$ rpki-client -vvf rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft File: DZhBj4TCLONROV4eXE1dka5g_h8.mft (raw, json) Hash identifier: 3bGpw4mGY2/h6j0D2C4Gl7LHAoiLeB8faY8ariIoDeU= Subject key identifier: C9:F5:2E:E3:FB:4C:21:A1:C5:61:F1:F5:C9:F0:D2:52:AC:39:47:24 Authority key identifier: 0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F Certificate issuer: /CN=A91DED5A/serialNumber=0D98418F84C22CE351395E1E5C4D5D91AE60FE1F Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft Manifest number: 0257 Signing time: Sun 19 May 2024 03:52:17 +0000 Manifest this update: Sun 19 May 2024 03:52:16 +0000 Manifest next update: Sun 26 May 2024 03:52:16 +0000 Files and hashes: 1: DZhBj4TCLONROV4eXE1dka5g_h8.crl (hash: XaFO8xvAQAVySZwDexRMB6zaodMe5Y8Z3NAe/sKz808=) 2: 26DB1136FDFC11ECBB977313C4F9AE02.roa (hash: evkhr75ATMvHk9AbwFyIpIPCNLqUEmsZ8FxHR0DQego=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.crl rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DED5A/serialNumber=0D98418F84C22CE351395E1E5C4D5D91AE60FE1F Validity Not Before: May 19 03:52:16 2024 GMT Not After : May 26 03:52:16 2024 GMT Subject: CN=66497771-a38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:bc:78:d8:17:42:ff:83:8f:ed:e5:f4:1b: 14:9e:4e:fb:9a:2b:87:b3:05:80:b2:58:29:e6:81: 89:ba:a1:f5:0c:f0:25:06:e2:64:42:5a:24:7b:1f: 2d:90:d7:ee:49:69:90:f6:be:38:97:b9:a4:62:64: 38:9c:65:a1:7c:16:22:4c:fa:08:33:7e:1c:46:dd: 44:57:40:f1:25:7a:95:61:75:65:23:57:fd:01:d0: 5e:5a:5a:91:ea:d8:e7:76:6b:df:8a:73:c1:52:df: f8:55:42:5a:0a:e9:b3:b8:a8:0b:1c:b1:15:b3:f7: 32:cb:a2:7b:82:f1:a6:2b:09:65:b3:b5:4d:53:b4: 8a:8a:09:7b:17:68:56:9a:28:ba:1c:78:84:81:48: 9c:53:fb:bd:2d:42:bd:c0:1c:2b:6a:c2:80:2a:ad: 02:48:e1:f4:f0:c5:38:ea:bf:c5:1b:ab:2b:15:54: d9:7c:e0:a1:76:25:18:ab:c8:5f:30:01:57:0b:cf: dc:95:b9:44:5f:76:0e:6d:b8:a0:7a:f6:2d:ce:73: 21:3f:af:28:9b:89:f0:84:4b:9f:4b:e6:dc:05:45: 4e:32:f2:fe:f6:72:54:a4:29:0f:bb:1f:09:68:ec: 05:4e:80:23:59:42:79:a1:2e:97:6c:01:29:45:35: ad:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F5:2E:E3:FB:4C:21:A1:C5:61:F1:F5:C9:F0:D2:52:AC:39:47:24 X509v3 Authority Key Identifier: keyid:0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:3c:73:02:93:82:93:94:01:96:48:16:2d:14:40:e3:bf:c1: b7:bc:64:69:88:58:fa:13:2f:c2:ac:db:8b:ad:78:cc:36:c5: 6a:41:58:1a:3b:24:33:e8:e2:3a:71:41:4b:05:89:94:27:8c: f7:b9:07:b4:e1:34:e2:c9:b8:96:2d:80:4c:65:3b:45:04:46: db:5b:b3:e9:f3:a4:f7:59:b2:5b:50:0f:f1:ef:b1:92:da:7e: df:e6:b1:48:08:6d:00:75:91:2e:31:b7:d7:1f:f0:7a:7a:be: db:d4:4b:34:f2:95:f1:e2:0f:3d:85:44:10:4f:87:4c:8f:f5: 8f:5f:da:b7:be:6d:50:b1:65:7f:71:48:6f:8a:aa:a6:ff:fd: bd:29:d0:28:6a:95:c6:b6:31:54:5d:40:47:4f:f8:5f:f8:b6: db:97:7a:d0:3f:0b:57:89:00:33:ac:d8:b2:43:1f:22:35:09: d0:2d:80:35:7e:2a:d6:83:9b:0e:fb:ba:46:67:02:5d:45:b8: 5d:dc:78:ff:66:13:d2:1d:1b:47:4e:55:6e:1a:98:8f:0e:8c: 24:c4:f5:f1:55:24:3d:7f:de:f9:e2:a5:78:8d:b2:3f:f8:27: 74:60:6e:94:3a:fa:b2:31:8b:0e:36:5d:c9:3d:92:53:4f:f9: 78:56:fd:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVENUExMTAvBgNVBAUTKDBEOTg0MThGODRDMjJDRTM1MTM5NUUxRTVDNEQ1RDkx QUU2MEZFMUYwHhcNMjQwNTE5MDM1MjE2WhcNMjQwNTI2MDM1MjE2WjAYMRYwFAYD VQQDEw02NjQ5Nzc3MS1hMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZC8eNgXQv+Dj+3l9BsUnk77miuHswWAslgp5oGJuqH1DPAlBuJkQlokex8t kNfuSWmQ9r44l7mkYmQ4nGWhfBYiTPoIM34cRt1EV0DxJXqVYXVlI1f9AdBeWlqR 6tjndmvfinPBUt/4VUJaCumzuKgLHLEVs/cyy6J7gvGmKwlls7VNU7SKigl7F2hW mii6HHiEgUicU/u9LUK9wBwrasKAKq0CSOH08MU46r/FG6srFVTZfOChdiUYq8hf MAFXC8/clblEX3YObbigevYtznMhP68om4nwhEufS+bcBUVOMvL+9nJUpCkPux8J aOwFToAjWUJ5oS6XbAEpRTWtCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMn1LuP7 TCGhxWHx9cnw0lKsOUckMB8GA1UdIwQYMBaAFA2YQY+EwizjUTleHlxNXZGuYP4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUQ1QS81REVEQTAyOENG N0UxMUVDOTMyRTAyNEFDNEY5QUUwMi9EWmhCajRUQ0xPTlJPVjRlWEUxZGthNWdf aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RaaEJqNFRDTE9OUk9WNGVYRTFka2E1Z19oOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUQ1QS81REVEQTAyOENGN0UxMUVDOTMyRTAyNEFDNEY5QUUwMi9EWmhCajRUQ0xP TlJPVjRlWEUxZGthNWdfaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqPHMCk4KTlAGWSBYtFEDjv8G3vGRpiFj6Ey/CrNuLrXjMNsVqQVga OyQz6OI6cUFLBYmUJ4z3uQe04TTiybiWLYBMZTtFBEbbW7Pp86T3WbJbUA/x77GS 2n7f5rFICG0AdZEuMbfXH/B6er7b1Es08pXx4g89hUQQT4dMj/WPX9q3vm1QsWV/ cUhviqqm//29KdAoapXGtjFUXUBHT/hf+Lbbl3rQPwtXiQAzrNiyQx8iNQnQLYA1 firWg5sO+7pGZwJdRbhd3Hj/ZhPSHRtHTlVuGpiPDowkxPXxVSQ9f9754qV4jbI/ +Cd0YG6UOvqyMYsONl3JPZJTT/l4Vv1d -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org