$ rpki-client -vvf rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.mft File: dKGUOXIqgzAE05VKV4ToXm6ZvME.mft (raw, json) Hash identifier: vVY0yeBqjphsnR1iMq3WdYtm027QrEWQtuimOZ/YbBY= Subject key identifier: FD:C2:F1:AF:C3:32:F4:CD:CB:BE:A4:3E:04:1D:F0:BB:28:6D:6A:5B Authority key identifier: 74:A1:94:39:72:2A:83:30:04:D3:95:4A:57:84:E8:5E:6E:99:BC:C1 Certificate issuer: /CN=A914454E/serialNumber=74A19439722A833004D3954A5784E85E6E99BCC1 Certificate serial: 07A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dKGUOXIqgzAE05VKV4ToXm6ZvME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.mft Manifest number: 07A1 Signing time: Sat 18 May 2024 22:07:29 +0000 Manifest this update: Sat 18 May 2024 22:07:28 +0000 Manifest next update: Sat 25 May 2024 22:07:28 +0000 Files and hashes: 1: dKGUOXIqgzAE05VKV4ToXm6ZvME.crl (hash: /5Tmg/jXr+hVLU/O5/NQKQkM7WNgS7jCuOHMzgSv3Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.crl rsync://rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dKGUOXIqgzAE05VKV4ToXm6ZvME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914454E/serialNumber=74A19439722A833004D3954A5784E85E6E99BCC1 Validity Not Before: May 18 22:07:28 2024 GMT Not After : May 25 22:07:28 2024 GMT Subject: CN=664926a0-6fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6b:4f:fc:dc:6e:b6:63:27:4f:29:f3:85:fd: 96:df:97:2a:66:ca:fb:5b:fc:ba:1e:ce:a2:2b:ee: cf:ca:e5:ef:24:be:54:4f:bd:29:17:f6:4c:97:3d: c0:22:95:c2:70:06:f4:24:79:61:24:ee:7f:a2:49: 7f:14:81:47:1f:bc:5b:f7:7d:0c:36:5b:55:9c:4c: 63:51:9d:f4:9f:aa:65:db:a3:76:53:53:30:c6:fa: 15:c6:4c:8b:6c:49:18:99:e2:18:fa:65:07:ad:3c: df:2d:b3:f3:55:8a:bb:ea:ba:b6:15:f9:86:18:96: f6:27:65:16:9a:e1:93:90:a7:59:a9:86:68:27:29: 60:ca:14:d4:2c:c3:98:22:e4:66:e4:c6:4b:0a:a9: 36:e1:0c:5c:c9:81:9b:d2:b8:46:e9:7f:a8:22:85: ac:d3:2f:15:3c:f2:87:a1:4e:64:49:5a:65:62:ee: 95:b7:94:74:2e:87:1e:ea:ad:01:d9:73:45:f0:ca: 58:23:ed:83:5b:6f:55:1b:6a:76:8c:6e:b9:d7:2c: b2:ca:bf:85:96:db:76:d7:3e:0a:c6:08:30:24:86: 0a:d6:68:cc:a1:6a:e4:87:e2:93:86:f8:78:a2:63: 54:4f:c5:df:78:7c:18:80:13:3e:59:a3:7d:74:e6: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C2:F1:AF:C3:32:F4:CD:CB:BE:A4:3E:04:1D:F0:BB:28:6D:6A:5B X509v3 Authority Key Identifier: keyid:74:A1:94:39:72:2A:83:30:04:D3:95:4A:57:84:E8:5E:6E:99:BC:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dKGUOXIqgzAE05VKV4ToXm6ZvME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914454E/2AF9DBB0C4D511EA8021A718C4F9AE02/dKGUOXIqgzAE05VKV4ToXm6ZvME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ac:a0:0f:54:9e:02:bd:51:e2:68:5c:b6:92:22:2b:db:3d: 