$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: i8Y/I7+lKF1X+cBp9l40jx2VstoO2i39M4wdLT7H7dc= Subject key identifier: 25:00:DF:E5:C4:B3:65:E4:5F:F9:FD:96:CB:BA:B9:0C:A9:83:38:9B Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: A8 Signing time: Sat 25 May 2024 06:55:32 +0000 Manifest this update: Sat 25 May 2024 06:55:31 +0000 Manifest next update: Sat 01 Jun 2024 06:55:31 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: WnpR0nKCl2SDl7ZhBuigkwAvrj+LC92jpTk3PWzYFfo=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: 6/HvdcXz6XF7VI/qEr763x3PgJsrtnpRpiD6SfMSnBQ=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: TG2Xpnkruro8o/RJHM/hUY2Sm3O+/rdSirFf4nqB2xY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: May 25 06:55:31 2024 GMT Not After : Jun 1 06:55:31 2024 GMT Subject: CN=66518b64-df8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e2:b7:e2:50:ab:7a:db:f4:1c:9b:7f:3f:7c: 6b:c1:b2:16:26:b5:bb:b7:3e:c0:a9:12:11:dd:cb: 80:1e:e6:cd:87:3b:f0:1d:23:ba:63:29:3a:90:53: 33:f0:ef:43:d9:0b:81:56:49:6d:fb:6e:94:c5:50: 72:f4:42:f1:39:bb:42:08:34:e0:c0:3e:ed:bf:3c: 0e:41:25:ef:fb:6c:b9:18:02:d6:dc:55:a2:ae:71: bd:60:1e:1c:48:a1:1f:17:2c:f1:bd:e5:80:e6:8c: 44:85:1f:23:f3:e7:08:85:02:7c:48:28:ae:70:50: 9a:22:2c:f1:5c:ca:a2:4e:a4:b3:1e:2c:27:13:d6: 50:1b:7c:b2:3f:58:75:96:7e:ca:df:91:43:f4:a0: ee:a4:0f:3a:9c:08:dd:e2:6f:23:47:d5:7a:b8:09: de:d1:01:e1:4c:0d:91:38:50:55:f3:bf:17:44:2a: 1a:3d:c9:9d:6d:79:5a:02:d6:5a:e6:f6:86:1c:31: 19:20:9d:47:d0:ca:b6:42:0d:56:ac:a0:8d:58:97: 75:6b:e5:e5:f1:46:a9:49:51:d2:2f:c5:7e:05:82: 9e:4a:b5:bc:a8:d5:9f:10:4a:da:48:db:c6:d4:51: f0:2f:50:4c:2b:fb:c0:93:0c:44:fc:66:be:f9:d9: f2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:00:DF:E5:C4:B3:65:E4:5F:F9:FD:96:CB:BA:B9:0C:A9:83:38:9B X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:69:1e:9d:4a:63:cc:c0:9a:c0:6a:79:78:04:5b:ef:72:fa: 82:6d:3e:aa:ca:1f:05:d6:43:3e:05:36:31:85:51:0d:d9:a1: f3:4e:64:50:df:1f:53:bd:0d:90:b8:80:d1:01:4f:25:9f:e6: b2:a1:35:9f:4c:e5:f9:7f:91:0d:b3:de:af:56:cc:40:71:5c: 33:5c:37:c7:1b:ab:1c:8d:2a:ab:ed:da:c5:74:da:83:f6:6b: 5d:19:5d:44:39:28:9f:a0:c7:9f:8a:78:3d:2f:7d:a4:f4:8f: 3a:e9:d7:bf:7e:44:fa:06:23:a3:a3:9f:04:2a:ed:4d:37:34: 33:95:6d:9c:97:5d:7d:df:e0:54:99:f9:1e:3d:d9:66:7b:37: 4d:83:14:b3:cd:b5:c4:ea:52:ee:25:97:79:fd:96:87:a4:e8: 75:21:ad:90:7d:ba:e3:c5:9b:5d:db:b0:97:bd:e3:ea:dc:d7: ad:a2:ff:ae:d8:15:b3:53:d1:25:62:23:9f:f0:d5:68:8b:0e: 58:0e:7c:ac:bb:c2:b5:cf:87:17:ed:08:e6:e2:c8:9b:d1:93: 7c:84:06:9e:df:63:55:80:e8:2f:21:49:01:4f:1f:1c:18:12: d0:33:72:7c:7c:84:80:9e:4d:02:2b:d8:2f:5b:1e:2f:76:f7: 92:fe:ab:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjQwNTI1MDY1NTMxWhcNMjQwNjAxMDY1NTMxWjAYMRYwFAYD VQQDEw02NjUxOGI2NC1kZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseK34lCretv0HJt/P3xrwbIWJrW7tz7AqRIR3cuAHubNhzvwHSO6Yyk6kFMz 8O9D2QuBVklt+26UxVBy9ELxObtCCDTgwD7tvzwOQSXv+2y5GALW3FWirnG9YB4c SKEfFyzxveWA5oxEhR8j8+cIhQJ8SCiucFCaIizxXMqiTqSzHiwnE9ZQG3yyP1h1 ln7K35FD9KDupA86nAjd4m8jR9V6uAne0QHhTA2ROFBV878XRCoaPcmdbXlaAtZa 5vaGHDEZIJ1H0Mq2Qg1WrKCNWJd1a+Xl8UapSVHSL8V+BYKeSrW8qNWfEEraSNvG 1FHwL1BMK/vAkwxE/Ga++dnyGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUA3+XE s2XkX/n9lsu6uQypgzibMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3aR6dSmPMwJrAanl4BFvvcvqCbT6qyh8F1kM+BTYxhVEN2aHzTmRQ 3x9TvQ2QuIDRAU8ln+ayoTWfTOX5f5ENs96vVsxAcVwzXDfHG6scjSqr7drFdNqD 9mtdGV1EOSifoMefing9L32k9I866de/fkT6BiOjo58EKu1NNzQzlW2cl1193+BU mfkePdlmezdNgxSzzbXE6lLuJZd5/ZaHpOh1Ia2QfbrjxZtd27CXvePq3Netov+u 2BWzU9ElYiOf8NVoiw5YDnysu8K1z4cX7Qjm4sib0ZN8hAae32NVgOgvIUkBTx8c GBLQM3J8fISAnk0CK9gvWx4vdveS/qsC -----END CERTIFICATE-----Generated at Sat May 25 09:04:17 2024 by rpki-client on console-fra.rpki-client.org