$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft File: dzKJlNE-mJVBnIEGa6YRgdGCtog.mft (raw, json) Hash identifier: tDFbkPgSZbTxgFYjmpWzVu4tsrssdXNdcIbcuDHwqfI= Subject key identifier: 62:98:CC:7E:1C:90:CB:39:99:A3:B9:82:9D:9E:53:3B:9A:39:7D:32 Authority key identifier: 77:32:89:94:D1:3E:98:95:41:9C:81:06:6B:A6:11:81:D1:82:B6:88 Certificate issuer: /CN=A91F71E8/serialNumber=77328994D13E9895419C81066BA61181D182B688 Certificate serial: 1125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft Manifest number: 1883 Signing time: Sat 18 May 2024 17:50:55 +0000 Manifest this update: Sat 18 May 2024 17:50:54 +0000 Manifest next update: Sat 25 May 2024 17:50:54 +0000 Files and hashes: 1: dzKJlNE-mJVBnIEGa6YRgdGCtog.crl (hash: EbyHavG6ZbD6NYNbMcuM7HpUzLEu0i7nEQZx5m7NQ30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4389 (0x1125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8/serialNumber=77328994D13E9895419C81066BA61181D182B688 Validity Not Before: May 18 17:50:54 2024 GMT Not After : May 25 17:50:54 2024 GMT Subject: CN=6648ea7f-e14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:5f:62:e6:5c:d0:44:04:3e:df:e3:f6:3e: 0c:a8:71:20:fe:7e:b4:b6:c0:19:37:5c:f2:f2:bd: 5a:cb:09:72:4b:8f:79:54:36:08:be:9a:6a:6e:88: d6:6b:7b:08:4c:3b:cf:c4:d2:76:24:b9:1d:55:5c: f4:d9:21:d6:f0:87:de:3b:c2:3b:ab:e0:61:ef:21: c7:1d:e1:63:02:31:1c:b9:d4:28:4b:1a:72:6b:47: e2:32:43:16:a2:e2:83:96:79:90:7c:f3:3c:11:e7: 45:71:72:2f:83:18:f2:0c:e9:a1:a7:5b:ff:9f:96: 7f:cc:1a:15:44:80:df:f6:87:37:a1:5a:b4:c9:08: c5:00:81:aa:39:7e:0e:a6:26:24:d3:9f:a2:fb:82: 23:0e:97:aa:49:43:91:5d:3b:d7:55:30:50:80:e3: 47:b6:a6:7d:2f:91:1d:f3:53:0e:a5:9f:a9:57:ae: 1c:57:e9:82:9d:78:51:e5:4c:54:5a:4b:e1:37:0c: 22:9a:90:12:17:e3:d6:00:b7:db:6a:a5:a5:94:ce: c1:fa:cd:2f:25:a9:11:3d:71:4e:39:b7:81:0b:93: 5d:fd:0e:4e:2a:46:3c:0e:5e:f5:44:61:c8:9a:1a: a2:e2:ac:59:65:e2:e6:3d:cb:5c:40:6b:a4:c7:98: db:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:98:CC:7E:1C:90:CB:39:99:A3:B9:82:9D:9E:53:3B:9A:39:7D:32 X509v3 Authority Key Identifier: keyid:77:32:89:94:D1:3E:98:95:41:9C:81:06:6B:A6:11:81:D1:82:B6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:57:62:b1:95:2a:80:bb:81:0f:e4:7b:1b:8e:62:85:06:d4: 19:08:44:41:ed:f3:01:f8:db:4f:fd:6a:46:6e:ac:07:d4:7e: f9:4e:76:c2:1d:2b:ed:a8:6c:8e:08:77:fb:df:28:a1:7a:61: 6c:3b:d8:9a:32:45:8f:d5:d0:30:a1:26:1f:ab:d0:5b:77:2d: 09:a5:1e:1f:4f:4d:23:d0:d1:bb:be:20:db:44:c5:b1:b3:15: 2b:74:46:de:e6:ee:a3:e6:c9:ec:cf:3a:05:9f:5d:a3:71:7b: 8b:1a:52:14:11:42:7f:ee:17:8e:bb:c9:b2:1d:ff:c9:c5:d5: 70:81:f8:a8:2f:17:a2:81:06:d8:dd:26:45:9a:bb:63:e4:92: f0:50:ca:38:aa:9a:f9:62:ca:51:1d:07:86:7d:ed:15:d9:38: 4f:e8:d6:5c:18:d3:8c:ce:6f:11:e4:87:3c:52:3a:80:92:4c: ea:ea:2d:f5:49:64:b9:91:9f:43:6e:af:44:91:73:d2:0b:4c: b2:28:f8:9f:54:07:02:b2:25:68:61:1a:60:fc:62:32:6e:37: 5f:bb:f6:13:76:88:31:de:5a:00:a9:f7:d7:23:9b:44:8e:a3: 15:2e:e4:29:ea:b6:06:12:c8:26:e5:54:9a:8e:c7:90:a5:21: 99:d2:20:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKDc3MzI4OTk0RDEzRTk4OTU0MTlDODEwNjZCQTYxMTgx RDE4MkI2ODgwHhcNMjQwNTE4MTc1MDU0WhcNMjQwNTI1MTc1MDU0WjAYMRYwFAYD VQQDEw02NjQ4ZWE3Zi1lMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+tfYuZc0EQEPt/j9j4MqHEg/n60tsAZN1zy8r1aywlyS495VDYIvppqbojW a3sITDvPxNJ2JLkdVVz02SHW8IfeO8I7q+Bh7yHHHeFjAjEcudQoSxpya0fiMkMW ouKDlnmQfPM8EedFcXIvgxjyDOmhp1v/n5Z/zBoVRIDf9oc3oVq0yQjFAIGqOX4O piYk05+i+4IjDpeqSUORXTvXVTBQgONHtqZ9L5Ed81MOpZ+pV64cV+mCnXhR5UxU WkvhNwwimpASF+PWALfbaqWllM7B+s0vJakRPXFOObeBC5Nd/Q5OKkY8Dl71RGHI mhqi4qxZZeLmPctcQGukx5jbFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKYzH4c kMs5maO5gp2eUzuaOX0yMB8GA1UdIwQYMBaAFHcyiZTRPpiVQZyBBmumEYHRgraI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9kektKbE5FLW1KVkJuSUVHYTZZUmdkR0N0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R6S0psTkUtbUpWQm5JRUdhNllSZ2RHQ3RvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9kektKbE5FLW1K VkJuSUVHYTZZUmdkR0N0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtV2KxlSqAu4EP5HsbjmKFBtQZCERB7fMB+NtP/WpGbqwH1H75TnbC HSvtqGyOCHf73yihemFsO9iaMkWP1dAwoSYfq9Bbdy0JpR4fT00j0NG7viDbRMWx sxUrdEbe5u6j5snszzoFn12jcXuLGlIUEUJ/7heOu8myHf/JxdVwgfioLxeigQbY 3SZFmrtj5JLwUMo4qpr5YspRHQeGfe0V2ThP6NZcGNOMzm8R5Ic8UjqAkkzq6i31 SWS5kZ9Dbq9EkXPSC0yyKPifVAcCsiVoYRpg/GIybjdfu/YTdogx3loAqffXI5tE jqMVLuQp6rYGEsgm5VSajseQpSGZ0iAr -----END CERTIFICATE-----Generated at Sat May 18 19:15:27 2024 by rpki-client on console-ams.rpki-client.org