$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: ZDs59bF000Bkq/PB4xIWeHIizJN7rzNPGD14ll8zXjI= Subject key identifier: E1:EB:FD:6B:53:D0:22:A8:E0:78:29:2B:67:4C:07:E9:FA:4B:15:AF Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 0932 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 092B Signing time: Tue 30 Apr 2024 21:30:11 +0000 Manifest this update: Tue 30 Apr 2024 21:30:10 +0000 Manifest next update: Tue 07 May 2024 21:30:10 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: tgJ25tkAIEh4beEB31j+D6J3QqTgNQ4Xv+nMARCMq5k=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: 63q5xAYRR13q9Wbw71Jt7uvF6vNGnh8Mpl6xwXy0DDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Apr 30 21:30:10 2024 GMT Not After : May 7 21:30:10 2024 GMT Subject: CN=663162e2-b5a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a0:50:f4:f9:69:80:4e:0f:93:af:e8:0c:67: 12:cb:05:39:90:d5:97:d5:6e:cd:5a:39:f9:39:ae: 3f:d2:bc:a2:a2:51:37:99:76:49:77:3d:59:9e:11: dc:0b:a9:33:3e:b9:af:2b:bb:61:da:ad:8b:d1:e2: 81:84:81:9d:5e:08:d4:19:a6:0f:2d:f1:16:04:8a: b4:56:cb:12:6c:2a:f5:a8:fe:b0:26:27:ac:37:35: a2:8a:75:29:c0:ab:0b:60:97:8c:38:f2:62:82:63: f2:89:d5:2a:03:40:0f:88:e4:79:82:86:e7:84:98: 1e:80:1e:da:53:c0:d6:32:cf:b1:86:76:8a:03:ce: ce:0e:28:73:49:87:3c:98:6a:eb:0d:2a:31:17:bf: 1f:9b:fd:71:d8:be:8a:d0:10:9d:72:35:ed:21:cc: 8f:2f:41:86:5e:ed:78:ed:9e:98:fd:83:8a:8b:1e: 6b:a3:3c:bc:b1:c9:f9:bf:43:61:38:ce:84:a8:28: 79:00:66:00:d0:ac:2c:92:6c:8c:c0:29:0b:e1:4a: f6:89:b8:93:76:b3:02:c9:e6:5e:0a:07:7d:31:e1: 57:95:2c:59:fc:c2:5e:e1:b7:98:89:48:96:a2:28: e1:cc:01:76:8d:f2:bd:e4:37:15:2f:e9:e8:a6:6e: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EB:FD:6B:53:D0:22:A8:E0:78:29:2B:67:4C:07:E9:FA:4B:15:AF X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:af:92:39:b5:32:65:b1:36:17:64:14:18:06:73:cc:ed:cc: 57:69:31:2d:bb:85:02:57:21:26:72:8a:83:18:f1:6c:70:92: 1e:d3:07:fe:f1:a1:38:1c:ae:68:57:3c:0f:a7:53:17:51:5a: 9a:fe:56:69:77:bb:03:29:f3:9f:c3:07:87:d9:73:12:35:c5: d4:80:34:4f:d4:5f:a0:92:23:78:58:f7:f5:10:f3:d2:bb:f4: 31:6d:2f:13:e4:48:1c:13:09:74:6e:12:6f:bd:bb:86:4c:57: c9:e4:af:74:99:f9:4b:a5:70:af:b2:a9:d0:37:69:97:72:e0: aa:eb:ad:15:a8:8e:62:28:1d:63:67:46:6d:46:49:99:37:01: 5a:d3:6e:61:a3:63:39:d7:b0:b7:b4:fb:e6:00:e3:25:99:d4: f7:f0:17:d1:97:fc:81:d6:d9:3d:14:58:21:42:56:04:ba:1e: b9:2a:19:dc:9c:32:41:7c:c8:bf:8b:df:41:8e:e7:11:88:f8: 7a:31:b4:8d:93:84:e6:78:ba:6a:44:0c:9b:51:b2:b6:05:02: 1e:f5:56:be:b8:0d:31:ea:63:eb:0d:57:d8:92:df:c7:a8:fe: 99:e0:bf:b9:b1:2c:e1:e3:44:3c:c2:80:cc:00:54:1d:63:8d: 1a:7a:f5:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjQwNDMwMjEzMDEwWhcNMjQwNTA3MjEzMDEwWjAYMRYwFAYD VQQDEw02NjMxNjJlMi1iNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaBQ9PlpgE4Pk6/oDGcSywU5kNWX1W7NWjn5Oa4/0ryiolE3mXZJdz1ZnhHc C6kzPrmvK7th2q2L0eKBhIGdXgjUGaYPLfEWBIq0VssSbCr1qP6wJiesNzWiinUp wKsLYJeMOPJigmPyidUqA0APiOR5gobnhJgegB7aU8DWMs+xhnaKA87ODihzSYc8 mGrrDSoxF78fm/1x2L6K0BCdcjXtIcyPL0GGXu147Z6Y/YOKix5rozy8scn5v0Nh OM6EqCh5AGYA0KwskmyMwCkL4Ur2ibiTdrMCyeZeCgd9MeFXlSxZ/MJe4beYiUiW oijhzAF2jfK95DcVL+nopm6+3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHr/WtT 0CKo4HgpK2dMB+n6SxWvMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQr5I5tTJlsTYXZBQYBnPM7cxXaTEtu4UCVyEmcoqDGPFscJIe0wf+ 8aE4HK5oVzwPp1MXUVqa/lZpd7sDKfOfwweH2XMSNcXUgDRP1F+gkiN4WPf1EPPS u/QxbS8T5EgcEwl0bhJvvbuGTFfJ5K90mflLpXCvsqnQN2mXcuCq660VqI5iKB1j Z0ZtRkmZNwFa025ho2M517C3tPvmAOMlmdT38BfRl/yB1tk9FFghQlYEuh65Khnc nDJBfMi/i99BjucRiPh6MbSNk4TmeLpqRAybUbK2BQIe9Va+uA0x6mPrDVfYkt/H qP6Z4L+5sSzh40Q8woDMAFQdY40aevUm -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:12 2024 by rpki-client on console-fra.rpki-client.org