$ rpki-client -vvf rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft File: dt6sBgRg9vilvVgpnFOryvmx01g.mft (raw, json) Hash identifier: KtqI9ieiJEvUJNzQdgDqSLUTgxO9abW2wTac/W7oNs0= Subject key identifier: C5:C3:02:B1:D3:49:86:7A:DE:C6:E0:A3:1B:44:93:0B:07:C9:71:C7 Authority key identifier: 76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 Certificate issuer: /CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft Manifest number: 06A8 Signing time: Thu 02 May 2024 23:22:15 +0000 Manifest this update: Thu 02 May 2024 23:22:14 +0000 Manifest next update: Thu 09 May 2024 23:22:14 +0000 Files and hashes: 1: dt6sBgRg9vilvVgpnFOryvmx01g.crl (hash: 45MkpDzVMp14YtLEVpOBY/b5ainAbh67XGcbESvohDA=) 2: 0A94FC36198711EB80EAEF4CC4F9AE02.roa (hash: Fdde2vciDLHgUHE6iyQyE9NfpYpLxOtM35vTOMcRPVs=) 3: 6DEC60FC198811EBAD4C384FC4F9AE02.roa (hash: TqWlSvEbulsxgMFSPWR73Zcfo4/Sx7qDnwHFKBbxddo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Validity Not Before: May 2 23:22:14 2024 GMT Not After : May 9 23:22:14 2024 GMT Subject: CN=66342027-f508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0f:7d:5d:0c:e1:ba:0d:79:f8:ed:d1:c3:07: 6f:97:25:f0:3d:89:85:12:90:ec:e6:f9:fc:7c:e8: 3d:ce:52:d0:4e:1b:62:ff:58:e0:9b:f6:d4:b7:89: 58:d9:21:95:32:43:5c:35:16:29:db:12:d4:0d:a4: d3:8a:71:08:8f:51:d9:cc:1e:63:c5:b0:c4:50:cb: 85:97:1d:2b:99:bd:c3:0c:34:9f:e2:1a:75:59:c3: de:d8:9f:97:8b:bd:52:fe:27:ac:87:dd:8f:6b:1e: c3:d7:f1:0c:c9:c6:a8:77:1b:72:ff:c1:70:ee:cf: 13:6d:4c:f6:50:1b:f7:ec:62:1c:c0:db:b1:a2:34: ec:c8:8c:13:7e:9a:b0:0e:3e:c7:9c:30:14:a8:07: 17:fc:4f:99:80:d7:2e:4e:69:45:7e:bc:74:77:dc: 47:59:a6:68:d4:55:b3:10:7b:e1:43:70:07:37:ee: d1:18:50:71:4a:d2:bb:5a:0b:00:c3:04:fe:b1:9e: b7:90:e9:a1:5e:47:e7:c9:0b:4a:78:4a:ee:81:ab: 5c:0c:75:54:07:5d:ee:55:bb:94:05:72:7b:b0:3c: 38:86:ec:7a:9d:c4:d0:86:fc:76:8b:fd:e9:bc:c4: 66:41:dc:4f:8d:76:0f:5a:d8:59:3a:47:97:43:96: 7d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C3:02:B1:D3:49:86:7A:DE:C6:E0:A3:1B:44:93:0B:07:C9:71:C7 X509v3 Authority Key Identifier: keyid:76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:d5:cd:b4:1c:90:e0:97:65:1d:c0:b3:29:dc:e0:2c:9b:a1: a6:f6:bd:67:c2:4f:9a:bf:51:73:6d:28:b7:3e:a5:1a:ea:eb: 74:42:eb:2c:68:b0:60:88:2f:5f:fc:b0:89:08:c9:f1:d6:48: 47:74:7d:3a:b3:5d:22:cc:0c:11:32:61:37:e4:5c:c9:45:ec: 64:79:88:74:aa:b3:cd:d4:f7:6a:46:27:83:b2:46:91:8d:09: 15:34:4c:a5:4f:d7:27:31:b8:a0:36:c6:ae:ca:5a:b9:86:24: f2:bb:89:d7:79:ee:10:fc:1d:2f:31:70:27:0c:13:9f:d8:20: 40:4c:5e:f8:fe:7a:00:d3:a0:d1:ef:5a:9c:4d:9d:62:d3:ed: 95:54:16:58:ff:2d:1c:f5:bc:c4:22:24:12:20:42:7a:dd:1c: a5:21:5a:e6:54:16:17:b6:1d:94:b3:79:2e:2d:71:76:d6:6d: b1:b7:b3:63:d8:69:5a:e3:d5:31:2b:4f:fb:58:30:28:2f:8b: f3:eb:9f:7b:f5:dd:e7:d0:77:bb:57:3d:64:c0:b8:b8:47:46: 7f:11:e4:ce:de:06:70:bc:12:e0:79:7e:0c:5e:c0:a0:40:3d: cf:e6:ee:ab:51:10:76:e8:c7:2b:14:f0:cf:70:b9:2d:ad:97: 15:b6:6f:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzExNzIxMTAvBgNVBAUTKDc2REVBQzA2MDQ2MEY2RjhBNUJENTgyOTlDNTNBQkNB RjlCMUQzNTgwHhcNMjQwNTAyMjMyMjE0WhcNMjQwNTA5MjMyMjE0WjAYMRYwFAYD VQQDEw02NjM0MjAyNy1mNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ99XQzhug15+O3RwwdvlyXwPYmFEpDs5vn8fOg9zlLQThti/1jgm/bUt4lY 2SGVMkNcNRYp2xLUDaTTinEIj1HZzB5jxbDEUMuFlx0rmb3DDDSf4hp1WcPe2J+X i71S/iesh92Pax7D1/EMycaodxty/8Fw7s8TbUz2UBv37GIcwNuxojTsyIwTfpqw Dj7HnDAUqAcX/E+ZgNcuTmlFfrx0d9xHWaZo1FWzEHvhQ3AHN+7RGFBxStK7WgsA wwT+sZ63kOmhXkfnyQtKeErugatcDHVUB13uVbuUBXJ7sDw4hux6ncTQhvx2i/3p vMRmQdxPjXYPWthZOkeXQ5Z91QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXDArHT SYZ63sbgoxtEkwsHyXHHMB8GA1UdIwQYMBaAFHberAYEYPb4pb1YKZxTq8r5sdNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTE3Mi84MTU4M0FCRTE4 QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2aWx2VmdwbkZPcnl2bXgw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R0NnNCZ1JnOXZpbHZWZ3BuRk9yeXZteDAxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTE3Mi84MTU4M0FCRTE4QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2 aWx2VmdwbkZPcnl2bXgwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT1c20HJDgl2UdwLMp3OAsm6Gm9r1nwk+av1FzbSi3PqUa6ut0Quss aLBgiC9f/LCJCMnx1khHdH06s10izAwRMmE35FzJRexkeYh0qrPN1PdqRieDskaR jQkVNEylT9cnMbigNsauylq5hiTyu4nXee4Q/B0vMXAnDBOf2CBATF74/noA06DR 71qcTZ1i0+2VVBZY/y0c9bzEIiQSIEJ63RylIVrmVBYXth2Us3kuLXF21m2xt7Nj 2Gla49UxK0/7WDAoL4vz65979d3n0He7Vz1kwLi4R0Z/EeTO3gZwvBLgeX4MXsCg QD3P5u6rURB26McrFPDPcLktrZcVtm8s -----END CERTIFICATE-----Generated at Thu May 2 23:48:43 2024 by rpki-client on console-fra.rpki-client.org