$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: IcPWYsoP8oqBqETt6nz1lDJOZmalyeoGN7dfNmwIDW0= Subject key identifier: CC:0A:62:95:D0:4B:2C:23:3F:91:5D:E7:1E:F1:C6:FE:55:B4:8B:9F Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 37 Signing time: Sat 18 May 2024 21:41:12 +0000 Manifest this update: Sat 18 May 2024 21:41:12 +0000 Manifest next update: Sat 25 May 2024 21:41:12 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: s8N5mni0OAvqqvGS02bbHSSO+vThbsSxhENwQ4Ayi+Y=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: dQpzIPU1toOL1+I04lKiS8o199rYtPdmkoj1eJoYJB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: May 18 21:41:12 2024 GMT Not After : May 25 21:41:12 2024 GMT Subject: CN=66492078-8fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:97:5f:5c:40:15:68:6f:f7:00:e6:43:fc:60: 71:eb:11:68:4e:63:91:59:60:1a:04:ab:63:be:ac: c2:a9:a4:66:b3:f1:6d:e4:65:03:70:d7:f3:cb:34: 24:36:dd:a0:3c:aa:f5:1a:1e:d5:a6:65:04:8e:6e: 23:c9:44:35:a6:7b:5f:9d:be:3f:62:c3:4a:1f:e7: ae:17:36:5a:ed:a7:b8:dd:39:c3:da:08:0e:35:f3: 2b:02:43:d8:2c:66:18:e3:5a:32:6e:57:95:6b:7a: c4:ec:3f:8c:f3:f3:0d:49:0d:97:51:4f:90:d6:51: 61:38:e8:da:d3:a8:5a:8d:10:eb:8b:45:71:f6:d6: 3a:93:d4:6b:49:cd:24:b0:87:ef:81:12:4d:7a:e9: be:63:22:a2:23:a9:44:9e:24:ae:6a:2b:2e:91:e8: e3:21:7e:49:ed:74:0e:3e:ae:c2:28:8d:0f:88:ab: b9:47:95:0d:61:0f:8d:e8:92:19:84:c5:95:1c:e0: c9:20:7c:1e:36:5e:6c:1f:f6:a9:93:95:6a:74:ba: 38:2f:d7:7c:4e:df:89:41:96:61:da:53:e3:18:85: 57:8d:d0:4e:42:3c:cb:7c:dd:06:67:15:43:b4:57: 93:0f:a5:31:00:fe:1b:65:5c:89:2c:ae:67:29:58: 48:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0A:62:95:D0:4B:2C:23:3F:91:5D:E7:1E:F1:C6:FE:55:B4:8B:9F X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:74:8c:97:63:15:5b:ca:12:6d:4d:dc:28:e9:2b:33:07:7f: 2b:6e:7f:34:f4:06:39:58:e7:49:50:35:c9:6f:63:81:8a:71: 67:24:45:84:ee:29:52:6b:2e:c6:77:53:8b:78:53:73:91:de: 7f:17:8a:40:4c:34:e4:14:48:ae:6a:14:b1:8d:bb:8b:59:03: 76:0e:20:01:69:53:e1:b8:76:a3:73:bd:0d:7d:44:40:65:53: 85:eb:cc:da:ed:52:4c:e4:bd:03:08:eb:11:67:61:db:12:54: 8e:c2:dd:d7:e6:a1:1f:7b:2e:8b:f5:a9:50:ef:23:5f:25:ef: b4:38:15:44:da:50:ce:77:a7:ab:df:c8:db:b2:fe:72:4f:c5: fe:67:97:74:90:d2:5e:be:db:28:e8:2d:78:e2:ee:e8:f9:c4: 49:6e:4d:3e:e3:ae:e0:92:51:4f:1c:d9:21:40:17:43:d8:bf: 50:ba:25:9b:4a:97:29:4e:b3:26:a0:7f:ca:e3:8e:ae:c1:43: 28:c5:0c:c2:66:c7:74:2f:bf:ed:14:f2:ec:a9:fd:75:2c:bb: 1c:a4:0b:69:35:8d:79:67:c2:fc:00:3c:cc:58:db:25:3f:d5: e1:ec:a1:97:10:37:6d:dd:77:59:83:13:72:4f:ea:f2:b8:90: 40:fb:01:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDBENjExMC8GA1UEBRMoNzZFRjE5Mzk1N0E4NkQ2NEQzQzNDREVCOUUwNzQ2NzQ2 RUY0MjkwQTAeFw0yNDA1MTgyMTQxMTJaFw0yNDA1MjUyMTQxMTJaMBgxFjAUBgNV BAMTDTY2NDkyMDc4LThmYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDll19cQBVob/cA5kP8YHHrEWhOY5FZYBoEq2O+rMKppGaz8W3kZQNw1/PLNCQ2 3aA8qvUaHtWmZQSObiPJRDWme1+dvj9iw0of564XNlrtp7jdOcPaCA418ysCQ9gs ZhjjWjJuV5VresTsP4zz8w1JDZdRT5DWUWE46NrTqFqNEOuLRXH21jqT1GtJzSSw h++BEk166b5jIqIjqUSeJK5qKy6R6OMhfkntdA4+rsIojQ+Iq7lHlQ1hD43okhmE xZUc4MkgfB42Xmwf9qmTlWp0ujgv13xO34lBlmHaU+MYhVeN0E5CPMt83QZnFUO0 V5MPpTEA/htlXIksrmcpWEjFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzApildBL LCM/kV3nHvHG/lW0i58wHwYDVR0jBBgwFoAUdu8ZOVeobWTTw83rngdGdG70KQow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MEQ2LzA1Rjg2MDE0QzUz NzExRUVCNjdBRUI3OUM0RjlBRTAyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtR by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZHU4Wk9WZW9iV1RUdzgzcm5nZEdkRzcwS1FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MEQ2LzA1Rjg2MDE0QzUzNzExRUVCNjdBRUI3OUM0RjlBRTAyL2R1OFpPVmVvYldU VHc4M3JuZ2RHZEc3MEtRby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADl0jJdjFVvKEm1N3CjpKzMHfytufzT0BjlY50lQNclvY4GKcWckRYTu KVJrLsZ3U4t4U3OR3n8XikBMNOQUSK5qFLGNu4tZA3YOIAFpU+G4dqNzvQ19REBl U4XrzNrtUkzkvQMI6xFnYdsSVI7C3dfmoR97Lov1qVDvI18l77Q4FUTaUM53p6vf yNuy/nJPxf5nl3SQ0l6+2yjoLXji7uj5xEluTT7jruCSUU8c2SFAF0PYv1C6JZtK lylOsyagf8rjjq7BQyjFDMJmx3Qvv+0U8uyp/XUsuxykC2k1jXlnwvwAPMxY2yU/ 1eHsoZcQN23dd1mDE3JP6vK4kED7AXM= -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org