$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: bvdNSAvGM1nxxMv66JXT6jiUuqgKWvqL6m0sUoLWlxs= Subject key identifier: 17:97:E9:10:E3:33:B0:7F:B2:3E:F9:B0:F8:3A:70:C5:9C:6C:53:0A Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0588 Signing time: Fri 31 May 2024 21:31:08 +0000 Manifest this update: Fri 31 May 2024 21:31:08 +0000 Manifest next update: Fri 07 Jun 2024 21:31:08 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: r9Gx7tg+YfDL56US+2UYSW3SdH4m703ERakol9K8Au8=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: W590cMYjFz6FF4sW9oqplqFnjP+zPSYVDh+Je0kzPIE=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: eFxwV6TYZjxk4/Ekn5nyzAgAfEQn65e+4zP6/WFsXnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: May 31 21:31:08 2024 GMT Not After : Jun 7 21:31:08 2024 GMT Subject: CN=665a419c-9254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c8:8b:d4:e3:2b:4a:72:b1:d9:c0:3c:c6:96: 12:b5:85:81:dc:c6:cf:57:63:b5:17:76:e4:49:87: 05:9d:8e:ef:58:48:e8:cd:23:ab:3e:11:1f:e6:7f: 38:6c:50:bb:20:f8:e5:ae:8e:f2:6d:7b:a0:19:4d: 63:f5:e8:64:2f:7e:fc:51:4c:75:8d:0d:c3:b2:2a: e7:53:3a:4e:24:fd:c3:f7:14:4b:3e:9a:e9:43:e3: c3:08:8a:3c:52:21:d8:2e:38:3b:1f:82:3e:19:b8: 1e:0a:2c:30:5e:d7:c1:0e:84:78:ed:9a:1c:66:5e: 58:93:28:22:8c:2f:45:36:28:26:b4:5c:9b:e1:d1: 8a:61:f8:cb:a7:19:6c:3d:d8:4f:7e:38:0c:62:0a: 6b:88:a7:c2:55:83:d6:59:85:b5:e9:2c:24:66:8e: 71:48:93:9a:d8:45:c5:8f:4f:ee:d4:d9:7e:bc:fb: 0a:bb:10:23:93:2a:f3:c1:9a:50:c9:09:a6:52:5b: 51:52:4d:ca:ab:05:c0:73:aa:a1:a2:a2:65:3a:ba: a1:fb:dc:ee:f9:37:55:9b:cb:42:7f:d9:08:06:7d: 27:8c:a7:12:4f:31:d4:ea:1a:a3:9a:f3:af:7a:dc: 93:e6:84:a3:89:24:2e:37:b1:92:09:49:ac:92:28: 8f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:97:E9:10:E3:33:B0:7F:B2:3E:F9:B0:F8:3A:70:C5:9C:6C:53:0A X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b7:9a:cb:da:b6:5f:c6:d2:76:48:d0:b5:ff:ab:96:13:6e: 6c:7d:80:17:bb:f6:b1:30:f3:a7:cd:7f:f0:c1:6f:8c:e2:df: f7:7b:fb:f8:84:47:d1:cb:8a:5c:4e:2f:1b:00:c9:fd:6c:31: 7a:41:0d:3f:08:a8:63:1c:fd:35:75:f9:68:4e:76:3d:d4:9b: ab:4f:b8:58:ad:fe:28:20:8f:96:f7:ab:28:11:22:2c:ba:c7: f4:6a:56:e6:56:3e:a8:08:75:c2:ef:aa:7f:41:27:84:39:0a: 72:f3:e4:e7:01:48:2b:2c:45:fe:3b:b1:72:b8:8f:79:97:9e: 96:07:08:04:58:5c:e0:26:b5:01:25:b8:c3:92:3b:a2:7d:9f: bd:aa:1b:23:67:be:db:01:d8:11:45:fb:4c:07:c0:b6:82:28: a3:1b:ae:52:70:a6:c7:21:4a:6f:41:78:25:93:1a:46:09:ef: bd:34:2a:d9:2c:09:0c:12:39:08:fd:ef:4c:d2:53:26:d2:25: 68:22:6c:25:d9:95:52:72:7f:60:43:1d:2b:d1:4f:33:4d:0c: 95:77:b3:5d:30:ff:35:6e:a2:98:b7:35:af:32:eb:01:df:63: 7e:b0:d3:84:19:65:af:7f:18:55:fd:00:f4:ed:85:4f:1c:47: 78:f7:74:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjQwNTMxMjEzMTA4WhcNMjQwNjA3MjEzMTA4WjAYMRYwFAYD VQQDEw02NjVhNDE5Yy05MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvciL1OMrSnKx2cA8xpYStYWB3MbPV2O1F3bkSYcFnY7vWEjozSOrPhEf5n84 bFC7IPjlro7ybXugGU1j9ehkL378UUx1jQ3DsirnUzpOJP3D9xRLPprpQ+PDCIo8 UiHYLjg7H4I+GbgeCiwwXtfBDoR47ZocZl5YkygijC9FNigmtFyb4dGKYfjLpxls PdhPfjgMYgpriKfCVYPWWYW16SwkZo5xSJOa2EXFj0/u1Nl+vPsKuxAjkyrzwZpQ yQmmUltRUk3KqwXAc6qhoqJlOrqh+9zu+TdVm8tCf9kIBn0njKcSTzHU6hqjmvOv etyT5oSjiSQuN7GSCUmskiiPhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeX6RDj M7B/sj75sPg6cMWcbFMKMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAot5rL2rZfxtJ2SNC1/6uWE25sfYAXu/axMPOnzX/wwW+M4t/3e/v4 hEfRy4pcTi8bAMn9bDF6QQ0/CKhjHP01dfloTnY91JurT7hYrf4oII+W96soESIs usf0albmVj6oCHXC76p/QSeEOQpy8+TnAUgrLEX+O7FyuI95l56WBwgEWFzgJrUB JbjDkjuifZ+9qhsjZ77bAdgRRftMB8C2giijG65ScKbHIUpvQXglkxpGCe+9NCrZ LAkMEjkI/e9M0lMm0iVoImwl2ZVScn9gQx0r0U8zTQyVd7NdMP81bqKYtzWvMusB 32N+sNOEGWWvfxhV/QD07YVPHEd493QJ -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:19 2024 by rpki-client on console-ams.rpki-client.org