$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft File: DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json) Hash identifier: 2B/0ypzgizjiTHfazsqGFLscm02p6HjgAkTXitPWidA= Subject key identifier: B0:8D:95:E3:74:B6:EB:82:FA:C7:74:85:DC:9D:81:F3:38:6D:DA:CB Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 Certificate issuer: /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Certificate serial: 0D41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft Manifest number: 0D39 Signing time: Sat 18 May 2024 18:40:37 +0000 Manifest this update: Sat 18 May 2024 18:40:36 +0000 Manifest next update: Sat 25 May 2024 18:40:36 +0000 Files and hashes: 1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: cPgLSelibjNUbnYFZ/rSVBn8zvDVjC8JRuWqdeqyyhk=) 2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: PSBykVcDV3hqxYNYh299bEopkKdZ2ZlOFAYUPGTaBFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3393 (0xd41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Validity Not Before: May 18 18:40:36 2024 GMT Not After : May 25 18:40:36 2024 GMT Subject: CN=6648f625-57ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:39:30:9f:d5:db:6e:8e:9a:70:bb:8d:2e:64: e0:83:25:b1:f4:a3:ed:32:26:ac:3f:7d:7d:84:4a: ed:ce:40:9d:9c:d4:8f:76:99:3e:3d:d5:25:94:bd: 1d:bf:cd:d5:61:a7:59:eb:d9:05:fd:bc:60:bb:a6: bf:a7:cc:d9:cb:ca:f9:e4:5d:6b:d9:e9:9e:15:7c: ef:ee:fc:86:40:d8:e7:3a:e7:74:0b:b6:9c:d0:9c: 6e:5a:cf:b6:e7:28:b5:ed:41:b2:6f:3c:d3:1a:3c: ba:dc:4c:ed:92:6b:a1:65:d5:41:ad:ce:2c:23:00: fa:77:56:54:b8:c7:92:c7:f6:0b:27:97:ef:bd:ba: f9:30:16:6b:c9:15:05:d3:6d:32:c8:b8:c0:08:e7: df:b6:ce:20:cd:8f:c8:a2:0b:51:e2:3a:f5:20:0f: 07:e2:f7:d0:06:ae:a1:a5:2b:b6:08:41:f1:45:fb: 32:20:f4:ef:67:9b:2c:d0:f6:5e:65:6c:c7:54:ee: 14:6c:07:e4:08:0d:d5:ab:9e:ab:da:4c:5b:50:18: 09:d6:05:ec:74:66:a8:57:07:7d:00:f4:83:df:e2: 83:b7:fb:94:b0:a4:ca:39:46:4d:6d:ad:1f:78:1c: 3e:7f:bf:e7:7e:cf:2d:04:12:6d:70:17:ee:1c:92: 8d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8D:95:E3:74:B6:EB:82:FA:C7:74:85:DC:9D:81:F3:38:6D:DA:CB X509v3 Authority Key Identifier: keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:fb:f3:2e:1b:19:fe:e4:93:28:09:55:ac:43:46:10:d7:0c: ad:f0:2a:79:e0:34:e4:77:d6:e5:fb:8f:4a:a4:23:90:a3:16: f2:1d:5d:a7:c9:61:3e:68:2a:4b:4f:2a:b3:de:9b:d4:f7:8c: 4c:b2:de:4a:ca:5e:b7:98:f5:32:ce:07:24:d7:d7:29:d9:91: 94:dc:73:2b:ef:b8:1f:35:83:1e:c1:6d:32:7e:3b:c2:02:bd: 2d:b8:17:4e:54:30:3a:ad:1b:f2:55:56:3b:85:dc:04:bb:95: 79:d7:6e:00:ac:d3:93:8b:66:06:03:c2:a7:c8:a6:5f:98:01: 0e:c5:51:89:18:27:46:3a:7e:a8:56:d2:14:16:61:89:7e:9b: f8:08:99:f0:11:f6:fc:7f:52:ed:6f:5e:65:b4:b8:05:76:6e: 8c:22:f3:ec:e6:98:c0:1b:23:53:0c:a1:07:d2:84:12:80:f1: 8a:59:87:31:07:82:66:9b:4e:6c:cd:7d:51:af:bf:05:dd:90: 00:0f:71:fb:9a:ee:cf:a8:e3:d4:92:7d:35:d7:42:78:81:c0: 10:78:2f:e7:3d:46:8f:fb:a9:68:02:24:39:f9:f6:75:c9:a8: 8a:be:8a:12:e7:96:a3:90:0c:4f:60:3f:23:9f:db:bf:d1:c0: e0:ee:49:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzRDcxMTAvBgNVBAUTKDBFRDUyQTc2RjMxQzI0MjE3NEEyQUQxOTQ4MUM5NTcw M0I3MkUyMzYwHhcNMjQwNTE4MTg0MDM2WhcNMjQwNTI1MTg0MDM2WjAYMRYwFAYD VQQDEw02NjQ4ZjYyNS01N2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Dkwn9Xbbo6acLuNLmTggyWx9KPtMiasP319hErtzkCdnNSPdpk+PdUllL0d v83VYadZ69kF/bxgu6a/p8zZy8r55F1r2emeFXzv7vyGQNjnOud0C7ac0JxuWs+2 5yi17UGybzzTGjy63EztkmuhZdVBrc4sIwD6d1ZUuMeSx/YLJ5fvvbr5MBZryRUF 020yyLjACOffts4gzY/IogtR4jr1IA8H4vfQBq6hpSu2CEHxRfsyIPTvZ5ss0PZe ZWzHVO4UbAfkCA3Vq56r2kxbUBgJ1gXsdGaoVwd9APSD3+KDt/uUsKTKOUZNba0f eBw+f7/nfs8tBBJtcBfuHJKN9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCNleN0 tuuC+sd0hdydgfM4bdrLMB8GA1UdIwQYMBaAFA7VKnbzHCQhdKKtGUgclXA7cuI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNENy9EQzdEODg2NEFF QjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pDRjBvcTBaU0J5VmNEdHk0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0VXFkdk1jSkNGMG9xMFpTQnlWY0R0eTRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNENy9EQzdEODg2NEFFQjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pD RjBvcTBaU0J5VmNEdHk0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9+/MuGxn+5JMoCVWsQ0YQ1wyt8Cp54DTkd9bl+49KpCOQoxbyHV2n yWE+aCpLTyqz3pvU94xMst5Kyl63mPUyzgck19cp2ZGU3HMr77gfNYMewW0yfjvC Ar0tuBdOVDA6rRvyVVY7hdwEu5V5124ArNOTi2YGA8KnyKZfmAEOxVGJGCdGOn6o VtIUFmGJfpv4CJnwEfb8f1Ltb15ltLgFdm6MIvPs5pjAGyNTDKEH0oQSgPGKWYcx B4Jmm05szX1Rr78F3ZAAD3H7mu7PqOPUkn0110J4gcAQeC/nPUaP+6loAiQ5+fZ1 yaiKvooS55ajkAxPYD8jn9u/0cDg7klq -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org