$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft File: DDegHLYzYjRPtzlnYP2U2cm5fHo.mft (raw, json) Hash identifier: Hiz1FgUvTXnz55L42EJGlIwmuF9RUGD2XOE3hoYY5FE= Subject key identifier: 3E:3F:CC:12:E0:D4:3A:53:6A:6C:EF:E8:CA:A6:F8:CF:D4:C0:A0:F7 Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft Manifest number: 88 Signing time: Sun 19 May 2024 07:04:50 +0000 Manifest this update: Sun 19 May 2024 07:04:50 +0000 Manifest next update: Sun 26 May 2024 07:04:50 +0000 Files and hashes: 1: DDegHLYzYjRPtzlnYP2U2cm5fHo.crl (hash: yseTUtS5LRLwiUWfMYiFCVDrxcCuKlMaoA+0ucqgDbM=) 2: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (hash: MKJ6wSfP6XkzEtx9sCGk4W8PlTZnlQN1NFofE/hMOCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: May 19 07:04:50 2024 GMT Not After : May 26 07:04:50 2024 GMT Subject: CN=6649a492-d086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:33:8f:e3:80:01:2b:fb:5a:76:58:a7:8c:8a: ac:2d:4e:fe:f3:3f:0d:a9:0c:30:db:db:94:70:ba: 64:2e:3a:61:43:81:4c:0a:19:6d:54:67:aa:bf:60: db:fa:ce:ba:0a:fe:0e:19:7e:e5:d8:11:df:71:72: f8:0b:bb:5e:16:77:08:a1:e9:99:7c:9b:df:e5:fd: 7e:ba:c1:c7:d3:ae:91:86:c5:ec:86:0a:0e:98:4c: 8b:d8:07:ea:87:13:70:29:78:fc:15:3e:d6:19:05: b2:96:8f:80:98:93:73:bc:85:c8:5c:69:85:39:0e: 20:d8:da:2d:ae:62:f3:5d:1d:d7:27:7b:90:97:05: 63:33:d3:16:05:cd:ad:0e:8f:81:85:cc:50:ee:81: c4:32:5e:13:e0:b3:44:87:56:46:4d:4c:2b:cd:f1: 09:d2:e5:8d:77:16:b3:e2:bb:04:fa:44:18:05:ec: e2:88:2b:35:cb:fd:ac:e4:38:b5:6a:9c:aa:48:76: 1a:be:29:da:7a:18:a8:06:23:79:9e:77:f6:46:ec: 7e:ed:71:d2:a7:24:5b:99:d2:60:11:30:03:0f:73: 1e:7f:70:94:2a:62:bd:63:22:02:78:09:e8:9e:0a: 30:08:93:76:37:4c:7d:0b:a5:3f:25:b5:80:43:99: 9b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3F:CC:12:E0:D4:3A:53:6A:6C:EF:E8:CA:A6:F8:CF:D4:C0:A0:F7 X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:6f:fe:07:3a:19:1c:43:7d:8a:f6:6a:82:89:09:06:bc:4b: 40:87:35:73:3d:e0:2d:f9:7f:0b:9c:ed:3b:18:aa:77:35:36: 46:d1:f8:c8:f1:3b:c8:2e:cd:4d:e9:77:f5:7d:39:70:c3:52: f9:a4:00:55:fe:6e:00:3b:a5:fa:8d:bf:00:a2:ad:45:4e:bb: 52:fc:44:46:f0:fe:0f:5f:80:fb:cc:01:e5:cf:65:5e:fb:05: 4c:47:4c:36:0d:47:68:41:74:52:08:63:f5:0c:0c:83:03:30: c3:21:fb:8a:b5:6c:b8:4e:1d:aa:11:03:a8:c9:e0:96:2f:3e: cf:df:b4:7f:29:a9:32:7e:2a:66:ad:46:3c:b7:9d:65:c2:d3: 7b:0c:e2:f8:77:30:b1:b1:94:4b:05:96:6f:86:bc:16:56:70: 98:34:f7:ae:60:2c:ed:7b:16:f1:70:63:98:18:1e:bc:97:e6: 5b:a8:f7:d5:1d:88:d0:39:35:bd:03:9c:6c:30:2b:9a:09:1f: 6a:7b:d9:17:f7:19:80:09:94:cb:e1:3f:32:a6:98:d2:fb:ba: 1a:62:42:62:61:85:97:4b:3f:51:20:48:9c:8c:9d:fd:b0:ac: 39:fe:ce:92:11:f0:12:6b:1d:18:81:98:3d:ba:74:9f:05:5b: e6:ba:dd:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjQwNTE5MDcwNDUwWhcNMjQwNTI2MDcwNDUwWjAYMRYwFAYD VQQDEw02NjQ5YTQ5Mi1kMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTOP44ABK/tadlinjIqsLU7+8z8NqQww29uUcLpkLjphQ4FMChltVGeqv2Db +s66Cv4OGX7l2BHfcXL4C7teFncIoemZfJvf5f1+usHH066RhsXshgoOmEyL2Afq hxNwKXj8FT7WGQWylo+AmJNzvIXIXGmFOQ4g2NotrmLzXR3XJ3uQlwVjM9MWBc2t Do+BhcxQ7oHEMl4T4LNEh1ZGTUwrzfEJ0uWNdxaz4rsE+kQYBeziiCs1y/2s5Di1 apyqSHYavinaehioBiN5nnf2Rux+7XHSpyRbmdJgETADD3Mef3CUKmK9YyICeAno ngowCJN2N0x9C6U/JbWAQ5mbfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4/zBLg 1DpTamzv6Mqm+M/UwKD3MB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellq UlB0emxuWVAyVTJjbTVmSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDb/4HOhkcQ32K9mqCiQkGvEtAhzVzPeAt+X8LnO07GKp3NTZG0fjI 8TvILs1N6Xf1fTlww1L5pABV/m4AO6X6jb8Aoq1FTrtS/ERG8P4PX4D7zAHlz2Ve +wVMR0w2DUdoQXRSCGP1DAyDAzDDIfuKtWy4Th2qEQOoyeCWLz7P37R/Kakyfipm rUY8t51lwtN7DOL4dzCxsZRLBZZvhrwWVnCYNPeuYCztexbxcGOYGB68l+ZbqPfV HYjQOTW9A5xsMCuaCR9qe9kX9xmACZTL4T8yppjS+7oaYkJiYYWXSz9RIEicjJ39 sKw5/s6SEfASax0YgZg9unSfBVvmut0b -----END CERTIFICATE-----Generated at Sun May 19 07:40:37 2024 by rpki-client on console-fra.rpki-client.org