$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: FespXykuSdhGQYQJqfk+vvktH54eLZ6k1K91N0H4cbU= Subject key identifier: 6E:7A:8B:D2:3C:81:48:C6:31:E1:15:7A:70:68:D1:A6:63:1C:CA:08 Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 0618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 060B Signing time: Sat 18 May 2024 23:56:00 +0000 Manifest this update: Sat 18 May 2024 23:56:00 +0000 Manifest next update: Sat 25 May 2024 23:56:00 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: IyNsKFoE+fZn9XGcemhGacvbcSsKuxafqz5/TOR3/SM=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: AFnKyv13BwnIhnPbTpxnyVf7p3Hft3Ho64nrgxctp3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: May 18 23:56:00 2024 GMT Not After : May 25 23:56:00 2024 GMT Subject: CN=66494010-92fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:17:a2:42:9c:e3:33:f9:20:dc:60:87:a5:8a: 45:0a:fc:1d:bb:0a:44:88:37:96:af:e5:e7:a9:74: de:e4:52:dc:95:10:fb:ed:56:ca:54:c5:e5:bd:96: 55:55:44:bc:37:f5:c7:c2:1b:63:2f:87:8d:c3:6f: 4f:a3:6f:64:6f:27:1d:66:e7:0b:f1:9b:ea:5a:df: fc:a8:ee:fe:ab:4e:29:d7:30:f9:be:64:4a:3f:0a: b9:9b:d7:35:e5:d8:6a:b9:35:c9:c4:6c:92:c1:ba: 97:64:23:12:3f:20:9c:3f:d8:a2:b6:d4:0f:fc:05: 2f:f3:07:f9:04:f7:56:ed:1f:77:d4:fa:f4:5b:78: 8f:83:49:52:ee:06:3e:57:7f:12:c5:04:91:5c:3a: d1:89:10:3d:f6:69:d9:1c:bd:90:f4:9e:96:b8:ab: 03:09:ac:5f:70:47:11:cb:39:b5:57:9d:3e:88:ad: 62:d4:1a:0c:52:bf:b7:52:98:22:34:27:4e:73:0b: 14:9c:0b:0f:7b:a4:4f:f5:2f:a8:55:ae:44:1b:91: 17:47:ff:2d:7d:b9:6f:6a:ad:72:60:12:29:bc:23: 6c:45:43:94:6a:f7:87:20:71:66:87:2f:9a:a0:96: 92:40:b8:30:89:d5:4f:97:42:9c:c5:7b:a5:14:08: 9a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7A:8B:D2:3C:81:48:C6:31:E1:15:7A:70:68:D1:A6:63:1C:CA:08 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ed:35:e7:cb:76:96:fe:ae:2b:42:e0:22:24:29:19:a3:bd: 8d:3f:61:91:d0:97:c7:07:77:a1:6b:d0:74:cd:48:f4:b5:db: ab:5c:4c:b0:f6:26:17:69:42:a0:b4:87:db:8e:90:03:35:02: f6:a7:f3:cc:15:11:99:af:9a:37:f3:1d:67:ed:f6:87:5a:90: eb:99:82:04:d2:e2:bd:76:f5:37:92:d3:9f:c3:28:4f:be:68: 5f:8d:f2:49:22:bd:dd:a3:57:d0:39:62:64:74:00:8e:6a:b7: a3:f5:23:57:f0:c9:53:5b:8a:71:50:93:bb:46:94:4c:e5:79: 0e:cd:21:2c:39:18:b9:5d:3e:51:f8:6d:55:c7:4a:5f:d4:39: 82:32:52:7b:99:b1:37:3a:aa:5a:b7:39:11:e6:af:ec:28:29: f1:f0:fb:de:f2:51:f2:67:8c:8b:28:b8:6e:4e:54:71:d5:70: af:2e:4f:34:9f:ab:00:67:18:4c:9b:40:a7:fd:60:7a:93:7e: e7:a8:5f:f7:58:0d:99:8e:ea:08:3a:fd:38:88:1d:3b:4e:65: b9:af:d7:1c:d6:28:e8:8a:5c:da:26:81:6e:55:93:dd:1e:30: 8a:64:74:2e:81:4c:aa:e7:08:5a:89:c2:93:54:d4:0e:5e:0d: fe:87:75:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjQwNTE4MjM1NjAwWhcNMjQwNTI1MjM1NjAwWjAYMRYwFAYD VQQDEw02NjQ5NDAxMC05MmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3heiQpzjM/kg3GCHpYpFCvwduwpEiDeWr+XnqXTe5FLclRD77VbKVMXlvZZV VUS8N/XHwhtjL4eNw29Po29kbycdZucL8ZvqWt/8qO7+q04p1zD5vmRKPwq5m9c1 5dhquTXJxGySwbqXZCMSPyCcP9iittQP/AUv8wf5BPdW7R931Pr0W3iPg0lS7gY+ V38SxQSRXDrRiRA99mnZHL2Q9J6WuKsDCaxfcEcRyzm1V50+iK1i1BoMUr+3Upgi NCdOcwsUnAsPe6RP9S+oVa5EG5EXR/8tfblvaq1yYBIpvCNsRUOUaveHIHFmhy+a oJaSQLgwidVPl0KcxXulFAiabwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG56i9I8 gUjGMeEVenBo0aZjHMoIMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd7TXny3aW/q4rQuAiJCkZo72NP2GR0JfHB3eha9B0zUj0tdurXEyw 9iYXaUKgtIfbjpADNQL2p/PMFRGZr5o38x1n7faHWpDrmYIE0uK9dvU3ktOfwyhP vmhfjfJJIr3do1fQOWJkdACOarej9SNX8MlTW4pxUJO7RpRM5XkOzSEsORi5XT5R +G1Vx0pf1DmCMlJ7mbE3OqpatzkR5q/sKCnx8Pve8lHyZ4yLKLhuTlRx1XCvLk80 n6sAZxhMm0Cn/WB6k37nqF/3WA2ZjuoIOv04iB07TmW5r9cc1ijoilzaJoFuVZPd HjCKZHQugUyq5whaicKTVNQOXg3+h3Wa -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org