$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: TLyn8clyUq4bsYphFcYnvtyMtvePKqAco5AoOZ5H9VA= Subject key identifier: AA:B5:66:3D:C9:4B:0D:4E:D0:3B:EB:B6:E4:93:39:E5:7F:B7:88:6B Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0D2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0D25 Signing time: Sat 18 May 2024 18:42:31 +0000 Manifest this update: Sat 18 May 2024 18:42:31 +0000 Manifest next update: Sat 25 May 2024 18:42:31 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: PS8qFeTlvw8erBXByfeAaFDnmg7Fb9JEqSfNzJcQfL4=) 2: BD61E6A2B36D11E992BC3F0BC4F9AE02.roa (hash: RnwEhFdSsDTYs7JASMXXEqAIxLKExPIM9GyDMqe1oDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: May 18 18:42:31 2024 GMT Not After : May 25 18:42:31 2024 GMT Subject: CN=6648f697-294a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:94:7d:ce:1b:03:8d:b3:33:7f:56:da:85: a9:e3:94:73:bb:e6:9d:62:1d:a3:2a:5a:9f:0c:0b: 33:1b:e5:53:84:9f:6a:7b:b0:fc:fd:d2:6c:9f:81: db:b7:50:68:cd:f6:06:f0:23:78:d2:ad:bb:5c:4e: 81:cc:e9:94:2e:27:0d:5d:e7:43:4d:0f:1f:59:e1: 08:ce:e0:f5:e6:95:75:8d:c7:c1:68:79:90:73:f0: 5e:f3:d7:26:41:9d:0b:31:b7:16:15:c2:87:d1:5b: 94:f5:51:d4:d8:c2:d0:b9:15:57:0b:b2:45:3a:c8: cd:52:eb:ec:a0:42:02:f3:ff:4e:b6:86:59:49:51: 75:59:37:92:60:16:87:02:e2:4e:0b:44:e1:a0:d0: 31:9d:92:d8:4c:6f:4c:43:52:af:a6:49:6a:9c:08: da:0d:7a:f8:58:3f:27:15:8d:74:1d:24:3f:7b:23: c0:f4:b2:81:3d:d0:61:ed:3a:7c:11:bd:61:68:9b: 97:ed:13:ba:a9:b2:e1:b3:2f:6e:73:55:01:83:a2: a0:d8:e5:ee:e5:ff:0c:35:27:a4:e1:c2:1e:0c:a0: 1e:fa:0f:7a:73:5e:29:2c:30:4b:64:92:9b:79:ff: 57:b4:77:90:26:52:94:59:2e:a8:59:56:5a:27:42: 50:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B5:66:3D:C9:4B:0D:4E:D0:3B:EB:B6:E4:93:39:E5:7F:B7:88:6B X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:89:ac:aa:d3:33:c3:76:95:9d:cf:a3:83:ef:4b:d1:e3:38: b4:be:fd:e1:d0:4f:c0:ba:49:30:77:e5:c3:0c:89:81:c4:af: 5c:29:cf:ce:6c:9c:27:7a:52:67:fe:d6:06:06:4c:da:c6:61: ee:56:d5:43:99:8c:58:c0:ae:9c:aa:e3:c0:22:23:cb:da:0a: ef:82:93:8b:31:1d:94:ad:c1:7e:c4:5b:f9:45:2d:78:24:88: 98:d7:98:52:ed:60:1e:3e:de:0f:55:5c:1c:1e:05:3b:e6:c0: d2:21:b1:05:a9:d8:13:8e:d7:b3:d3:7b:e1:97:7a:1e:d0:da: ba:43:6d:cb:a1:e0:e6:86:ad:b0:9d:fc:07:a2:20:f9:0d:8d: 37:e3:f8:11:aa:2e:72:17:12:d4:d2:a6:5d:fe:a2:70:20:25: 29:37:22:69:5f:32:65:34:95:38:45:26:a3:ce:33:46:1e:79: 95:16:2e:ec:38:ac:d3:70:1d:c5:3e:64:ec:a4:60:be:e4:ca: 0b:0c:45:90:9b:d2:e0:e6:e2:90:eb:60:e5:91:79:26:13:85: 37:e1:1b:9d:8f:0b:70:6a:77:63:e6:6b:1d:4f:63:0e:5f:72: 0a:a7:61:69:7f:f8:c1:1a:00:86:03:fc:d5:eb:ad:4d:5c:79: 75:4e:02:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjQwNTE4MTg0MjMxWhcNMjQwNTI1MTg0MjMxWjAYMRYwFAYD VQQDEw02NjQ4ZjY5Ny0yOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTaUfc4bA42zM39W2oWp45Rzu+adYh2jKlqfDAszG+VThJ9qe7D8/dJsn4Hb t1BozfYG8CN40q27XE6BzOmULicNXedDTQ8fWeEIzuD15pV1jcfBaHmQc/Be89cm QZ0LMbcWFcKH0VuU9VHU2MLQuRVXC7JFOsjNUuvsoEIC8/9OtoZZSVF1WTeSYBaH AuJOC0ThoNAxnZLYTG9MQ1KvpklqnAjaDXr4WD8nFY10HSQ/eyPA9LKBPdBh7Tp8 Eb1haJuX7RO6qbLhsy9uc1UBg6Kg2OXu5f8MNSek4cIeDKAe+g96c14pLDBLZJKb ef9XtHeQJlKUWS6oWVZaJ0JQeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKq1Zj3J Sw1O0DvrtuSTOeV/t4hrMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBciayq0zPDdpWdz6OD70vR4zi0vv3h0E/Aukkwd+XDDImBxK9cKc/O bJwnelJn/tYGBkzaxmHuVtVDmYxYwK6cquPAIiPL2grvgpOLMR2UrcF+xFv5RS14 JIiY15hS7WAePt4PVVwcHgU75sDSIbEFqdgTjtez03vhl3oe0Nq6Q23LoeDmhq2w nfwHoiD5DY034/gRqi5yFxLU0qZd/qJwICUpNyJpXzJlNJU4RSajzjNGHnmVFi7s OKzTcB3FPmTspGC+5MoLDEWQm9Lg5uKQ62DlkXkmE4U34Rudjwtwandj5msdT2MO X3IKp2Fpf/jBGgCGA/zV661NXHl1TgL7 -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org