$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: VlUDyQM7IqmU/HQm6HTto/Nru+KxsuCG49CNGnWjgec= Subject key identifier: AF:A6:7D:BF:3A:3A:6F:2A:BE:30:7F:2B:54:97:A9:70:0A:66:75:C8 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0A5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0A17 Signing time: Sat 04 May 2024 21:01:05 +0000 Manifest this update: Sat 04 May 2024 21:01:04 +0000 Manifest next update: Sat 11 May 2024 21:01:04 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: klYjrGz2ANWV9R2i5cCtjs1+EJoAVVzhFy+yM0Hf0l4=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: JbOgcVk0SFjuz3pFR2xuSgFphJgl+zaZw80ujiiRGfQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: cO+lO6yNoyaxQ9zIQdsncGR/46no6uoF1ZfttfCv9RE=) 4: 55255C181F5911ECBEEBA411C4F9AE02.roa (hash: JUC9HllhFfhIW4ksdDhOhRFB7Pc7KtWivSnxW6Vllbs=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: cg0pTB0tQ3lVw+//8QI1VGIKFNM43Q8JPHW5fx5VAek=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: AgeBISo4j85LeR/reWfeuKjD8npGyHWY8ECaxsQhlYE=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: e9thDBmL8sJM6wfIji6pTwGCU4p0X8HaVmN0zYAxnPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2655 (0xa5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: May 4 21:01:04 2024 GMT Not After : May 11 21:01:04 2024 GMT Subject: CN=6636a210-9d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:7b:c0:c1:df:25:36:a4:c9:2d:7d:5d:5c: 79:1a:ca:8e:04:53:7f:dc:9f:a3:06:2d:8a:21:f6: 9e:ab:97:e6:d1:55:92:84:87:8f:e6:1e:44:db:a7: 46:4c:80:4f:aa:f1:7a:5c:35:ca:80:a8:0c:30:34: cd:10:31:20:df:ea:57:a6:a0:26:d0:ce:d0:1c:51: 0e:3e:49:ac:10:5d:fd:c7:2a:22:95:7d:54:e5:4b: b1:6a:23:6d:2f:08:14:54:db:10:02:eb:6a:0b:ae: a7:73:ae:5e:7e:f3:c7:fd:64:03:dc:a5:d2:44:1b: 65:a6:ba:8e:f0:57:08:d0:45:95:ba:ed:97:56:99: 50:39:0f:f9:b8:a8:8c:61:96:28:1e:f5:fe:6a:f1: 21:75:e9:8f:b0:44:6a:33:0e:15:c6:f3:c8:87:e3: c9:f4:b7:27:51:f7:8b:6d:de:13:a5:66:f1:a9:37: 90:ca:f0:82:b4:60:ab:37:73:d2:24:f0:29:ec:15: 42:da:94:e7:4c:92:89:0b:a8:0f:23:37:53:7d:ab: 52:ac:e7:b4:ec:b9:f0:6e:db:91:9a:47:0a:27:fa: 61:2a:3b:65:9c:e7:c2:b9:da:da:54:ff:09:bc:be: 15:6f:62:de:07:d4:76:59:34:01:a6:fd:de:12:f4: ec:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A6:7D:BF:3A:3A:6F:2A:BE:30:7F:2B:54:97:A9:70:0A:66:75:C8 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fb:cd:43:12:c3:37:34:90:14:7b:a8:5c:10:9e:32:7a:92: 6c:d5:43:21:6c:c6:af:e9:b3:3d:2c:db:0b:8d:6e:93:47:80: 56:95:05:9c:f5:c1:f1:5e:02:6b:8d:26:b7:dd:1e:1f:ef:0b: 49:94:d9:43:26:67:8c:76:8a:06:0a:1f:b6:3f:ef:45:c1:21: b8:42:db:cd:ab:c7:70:bd:d9:10:a1:cc:31:44:e7:58:63:d9: 76:af:0f:06:42:02:3f:9e:52:df:fa:ec:58:7a:dc:ff:a9:65: 59:6a:bf:47:50:81:43:03:27:ec:46:96:86:b5:f0:2c:c9:8c: 98:f9:bf:ba:b5:dd:97:23:82:52:08:4e:fc:bb:2d:95:b6:2b: b5:d1:24:9d:d4:be:6c:da:2a:e3:a2:0e:cf:2f:7e:ac:4d:d6: c8:8a:95:fa:fb:cd:7a:35:17:c6:e6:6f:a3:d5:0c:6b:6e:ca: 6a:d7:8d:81:a0:05:98:f0:58:24:fe:02:e0:26:e1:84:38:61: c4:f4:4b:70:62:a4:c7:d9:9e:ed:f1:46:1e:e3:a8:99:62:00: 0c:ff:53:55:47:91:eb:07:23:89:ca:6a:13:bb:a6:5f:e1:d3: 2b:dc:a9:eb:c9:c9:59:b7:82:0f:5a:a0:35:6a:c5:4e:aa:40: ae:e3:e5:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjQwNTA0MjEwMTA0WhcNMjQwNTExMjEwMTA0WjAYMRYwFAYD VQQDEw02NjM2YTIxMC05ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWl7wMHfJTakyS19XVx5GsqOBFN/3J+jBi2KIfaeq5fm0VWShIeP5h5E26dG TIBPqvF6XDXKgKgMMDTNEDEg3+pXpqAm0M7QHFEOPkmsEF39xyoilX1U5UuxaiNt LwgUVNsQAutqC66nc65efvPH/WQD3KXSRBtlprqO8FcI0EWVuu2XVplQOQ/5uKiM YZYoHvX+avEhdemPsERqMw4VxvPIh+PJ9LcnUfeLbd4TpWbxqTeQyvCCtGCrN3PS JPAp7BVC2pTnTJKJC6gPIzdTfatSrOe07LnwbtuRmkcKJ/phKjtlnOfCudraVP8J vL4Vb2LeB9R2WTQBpv3eEvTsqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+mfb86 Om8qvjB/K1SXqXAKZnXIMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN+81DEsM3NJAUe6hcEJ4yepJs1UMhbMav6bM9LNsLjW6TR4BWlQWc 9cHxXgJrjSa33R4f7wtJlNlDJmeMdooGCh+2P+9FwSG4QtvNq8dwvdkQocwxROdY Y9l2rw8GQgI/nlLf+uxYetz/qWVZar9HUIFDAyfsRpaGtfAsyYyY+b+6td2XI4JS CE78uy2Vtiu10SSd1L5s2irjog7PL36sTdbIipX6+816NRfG5m+j1Qxrbspq142B oAWY8Fgk/gLgJuGEOGHE9EtwYqTH2Z7t8UYe46iZYgAM/1NVR5HrByOJymoTu6Zf 4dMr3KnryclZt4IPWqA1asVOqkCu4+X+ -----END CERTIFICATE-----Generated at Sat May 4 22:06:52 2024 by rpki-client on console-ams.rpki-client.org