$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: WRK8r3B2f2bwRyJSfubpDyrXXlKv3m3KFVYx2fDYzEQ= Subject key identifier: 39:B5:1A:EA:F1:0D:F9:9F:DA:CE:14:99:C0:20:19:C8:64:D1:12:91 Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 0643 Signing time: Tue 30 Apr 2024 23:59:44 +0000 Manifest this update: Tue 30 Apr 2024 23:59:44 +0000 Manifest next update: Tue 07 May 2024 23:59:44 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: 1xxyYy0TGT8MIpCB7xEKqjqM67v+JGRxo1H/RTmcIgw=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: klZ7hdJGu3FLMWpo3fpqUcfgY2aa8dCrj9r2T0XQLGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Apr 30 23:59:44 2024 GMT Not After : May 7 23:59:44 2024 GMT Subject: CN=663185f0-fce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d7:3f:0c:bb:13:48:97:c5:0b:78:a3:3e:b3: 5c:cb:91:98:9f:4a:16:09:78:76:7d:39:10:ce:97: 85:73:af:8a:db:f6:d2:97:57:78:ec:7d:0d:dc:39: 74:4e:8d:8f:78:3f:9e:f3:23:fe:c9:5e:fe:19:78: cc:66:77:80:f3:80:cb:3e:08:ad:fe:1b:7b:3e:e6: 51:f2:43:bc:07:13:3d:25:cf:e7:89:7f:ff:f8:cf: 9a:ad:4f:e2:98:52:51:71:40:47:77:01:5d:28:c5: f1:f0:03:be:cc:2a:d2:85:e2:8e:bd:3d:a2:66:c5: 2d:96:4e:9f:bc:09:94:c9:95:51:87:29:13:24:06: dc:2c:d4:5b:64:a6:9c:51:9a:3e:9f:f8:9a:b5:77: 00:0e:e8:42:81:2c:02:8a:fc:71:b8:13:31:14:ba: e6:00:f7:33:65:95:55:1b:84:58:94:08:b0:4d:a0: 58:b0:02:69:8f:5d:47:b3:5d:11:e7:95:58:cf:53: ab:21:9e:49:c6:16:3e:68:6c:aa:bc:f1:3e:4b:d4: 9a:a6:d4:83:07:45:d0:c7:22:57:00:b5:af:d1:de: 1a:c3:2e:c4:5f:f7:66:ff:c2:6c:f7:ee:43:10:71: b0:69:e7:1e:71:58:7a:08:21:8b:fb:bf:2a:15:ea: fd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B5:1A:EA:F1:0D:F9:9F:DA:CE:14:99:C0:20:19:C8:64:D1:12:91 X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:44:7b:9f:d1:d6:74:c9:d7:da:72:27:a2:2e:95:ee:fd:7b: d6:dd:2e:59:40:cc:bd:4a:60:0c:55:79:17:e0:69:8e:ac:57: 9b:4f:74:76:04:14:c1:5e:be:89:c4:07:d0:28:d7:2e:84:a8: f1:8a:27:15:ef:3e:a8:33:b3:5a:52:f7:4a:61:4a:ed:53:2d: b4:6b:1b:05:c4:3a:09:a7:fa:c0:03:74:19:bd:be:4a:53:e3: 9b:8f:13:08:51:24:12:9e:b5:a4:bc:46:3b:59:3d:97:2a:66: 01:ea:9c:4f:73:09:5d:ac:39:8f:e0:6c:63:87:e9:6c:ae:89: be:87:54:10:a4:0e:d5:2e:79:d2:1a:db:0f:8b:37:8c:33:b4: 2d:6d:09:8b:0d:96:14:8e:38:46:7a:90:80:57:ca:66:01:71: 8c:d1:5f:07:1e:55:1b:29:5f:87:09:57:34:90:e9:f4:2f:8f: 92:4d:6f:fe:8a:0f:6a:09:70:c9:bc:27:73:4b:5c:b8:00:04: e2:7c:1b:e4:51:c4:18:74:e3:bf:25:3f:0b:03:e9:29:d1:3a: 37:39:e0:bc:7c:bb:8a:e5:6c:08:1b:b2:b2:7a:7b:c2:c2:a7: 2e:a8:f1:cc:49:fa:d8:27:91:0b:41:dc:0d:b6:f5:bf:01:2e: 36:8b:08:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjQwNDMwMjM1OTQ0WhcNMjQwNTA3MjM1OTQ0WjAYMRYwFAYD VQQDEw02NjMxODVmMC1mY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dc/DLsTSJfFC3ijPrNcy5GYn0oWCXh2fTkQzpeFc6+K2/bSl1d47H0N3Dl0 To2PeD+e8yP+yV7+GXjMZneA84DLPgit/ht7PuZR8kO8BxM9Jc/niX//+M+arU/i mFJRcUBHdwFdKMXx8AO+zCrSheKOvT2iZsUtlk6fvAmUyZVRhykTJAbcLNRbZKac UZo+n/iatXcADuhCgSwCivxxuBMxFLrmAPczZZVVG4RYlAiwTaBYsAJpj11Hs10R 55VYz1OrIZ5JxhY+aGyqvPE+S9SaptSDB0XQxyJXALWv0d4awy7EX/dm/8Js9+5D EHGwaececVh6CCGL+78qFer9swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm1Gurx Dfmf2s4UmcAgGchk0RKRMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6RHuf0dZ0ydfacieiLpXu/XvW3S5ZQMy9SmAMVXkX4GmOrFebT3R2 BBTBXr6JxAfQKNcuhKjxiicV7z6oM7NaUvdKYUrtUy20axsFxDoJp/rAA3QZvb5K U+ObjxMIUSQSnrWkvEY7WT2XKmYB6pxPcwldrDmP4Gxjh+lsrom+h1QQpA7VLnnS GtsPizeMM7QtbQmLDZYUjjhGepCAV8pmAXGM0V8HHlUbKV+HCVc0kOn0L4+STW/+ ig9qCXDJvCdzS1y4AATifBvkUcQYdOO/JT8LA+kp0To3OeC8fLuK5WwIG7KyenvC wqcuqPHMSfrYJ5ELQdwNtvW/AS42iwgt -----END CERTIFICATE-----Generated at Wed May 1 00:35:48 2024 by rpki-client on console-ams.rpki-client.org