$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: B1HxaPrA6vhG33qMLtXCJrsnAvJiqAA/tAEj/1RFlKA= Subject key identifier: EA:53:4B:A6:8B:3F:FE:AB:EC:0B:F1:08:5D:47:C7:69:C3:D8:A5:D6 Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 0995 Signing time: Fri 22 Nov 2024 19:49:44 +0000 Manifest this update: Fri 22 Nov 2024 19:49:44 +0000 Manifest next update: Fri 29 Nov 2024 19:49:44 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: 9ayeAphL9Rk1NnuX9hIWvpQ3zacqVC9ru853sjbqmcw=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: OnZAowiVuvOnwLvfgL0R8vIbc2U3axlj1bMkwdwdu4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Nov 22 19:49:44 2024 GMT Not After : Nov 29 19:49:44 2024 GMT Subject: CN=6740e058-e90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:be:ca:c7:54:0b:00:05:5d:0f:97:b7:ed:26: 9b:ee:6d:3d:94:b1:b3:77:e3:a0:89:cf:47:0d:ba: b8:8a:ea:de:6a:5b:4d:01:53:f1:b6:0f:f6:e3:94: 3c:86:8f:0d:55:88:52:51:d6:50:f4:35:9b:c1:b1: 57:e6:0a:de:fb:16:09:4d:9b:b2:d2:9e:c0:1f:53: a8:65:eb:10:8a:d8:d0:b2:49:59:4e:26:85:8e:fe: 68:12:23:1e:c4:f8:bf:59:61:73:62:73:2a:1f:cd: dd:8e:2b:43:a7:11:d2:15:3e:21:d6:25:74:90:96: d1:b6:34:f0:be:02:ac:9e:e9:4b:00:e4:dc:8e:95: 67:41:9a:88:fa:85:7b:6d:f9:18:ce:c3:48:f3:71: e6:ce:c6:c6:8c:5d:ea:b8:03:5d:bc:3f:5f:68:f3: c8:33:69:fa:85:a0:2c:47:23:35:4a:1c:e0:65:bb: fc:51:93:d4:d3:c4:be:b6:fe:58:f9:71:13:74:f2: bd:68:ad:eb:96:33:88:9b:89:bb:45:24:ba:e3:54: 56:30:73:8f:90:d6:50:68:48:8a:20:fe:ee:8a:52: 8d:df:8d:9d:c5:51:3a:4f:e3:1a:e7:0e:7d:10:b6: 53:90:8a:10:1e:62:c2:be:78:91:83:0b:74:c4:8b: 69:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:53:4B:A6:8B:3F:FE:AB:EC:0B:F1:08:5D:47:C7:69:C3:D8:A5:D6 X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:db:30:e6:f8:12:11:c2:8f:59:22:cd:fd:9f:4a:32:cd:e2: 80:31:b2:77:6b:75:5e:bb:d6:34:9d:45:c7:f2:94:0e:d0:9e: ef:da:52:d1:f6:87:48:4e:ad:8f:53:6e:03:30:2e:7a:75:36: 58:2c:e8:2e:2b:6c:85:35:42:c3:1a:23:9f:69:5a:dc:0f:6f: 00:95:b2:34:f7:0b:b7:ec:9d:8f:4b:d8:ff:4a:06:ce:cd:0e: 96:b2:81:eb:41:c7:b4:74:5b:4f:55:13:b9:11:76:f2:ef:50: 8d:72:96:84:9e:6d:88:7d:83:b5:cf:37:09:03:01:76:9b:6d: 85:db:0e:1a:0e:ce:fa:b3:5d:f1:48:c9:77:76:69:70:7c:35: d4:0c:7b:ff:bb:1a:96:90:38:9c:82:50:0f:f1:c5:eb:e2:cd: 94:63:df:df:1f:24:b6:46:c5:27:51:65:f4:57:15:2c:2f:ea: 2f:e7:bb:cd:4f:7d:0d:a0:06:d2:22:95:37:08:63:2e:0d:18: 04:d6:ae:5e:eb:f3:b4:bc:7c:ba:06:c1:ae:6d:c6:c9:c1:7a: 6c:12:65:75:3d:78:fe:e5:c5:67:96:19:fb:a4:d2:76:84:e7: ce:55:21:0a:84:fb:8b:0e:1e:5c:1e:71:55:ac:00:6f:75:d3: 79:90:8f:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjQxMTIyMTk0OTQ0WhcNMjQxMTI5MTk0OTQ0WjAYMRYwFAYD VQQDEw02NzQwZTA1OC1lOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw77Kx1QLAAVdD5e37Sab7m09lLGzd+Ogic9HDbq4iurealtNAVPxtg/245Q8 ho8NVYhSUdZQ9DWbwbFX5gre+xYJTZuy0p7AH1OoZesQitjQsklZTiaFjv5oEiMe xPi/WWFzYnMqH83djitDpxHSFT4h1iV0kJbRtjTwvgKsnulLAOTcjpVnQZqI+oV7 bfkYzsNI83HmzsbGjF3quANdvD9faPPIM2n6haAsRyM1ShzgZbv8UZPU08S+tv5Y +XETdPK9aK3rljOIm4m7RSS641RWMHOPkNZQaEiKIP7uilKN342dxVE6T+Ma5w59 ELZTkIoQHmLCvniRgwt0xItpNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpTS6aL P/6r7AvxCF1Hx2nD2KXWMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA12zDm+BIRwo9ZIs39n0oyzeKAMbJ3a3Veu9Y0nUXH8pQO0J7v2lLR 9odITq2PU24DMC56dTZYLOguK2yFNULDGiOfaVrcD28AlbI09wu37J2PS9j/SgbO zQ6WsoHrQce0dFtPVRO5EXby71CNcpaEnm2IfYO1zzcJAwF2m22F2w4aDs76s13x SMl3dmlwfDXUDHv/uxqWkDicglAP8cXr4s2UY9/fHyS2RsUnUWX0VxUsL+ov57vN T30NoAbSIpU3CGMuDRgE1q5e6/O0vHy6BsGubcbJwXpsEmV1PXj+5cVnlhn7pNJ2 hOfOVSEKhPuLDh5cHnFVrABvddN5kI8J -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org