$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: yJBV9cCKezOPZLEPT6yhyblB+eyglQ6nTJVCJFPHVf8= Subject key identifier: 99:04:8F:5B:60:D1:1B:C4:D5:8E:88:20:B1:2D:AE:8F:70:C0:14:69 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0A69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0A20 Signing time: Sat 18 May 2024 20:49:34 +0000 Manifest this update: Sat 18 May 2024 20:49:33 +0000 Manifest next update: Sat 25 May 2024 20:49:33 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: xPyG8d9P5TTTg61+V4zbOhqp7xwPAvBY6JkIdVU55j0=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: JbOgcVk0SFjuz3pFR2xuSgFphJgl+zaZw80ujiiRGfQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: cO+lO6yNoyaxQ9zIQdsncGR/46no6uoF1ZfttfCv9RE=) 4: 55255C181F5911ECBEEBA411C4F9AE02.roa (hash: JUC9HllhFfhIW4ksdDhOhRFB7Pc7KtWivSnxW6Vllbs=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: cg0pTB0tQ3lVw+//8QI1VGIKFNM43Q8JPHW5fx5VAek=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: wlc2/03rC40Vxpug9k2AwUUCInAJcOvi83wC6HkfHxY=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: e9thDBmL8sJM6wfIji6pTwGCU4p0X8HaVmN0zYAxnPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: May 18 20:49:33 2024 GMT Not After : May 25 20:49:33 2024 GMT Subject: CN=6649145e-ba6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:95:6e:a5:c8:5c:fb:17:77:04:31:99:0e:f7: 57:a3:9b:26:79:d2:da:fe:6d:a0:3c:5d:83:39:4b: 9e:e3:98:24:d0:2b:91:c5:6c:34:94:eb:df:30:97: fa:ca:4d:16:ce:99:e7:2d:f9:f7:b7:3c:16:5b:45: a9:c0:29:7c:c1:02:99:65:78:10:52:09:b7:1f:c7: b6:c5:ff:78:b9:28:b0:a1:04:ba:cd:d0:e7:8c:ce: 84:de:4c:14:50:c3:a7:08:1d:32:01:91:ea:a5:db: 27:64:a5:76:2c:e5:28:82:08:1c:d3:20:9f:6b:89: bc:45:a7:2c:d3:e7:79:4f:9e:2b:03:6a:8e:9f:eb: 8e:75:96:7d:e1:9b:a6:db:1c:98:3f:62:bf:12:98: 53:1f:54:20:c6:00:6b:fc:72:13:a1:7f:88:79:d5: 5f:2c:40:54:6b:15:77:86:7c:41:66:03:1f:11:e9: bb:1b:51:63:ae:1d:45:f9:a1:86:73:b2:e2:c8:1a: 07:50:7b:ce:7f:39:5a:37:e8:88:5d:42:96:74:f9: ee:94:cb:7a:70:af:98:c0:ee:48:65:0e:c3:a8:bc: e8:6a:78:23:8c:bc:16:d2:3f:e0:58:cf:c8:18:1e: d2:46:66:4d:94:b1:95:6d:e5:79:03:f7:28:5f:6a: ce:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:04:8F:5B:60:D1:1B:C4:D5:8E:88:20:B1:2D:AE:8F:70:C0:14:69 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b2:29:9d:ef:d0:a0:20:48:91:7b:5f:cb:d7:b3:ea:b5:ab: 0c:46:74:0f:d9:5d:0e:5d:f5:e8:8e:95:8f:7b:72:8c:bc:35: 98:4a:ba:71:5a:07:af:72:28:56:ee:53:d2:07:fb:1c:a4:96: 15:0d:8e:99:18:cd:f2:25:0c:e3:e5:a2:04:f6:66:eb:60:a8: 4d:e6:9a:72:76:90:91:96:48:69:4e:bb:dc:41:df:9f:55:82: 60:fe:aa:cf:3d:bc:e2:67:16:e9:fc:da:5b:75:23:af:95:aa: 5a:e4:a9:0d:5b:9b:01:12:2b:01:98:11:19:0c:3e:85:46:75: ad:bf:b2:43:22:5b:45:e9:ea:77:86:1e:20:bd:ae:2a:e2:d1: 2c:c8:b0:cb:e7:f8:8a:d7:26:21:10:78:55:ff:47:a6:cd:4d: 58:da:58:50:0d:0d:f8:61:6f:69:d5:25:a0:87:e7:ba:64:fe: 83:51:d0:ce:fc:8f:b5:a5:88:6b:c2:53:88:48:64:d0:db:7a: ca:ed:e4:9c:44:70:4c:fb:fd:2f:87:dc:76:f5:33:3d:b6:44: 26:a0:60:6d:1b:96:e3:05:4e:b7:a5:0f:16:5c:c4:d6:d1:d0: fc:90:e9:f8:78:e2:a9:65:22:71:35:33:37:ac:aa:ef:94:93: f6:43:8a:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjQwNTE4MjA0OTMzWhcNMjQwNTI1MjA0OTMzWjAYMRYwFAYD VQQDEw02NjQ5MTQ1ZS1iYTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZVupchc+xd3BDGZDvdXo5smedLa/m2gPF2DOUue45gk0CuRxWw0lOvfMJf6 yk0WzpnnLfn3tzwWW0WpwCl8wQKZZXgQUgm3H8e2xf94uSiwoQS6zdDnjM6E3kwU UMOnCB0yAZHqpdsnZKV2LOUogggc0yCfa4m8Racs0+d5T54rA2qOn+uOdZZ94Zum 2xyYP2K/EphTH1QgxgBr/HIToX+IedVfLEBUaxV3hnxBZgMfEem7G1Fjrh1F+aGG c7LiyBoHUHvOfzlaN+iIXUKWdPnulMt6cK+YwO5IZQ7DqLzoangjjLwW0j/gWM/I GB7SRmZNlLGVbeV5A/coX2rOHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkEj1tg 0RvE1Y6IILEtro9wwBRpMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRsimd79CgIEiRe1/L17PqtasMRnQP2V0OXfXojpWPe3KMvDWYSrpx WgevcihW7lPSB/scpJYVDY6ZGM3yJQzj5aIE9mbrYKhN5ppydpCRlkhpTrvcQd+f VYJg/qrPPbziZxbp/NpbdSOvlapa5KkNW5sBEisBmBEZDD6FRnWtv7JDIltF6ep3 hh4gva4q4tEsyLDL5/iK1yYhEHhV/0emzU1Y2lhQDQ34YW9p1SWgh+e6ZP6DUdDO /I+1pYhrwlOISGTQ23rK7eScRHBM+/0vh9x29TM9tkQmoGBtG5bjBU63pQ8WXMTW 0dD8kOn4eOKpZSJxNTM3rKrvlJP2Q4oA -----END CERTIFICATE-----Generated at Sat May 18 21:31:26 2024 by rpki-client on console-ams.rpki-client.org