51:d0:b3:de:d8:d6:73:a8:e8:ee:05:23:89:6b:91:a9:fe:20: ef:69:b3:3b:77:d1:90:21:09:76:87:5d:be:71:1f:0e:b7:60: e3:46:c1:7d:90:08:5d:3f:6e:3f:58:57:ec:ce:39:a3:c6:27: 80:82:fa:b2:6b:04:fd:45:4a:a3:70:f3:91:91:17:58:e0:b3: c1:c5:1d:7a:90:a6:f0:95:58:2e:06:80:52:56:b1:d3:48:d3: 1e:61:d4:b7:85:b6:e3:5b:7a:2a:e4:57:16:5b:40:80:23:62: 28:48:ce:f1:5a:67:59:76:25:3d:cb:36:10:72:07:26:93:9c: 84:4a:6a:a5:f1:24:df:19:44:f6:f2:28:90:f8:f5:78:54:74: 03:e3:f3:30:45:fa:45:7a:b9:c0:18:39:64:d3:8d:2d:c8:72: 11:91:06:57:10:eb:73:39:f4:a4:bf:aa:19:5d:97:72:bc:93: 61:a8:b8:6b:db:09:6f:4f:6c:55:0c:4c:87:dd:51:60:cc:fc: 90:6d:72:a8:ca:18:95:ca:3f:71:40:7a:d3:eb:4b:92:79:eb: 29:95:87:7a:5a:b0:21:84:ce:2a:72:0a:90:d9:f1:a6:df:f8: e6:12:00:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ1NEUxMTAvBgNVBAUTKDc0QTE5NDM5NzIyQTgzMzAwNEQzOTU0QTU3ODRFODVF NkU5OUJDQzEwHhcNMjQwNTE4MjIwNzI4WhcNMjQwNTI1MjIwNzI4WjAYMRYwFAYD VQQDEw02NjQ5MjZhMC02ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12tP/NxutmMnTynzhf2W35cqZsr7W/y6Hs6iK+7PyuXvJL5UT70pF/ZMlz3A IpXCcAb0JHlhJO5/okl/FIFHH7xb930MNltVnExjUZ30n6pl26N2U1MwxvoVxkyL bEkYmeIY+mUHrTzfLbPzVYq76rq2FfmGGJb2J2UWmuGTkKdZqYZoJylgyhTULMOY IuRm5MZLCqk24QxcyYGb0rhG6X+oIoWs0y8VPPKHoU5kSVplYu6Vt5R0Loce6q0B 2XNF8MpYI+2DW29VG2p2jG651yyyyr+Fltt21z4KxggwJIYK1mjMoWrkh+KThvh4 omNUT8XfeHwYgBM+WaN9dOZkzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3C8a/D MvTNy76kPgQd8LsobWpbMB8GA1UdIwQYMBaAFHShlDlyKoMwBNOVSleE6F5umbzB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDU0RS8yQUY5REJCMEM0 RDUxMUVBODAyMUE3MThDNEY5QUUwMi9kS0dVT1hJcWd6QUUwNVZLVjRUb1htNlp2 TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLR1VPWElxZ3pBRTA1VktWNFRvWG02WnZNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDU0RS8yQUY5REJCMEM0RDUxMUVBODAyMUE3MThDNEY5QUUwMi9kS0dVT1hJcWd6 QUUwNVZLVjRUb1htNlp2TUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrKAPVJ4CvVHiaFy2kiIr2z1R0LPe2NZzqOjuBSOJa5Gp/iDvabM7 d9GQIQl2h12+cR8Ot2DjRsF9kAhdP24/WFfszjmjxieAgvqyawT9RUqjcPORkRdY 4LPBxR16kKbwlVguBoBSVrHTSNMeYdS3hbbjW3oq5FcWW0CAI2IoSM7xWmdZdiU9 yzYQcgcmk5yESmql8STfGUT28iiQ+PV4VHQD4/MwRfpFernAGDlk040tyHIRkQZX EOtzOfSkv6oZXZdyvJNhqLhr2wlvT2xVDEyH3VFgzPyQbXKoyhiVyj9xQHrT60uS eesplYd6WrAhhM4qcgqQ2fGm3/jmEgBk -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org