$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: Y10tAb8mpM4XXduvcm1sA0oqjOyqHJ+zX0n3HUq33cs= Subject key identifier: BB:01:6C:0C:5B:83:27:80:CD:EA:37:4E:4B:61:30:FD:2B:9A:45:3C Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: 0E Signing time: Wed 15 May 2024 09:01:03 +0000 Manifest this update: Wed 15 May 2024 09:01:02 +0000 Manifest next update: Wed 22 May 2024 09:01:02 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: Xi/pnj2ALMdyycJxwdEXeah7v/SArwJOAV+PrnqOnwE=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: 4MRjAqtj8SdaNUfco1nvvVlq6uYqCFQr7QTIgswP50M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 09:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: May 15 09:01:02 2024 GMT Not After : May 22 09:01:02 2024 GMT Subject: CN=664479cf-cc2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5a:ba:1d:53:d2:52:9d:25:e3:88:ef:97:c0: 2c:d5:e1:ab:e1:3d:c3:98:4e:9c:a7:ae:10:c3:72: fe:54:84:d8:5a:d4:11:a1:a8:2d:f3:1e:ce:13:7f: 8b:b5:ef:5d:e4:fb:eb:c9:82:d7:13:c5:d2:bc:37: de:59:88:cc:0e:c9:35:1f:fa:af:2e:34:98:bf:be: ff:5e:0d:cc:7e:9f:5e:78:87:ed:4c:44:e4:18:9e: da:d1:75:49:47:a0:05:94:d5:9f:39:22:08:13:60: 50:1b:05:b7:0e:af:49:aa:92:eb:b3:eb:c2:67:46: fe:41:b2:4a:41:6f:6f:27:19:4e:dc:18:04:49:01: 84:19:52:1b:a6:19:82:da:d9:a1:87:5c:b2:61:72: c4:d6:c6:44:1c:b6:39:c1:7e:07:9d:09:78:df:13: ff:51:69:71:13:f5:a7:ac:b2:5a:c2:5b:59:ad:5d: 38:24:4b:c1:da:b0:5b:fb:9a:6f:f0:80:11:33:85: 1f:fa:b8:5c:36:fb:72:fa:59:b2:0e:30:28:6b:a1: 7a:0e:2a:f1:8d:b8:6a:56:41:50:c6:70:10:70:60: 07:71:c3:f1:bc:79:16:f6:da:b5:14:a5:13:4e:ca: f9:a7:b6:1a:7b:8e:cf:be:d4:53:aa:d7:ff:19:be: 19:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:01:6C:0C:5B:83:27:80:CD:EA:37:4E:4B:61:30:FD:2B:9A:45:3C X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:c0:d9:26:4d:b3:14:9a:1e:1a:ff:4d:66:55:a9:1e:b4:c0: 12:02:5a:ea:a6:e8:43:51:78:62:a0:18:72:ea:30:bc:35:57: 1a:d7:9f:df:ff:f1:95:e0:17:2c:42:a2:cf:da:0d:0d:c1:0f: 30:1b:fe:3a:2d:72:f2:1e:92:8c:30:3b:6e:d7:00:95:1d:66: f2:42:63:0d:6e:c0:5e:90:6a:34:f5:ac:de:02:bf:53:3f:14: e7:98:d1:8e:e8:d2:c7:e5:e0:32:cb:72:66:ae:4d:ec:68:09: 0c:db:bf:d5:8b:1b:46:a3:99:2b:e7:36:12:a9:38:47:40:38: 47:1c:84:91:fc:95:3a:29:e9:14:87:58:5c:9e:bc:30:e9:f1: 10:94:45:ba:c2:f4:4c:bd:b1:28:b4:99:75:a2:09:42:43:9e: 39:06:4d:01:39:15:04:9c:14:1a:46:90:b6:78:61:3f:73:b1: 89:90:be:e1:b9:6d:43:f0:d1:83:e2:ea:e9:4f:df:bb:dd:08: 45:89:0f:02:b0:0b:43:c3:e4:dc:af:dc:c2:d6:d2:07:06:94: 67:fd:c5:76:c5:89:c9:4c:54:c7:13:99:59:96:7f:b7:09:78: e4:7e:e1:39:17:fc:fa:60:ff:24:0e:59:44:35:a4:04:f4:43: 8d:29:47:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTYyMzExMC8GA1UEBRMoNzY5NTM2ODM0MDIwOTM0OTUyMjk3RUJEQjc4MTg5MzU3 QjEzQTE0NTAeFw0yNDA1MTUwOTAxMDJaFw0yNDA1MjIwOTAxMDJaMBgxFjAUBgNV BAMTDTY2NDQ3OWNmLWNjMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClWrodU9JSnSXjiO+XwCzV4avhPcOYTpynrhDDcv5UhNha1BGhqC3zHs4Tf4u1 713k++vJgtcTxdK8N95ZiMwOyTUf+q8uNJi/vv9eDcx+n154h+1MROQYntrRdUlH oAWU1Z85IggTYFAbBbcOr0mqkuuz68JnRv5BskpBb28nGU7cGARJAYQZUhumGYLa 2aGHXLJhcsTWxkQctjnBfgedCXjfE/9RaXET9aesslrCW1mtXTgkS8HasFv7mm/w gBEzhR/6uFw2+3L6WbIOMChroXoOKvGNuGpWQVDGcBBwYAdxw/G8eRb22rUUpRNO yvmnthp7js++1FOq1/8ZvhkfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuwFsDFuD J4DN6jdOS2Ew/SuaRTwwHwYDVR0jBBgwFoAUdpU2g0Agk0lSKX69t4GJNXsToUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExNjIzLzUwQUQwNzE4RkQ0 NTExRUVBQjNBRDcxQkM0RjlBRTAyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9V VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZHBVMmcwQWdrMGxTS1g2OXQ0R0pOWHNUb1VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx NjIzLzUwQUQwNzE4RkQ0NTExRUVBQjNBRDcxQkM0RjlBRTAyL2RwVTJnMEFnazBs U0tYNjl0NEdKTlhzVG9VVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALvA2SZNsxSaHhr/TWZVqR60wBICWuqm6ENReGKgGHLqMLw1VxrXn9// 8ZXgFyxCos/aDQ3BDzAb/jotcvIekowwO27XAJUdZvJCYw1uwF6QajT1rN4Cv1M/ FOeY0Y7o0sfl4DLLcmauTexoCQzbv9WLG0ajmSvnNhKpOEdAOEcchJH8lTop6RSH WFyevDDp8RCURbrC9Ey9sSi0mXWiCUJDnjkGTQE5FQScFBpGkLZ4YT9zsYmQvuG5 bUPw0YPi6ulP37vdCEWJDwKwC0PD5Nyv3MLW0gcGlGf9xXbFiclMVMcTmVmWf7cJ eOR+4TkX/Ppg/yQOWUQ1pAT0Q40pR6Q= -----END CERTIFICATE-----Generated at Wed May 15 12:07:32 2024 by rpki-client on console-fra.rpki-client.org