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATpL0my k3Ad6IkhCwXnzRUuUcbnMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY2gteC0btmolPIY3ysdeZLSj/I19bdOqf6laTbplM5yBm1+XvIWMi 3JCGxAxRhfTKlHgW+UG44K5h9B1R3AcPySa6HB9K9nTYCsc32ddyNdib/lJGu4mD lg3UmS0RM0+oOPIK4AMu0LpGyPcn+74e+EmWhMJK4LtQE2lC7mSjpisOD+YPmM5f brbIRswpw/92oprmzq47xMv8qydtzpROsK6k2oDVxAxpoqRVatVvmeOeDs9J3LQH 1ivrXDSeLCvhcHaTToZRG+5AbhJyt56cl1hU4kZGvWBcrCqAmXB82mgtTSgA+xYn c7pLqEKaiw3Zi16rMzcG6LEB70Asa4Pq -----END CERTIFICATE-----Generated at Fri May 17 08:13:55 2024 by rpki-client on console-fra.rpki-client.org