$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft File: DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft (raw, json) Hash identifier: 4raxJtdRY+IgtDEzThCLNIwUuHQF0Vwp2KcWYvN1M6E= Subject key identifier: 80:A3:4C:C5:37:5E:99:58:DF:03:B6:8D:CD:66:11:2A:54:1C:17:AC Authority key identifier: 0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 Certificate issuer: /CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft Manifest number: 010A Signing time: Fri 31 May 2024 06:16:04 +0000 Manifest this update: Fri 31 May 2024 06:16:04 +0000 Manifest next update: Fri 07 Jun 2024 06:16:03 +0000 Files and hashes: 1: DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl (hash: F+GwnjQmjGqjWThv8/R8HyklWgoMxHDipPnscURW88M=) 2: 35CFAB068C4111ED8E01DF60C4F9AE02.roa (hash: Z3KG+uf5YGwtjnziQoWt5pl6K6Wm2by1t5W9t4LirP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9 Validity Not Before: May 31 06:16:04 2024 GMT Not After : Jun 7 06:16:03 2024 GMT Subject: CN=66596b24-51ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:12:68:ad:41:d2:88:a9:92:76:99:d5:ab:b6: c8:c1:e0:78:eb:be:62:2a:15:ae:6b:eb:e8:62:37: 46:14:8c:1b:71:f5:e5:5a:30:2d:a0:99:56:1b:7b: bd:4d:0d:e4:f8:92:9d:4e:49:aa:05:be:a7:3c:c5: 0a:db:d9:c0:2d:b9:64:84:3a:90:58:b1:40:db:d7: 72:ae:13:7f:85:2a:74:ce:32:94:7a:9c:da:ed:46: f3:ba:7d:28:8c:d7:2b:84:be:2c:51:05:e3:c1:24: 93:4c:39:ef:b3:4c:c2:48:18:28:09:69:17:8e:cf: 1a:5d:76:49:b1:ab:23:f7:60:a6:d9:98:6d:1c:3c: 46:fc:e9:b5:fa:6c:f3:dd:3d:13:d1:bd:a9:e5:a6: 31:90:2e:45:fc:99:53:f6:1b:7b:cd:b1:13:76:be: 6d:35:ca:18:23:51:f7:74:b7:f0:d3:b5:3e:3d:c0: 3b:e3:53:00:59:d7:b8:8b:b9:89:02:5a:e6:d9:b1: 82:69:e2:5b:0e:76:50:1b:21:3a:b4:8c:49:18:54: b5:41:79:a4:e5:38:f2:fe:84:d8:70:4d:31:b1:af: a9:71:c5:2e:1e:c9:ef:e8:1e:4c:2e:73:e2:c8:87: 5a:52:93:87:81:ec:42:93:9e:44:ec:da:bc:1d:c7: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A3:4C:C5:37:5E:99:58:DF:03:B6:8D:CD:66:11:2A:54:1C:17:AC X509v3 Authority Key Identifier: keyid:0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cd:53:bb:0a:57:0d:e0:a5:ae:04:97:3a:db:78:9c:61:96: 7e:9a:4d:a7:c6:4e:91:f4:cf:76:84:30:40:4e:a6:2b:7a:ca: 15:5c:31:30:40:f3:fb:8c:98:e7:85:fe:55:4d:80:96:14:f7: 30:46:f4:2c:8d:2f:10:11:33:b4:1e:df:2a:cb:3c:5c:10:41: 5b:63:5d:a0:bb:91:53:4c:f3:98:ef:c3:e0:63:cb:20:d3:e6: 79:1b:f3:d7:1f:c5:4e:1a:32:a7:c3:18:cb:b0:fe:ed:26:a3: 12:1f:27:11:72:cb:cb:77:d3:2f:0b:bd:65:1b:b1:46:48:3b: 1f:15:37:ef:3b:f0:e7:bb:77:bb:1d:b7:e0:5a:8f:c0:16:d8: 14:d2:8b:2f:d6:e3:25:f7:bb:c7:14:cd:e7:71:ca:a0:1e:01: 3c:1e:4b:23:95:a2:77:a5:28:aa:73:3d:8d:a7:c8:24:7d:c3: c1:1b:a7:18:5a:8c:23:cd:5b:98:6e:36:67:35:79:b9:12:f1: 3a:dd:d6:9a:47:a2:54:9d:36:46:87:2f:c9:52:c0:26:c6:37: b6:b1:4f:89:cf:d9:72:53:16:5c:dc:2a:4d:25:74:e4:d2:0a: 09:0c:75:d5:3b:97:c5:16:0d:88:2c:42:37:2d:e1:09:b6:12: 35:49:7c:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFQTAxMTAvBgNVBAUTKDBDQ0FCOTQ0N0ExN0FDM0M4QTc4N0JFOTQ3RUM1RDZG NEE4OTVDRTkwHhcNMjQwNTMxMDYxNjA0WhcNMjQwNjA3MDYxNjAzWjAYMRYwFAYD VQQDEw02NjU5NmIyNC01MWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BJorUHSiKmSdpnVq7bIweB4675iKhWua+voYjdGFIwbcfXlWjAtoJlWG3u9 TQ3k+JKdTkmqBb6nPMUK29nALblkhDqQWLFA29dyrhN/hSp0zjKUepza7Ubzun0o jNcrhL4sUQXjwSSTTDnvs0zCSBgoCWkXjs8aXXZJsasj92Cm2ZhtHDxG/Om1+mzz 3T0T0b2p5aYxkC5F/JlT9ht7zbETdr5tNcoYI1H3dLfw07U+PcA741MAWde4i7mJ Alrm2bGCaeJbDnZQGyE6tIxJGFS1QXmk5Tjy/oTYcE0xsa+pccUuHsnv6B5MLnPi yIdaUpOHgexCk55E7Nq8HcexSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICjTMU3 XplY3wO2jc1mESpUHBesMB8GA1UdIwQYMBaAFAzKuUR6F6w8inh76UfsXW9KiVzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkVBMC9GOTE0MDBDMjhD MkMxMUVEOTYzOEU2NzJDNEY5QUUwMi9ETXE1UkhvWHJEeUtlSHZwUi14ZGIwcUpY T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RNcTVSSG9YckR5S2VIdnBSLXhkYjBxSlhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkVBMC9GOTE0MDBDMjhDMkMxMUVEOTYzOEU2NzJDNEY5QUUwMi9ETXE1UkhvWHJE eUtlSHZwUi14ZGIwcUpYT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/zVO7ClcN4KWuBJc623icYZZ+mk2nxk6R9M92hDBATqYresoVXDEw QPP7jJjnhf5VTYCWFPcwRvQsjS8QETO0Ht8qyzxcEEFbY12gu5FTTPOY78PgY8sg 0+Z5G/PXH8VOGjKnwxjLsP7tJqMSHycRcsvLd9MvC71lG7FGSDsfFTfvO/Dnu3e7 HbfgWo/AFtgU0osv1uMl97vHFM3nccqgHgE8HksjlaJ3pSiqcz2Np8gkfcPBG6cY WowjzVuYbjZnNXm5EvE63daaR6JUnTZGhy/JUsAmxje2sU+Jz9lyUxZc3CpNJXTk 0goJDHXVO5fFFg2ILEI3LeEJthI1SXzs -----END CERTIFICATE-----Generated at Fri May 31 10:02:40 2024 by rpki-client on console-ams.rpki-client.org