$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: yZC2IfN0BzFTp5y/+WSSMqgBh7k0/NukfNhf9d4/SZ8= Subject key identifier: 74:8C:56:D9:7E:3E:92:04:3A:D6:76:1A:20:90:F2:09:30:B2:37:2F Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0EE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0EC9 Signing time: Sat 18 May 2024 18:18:25 +0000 Manifest this update: Sat 18 May 2024 18:18:25 +0000 Manifest next update: Sat 25 May 2024 18:18:25 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: KDCdqqdRfRDkYmA9ASrXotLVTyBblGr3W8snz1Fz/ug=) 2: 92AD525E999311EA9369A12CC4F9AE02.roa (hash: DW2xS6rZtGbemPlryb5FJDW//rJRxC2WTKqVFZK9p+w=) 3: F91C0FF2999411EA9A003F30C4F9AE02.roa (hash: jtbdTqDFIXto4MT4Y089fYnPHdSB3xD3rOHKmGabM08=) 4: 917FD7F8999311EA9369A12CC4F9AE02.roa (hash: M9whczjqKI+sN9wEvRxU7i8crmXluec7LHw04JXeNV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3813 (0xee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: May 18 18:18:25 2024 GMT Not After : May 25 18:18:25 2024 GMT Subject: CN=6648f0f1-5085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:89:a9:86:db:59:c4:b3:18:d2:2a:e5:7d:c7: d7:d6:3c:06:b6:d2:0a:c9:32:d0:ab:db:ec:4a:18: 49:1f:0f:73:86:74:53:75:57:6d:d3:5e:05:03:45: 8f:7d:86:e5:f9:91:c3:ca:4b:de:42:21:d2:d8:5c: de:62:a1:a1:98:fe:66:5e:3a:4d:0c:e4:47:ad:f9: e1:26:68:75:be:d8:2f:4c:66:ec:a6:51:9d:70:2b: 18:ff:21:54:cb:70:3f:6c:18:2d:19:df:90:d3:fc: 29:58:92:9b:9e:2f:50:b1:f0:79:3b:0f:78:9a:1d: 31:e9:18:90:fc:0f:20:be:28:19:ab:4c:76:19:12: ce:5e:27:17:5f:84:a2:7e:a8:31:91:28:62:72:5e: bd:4b:ce:55:35:17:bc:34:ca:c3:fc:f3:bd:39:44: 9d:82:51:02:09:f8:dc:81:40:99:4b:5e:c6:54:04: 43:e6:fe:e1:db:8b:8f:52:3d:a0:04:5b:20:29:b2: 40:c3:c1:4c:19:1c:18:31:77:c5:ae:db:08:ff:e9: 53:94:6a:8a:82:2a:6d:14:e0:c0:f7:8c:cb:c3:f3: 80:7e:14:45:ad:2a:3c:a6:33:4f:35:0d:19:0a:c1: fb:46:d3:c2:f3:c9:29:4b:59:e3:23:99:4c:78:d0: a5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8C:56:D9:7E:3E:92:04:3A:D6:76:1A:20:90:F2:09:30:B2:37:2F X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:30:44:40:c3:a6:f6:54:30:00:a5:bc:cb:99:3a:5b:fc:b1: a1:6a:29:01:79:ea:db:96:8a:2e:43:c7:d3:da:6d:24:91:01: 44:c7:a2:d1:ec:2a:4a:55:f5:3f:dd:fe:2a:2a:35:39:a9:e7: cc:a6:81:6f:3b:e6:ec:04:85:8c:dd:86:c8:30:98:2a:44:f5: 32:79:99:9f:59:a0:cb:c5:f9:f4:e5:88:0f:43:4e:87:d8:b6: 87:a7:bd:1d:f7:d2:a2:ae:b9:79:26:80:ee:14:75:40:0f:10: c5:9e:52:e4:f6:37:35:85:76:5b:f3:df:39:0a:ab:5f:77:6f: c7:78:46:7d:b6:db:2c:26:ff:8c:57:cd:0e:6b:46:cc:a1:c0: e2:33:33:aa:c5:7d:24:b0:80:9a:cb:b6:ef:85:83:89:33:fc: 9d:69:e8:f7:85:c4:e9:d0:52:19:39:be:84:d5:93:f3:3a:1c: 7a:5c:dd:61:ef:1f:33:8c:c9:1b:8c:95:90:e9:8d:ce:fd:12: fb:ea:07:e3:f6:15:2b:a1:5a:97:20:19:53:27:d8:26:7e:f5: b4:c4:31:d0:53:11:54:e3:d2:e8:5d:f8:f5:5f:94:14:4a:a7: b9:1e:26:99:c3:08:9f:6e:af:98:f0:5b:f3:1b:fa:34:ef:d7: d2:86:f2:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjQwNTE4MTgxODI1WhcNMjQwNTI1MTgxODI1WjAYMRYwFAYD VQQDEw02NjQ4ZjBmMS01MDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYmphttZxLMY0irlfcfX1jwGttIKyTLQq9vsShhJHw9zhnRTdVdt014FA0WP fYbl+ZHDykveQiHS2FzeYqGhmP5mXjpNDORHrfnhJmh1vtgvTGbsplGdcCsY/yFU y3A/bBgtGd+Q0/wpWJKbni9QsfB5Ow94mh0x6RiQ/A8gvigZq0x2GRLOXicXX4Si fqgxkShicl69S85VNRe8NMrD/PO9OUSdglECCfjcgUCZS17GVARD5v7h24uPUj2g BFsgKbJAw8FMGRwYMXfFrtsI/+lTlGqKgiptFODA94zLw/OAfhRFrSo8pjNPNQ0Z CsH7RtPC88kpS1njI5lMeNClHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSMVtl+ PpIEOtZ2GiCQ8gkwsjcvMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEMERAw6b2VDAApbzLmTpb/LGhaikBeerbloouQ8fT2m0kkQFEx6LR 7CpKVfU/3f4qKjU5qefMpoFvO+bsBIWM3YbIMJgqRPUyeZmfWaDLxfn05YgPQ06H 2LaHp70d99Kirrl5JoDuFHVADxDFnlLk9jc1hXZb8985Cqtfd2/HeEZ9ttssJv+M V80Oa0bMocDiMzOqxX0ksICay7bvhYOJM/ydaej3hcTp0FIZOb6E1ZPzOhx6XN1h 7x8zjMkbjJWQ6Y3O/RL76gfj9hUroVqXIBlTJ9gmfvW0xDHQUxFU49LoXfj1X5QU Sqe5HiaZwwifbq+Y8FvzG/o079fShvJB -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org