$ rpki-client -vvf rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft File: dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft (raw, json) Hash identifier: h1Me5jg8rXYtyC6t7k8d2Bed1aV3QJ59YEv9KhEt6P8= Subject key identifier: 50:C1:67:8A:0B:28:15:45:D2:61:91:80:75:53:6A:6E:36:7E:8A:45 Authority key identifier: 74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 Certificate issuer: /CN=A91838AE/serialNumber=749427218111D2F2F5A570B99517CA08E5773724 Certificate serial: 061A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft Manifest number: 0614 Signing time: Sat 18 May 2024 23:51:27 +0000 Manifest this update: Sat 18 May 2024 23:51:27 +0000 Manifest next update: Sat 25 May 2024 23:51:27 +0000 Files and hashes: 1: dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl (hash: x+jJybzueBStR1oL+bbWpLmHRqwgYdXLQGMNCH9ZbiE=) 2: 33EA4CE055AE11EBA5EFA876C4F9AE02.roa (hash: z83yYebf2sYxVFu5kCi6t2rocwUEw/IAoFmnGJ1jIIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91838AE/serialNumber=749427218111D2F2F5A570B99517CA08E5773724 Validity Not Before: May 18 23:51:27 2024 GMT Not After : May 25 23:51:27 2024 GMT Subject: CN=66493eff-bbce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:aa:73:c4:33:f0:fb:1c:16:6c:02:d6:ba:ce: f1:39:28:d8:50:75:c1:6e:bc:04:69:44:be:4a:90: 68:e8:37:41:2a:25:38:80:36:e5:0f:b9:e7:58:19: 4e:5f:69:01:a0:0a:a7:06:be:1d:ac:81:5a:24:01: 82:f9:26:99:de:c7:7c:df:76:0a:4e:49:ef:03:76: 66:0c:a5:be:01:4a:71:90:95:10:09:75:c4:19:1e: bd:dd:60:cc:be:c6:ed:22:76:65:e6:cc:87:ca:95: 03:7f:76:06:f2:cc:7c:bc:8a:32:f0:b4:e8:3a:57: cd:47:e4:04:2b:0c:38:91:c2:d5:3d:33:01:b5:c8: 37:73:dc:7a:9c:70:09:a9:e1:9b:30:5c:3a:c0:5d: a3:99:e4:9c:3f:a8:78:cb:9c:8b:74:ed:d1:1a:93: 06:c1:13:d0:d3:ab:df:3b:42:1e:14:f5:30:ab:9e: d5:b1:e6:a8:7b:f5:21:7b:15:75:86:c5:ae:61:c8: d7:4d:5d:34:31:d8:aa:59:84:68:93:19:a9:9e:08: 58:92:cc:13:fc:bc:8d:ba:0e:2b:85:34:6a:82:96: cb:03:11:f6:ad:df:74:5c:5c:d3:4b:c6:56:7a:a6: 24:03:35:fe:5e:dd:22:fd:87:ec:55:92:92:1e:99: f7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C1:67:8A:0B:28:15:45:D2:61:91:80:75:53:6A:6E:36:7E:8A:45 X509v3 Authority Key Identifier: keyid:74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b9:4e:0c:98:35:fd:ab:b4:88:c9:c8:5a:35:e3:d9:5f:dd: d9:79:1b:30:5f:b8:cc:6f:08:0a:97:65:d7:7e:b7:17:f9:3e: 04:13:19:4c:bf:90:2f:41:34:19:9f:14:92:4e:52:61:0c:d7: f0:1d:6c:a4:7a:28:d1:88:56:62:34:44:b8:43:7e:c5:68:3f: ad:12:5c:cd:78:a3:38:0c:cd:82:55:56:c3:32:57:22:07:85: a7:89:15:fb:42:59:a3:07:9b:7b:a7:34:7f:58:d1:fe:3f:52: e6:e4:74:78:b7:b6:96:27:48:63:ed:de:97:6a:69:ab:b5:2f: 82:3c:b0:91:f1:df:ec:bd:75:49:62:a0:0f:4a:70:61:2a:76: 5b:4b:83:8c:0d:14:c1:7e:0b:16:40:eb:ed:e8:12:f1:97:a2: 61:bd:a7:31:c8:4d:9e:4f:94:a3:8e:60:54:4d:c8:6c:7b:e8: 0b:86:88:43:99:c6:57:f5:f0:53:ee:5a:4e:0a:3b:9e:7d:ac: 0f:3a:8c:e2:96:2c:fb:36:78:f5:31:6d:16:39:ac:bd:4f:22: a7:ae:38:fc:02:9a:bb:21:11:54:18:c9:d7:19:f3:5f:83:50: 15:4c:a4:81:d8:a1:4c:9d:d8:4f:09:16:76:5b:1b:5d:32:43: ff:8b:a9:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM4QUUxMTAvBgNVBAUTKDc0OTQyNzIxODExMUQyRjJGNUE1NzBCOTk1MTdDQTA4 RTU3NzM3MjQwHhcNMjQwNTE4MjM1MTI3WhcNMjQwNTI1MjM1MTI3WjAYMRYwFAYD VQQDEw02NjQ5M2VmZi1iYmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36pzxDPw+xwWbALWus7xOSjYUHXBbrwEaUS+SpBo6DdBKiU4gDblD7nnWBlO X2kBoAqnBr4drIFaJAGC+SaZ3sd833YKTknvA3ZmDKW+AUpxkJUQCXXEGR693WDM vsbtInZl5syHypUDf3YG8sx8vIoy8LToOlfNR+QEKww4kcLVPTMBtcg3c9x6nHAJ qeGbMFw6wF2jmeScP6h4y5yLdO3RGpMGwRPQ06vfO0IeFPUwq57Vseaoe/UhexV1 hsWuYcjXTV00MdiqWYRokxmpnghYkswT/LyNug4rhTRqgpbLAxH2rd90XFzTS8ZW eqYkAzX+Xt0i/YfsVZKSHpn33wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDBZ4oL KBVF0mGRgHVTam42fopFMB8GA1UdIwQYMBaAFHSUJyGBEdLy9aVwuZUXygjldzck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzhBRS83MDcwQTBGMDU1 OUIxMUVCQkExMTcxMzdDNEY5QUUwMi9kSlFuSVlFUjB2TDFwWEM1bFJmS0NPVjNO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RKUW5JWUVSMHZMMXBYQzVsUmZLQ09WM055US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzhBRS83MDcwQTBGMDU1OUIxMUVCQkExMTcxMzdDNEY5QUUwMi9kSlFuSVlFUjB2 TDFwWEM1bFJmS0NPVjNOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiuU4MmDX9q7SIychaNePZX93ZeRswX7jMbwgKl2XXfrcX+T4EExlM v5AvQTQZnxSSTlJhDNfwHWykeijRiFZiNES4Q37FaD+tElzNeKM4DM2CVVbDMlci B4WniRX7QlmjB5t7pzR/WNH+P1Lm5HR4t7aWJ0hj7d6XammrtS+CPLCR8d/svXVJ YqAPSnBhKnZbS4OMDRTBfgsWQOvt6BLxl6JhvacxyE2eT5SjjmBUTchse+gLhohD mcZX9fBT7lpOCjuefawPOoziliz7Nnj1MW0WOay9TyKnrjj8Apq7IRFUGMnXGfNf g1AVTKSB2KFMndhPCRZ2WxtdMkP/i6lh -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org