$ rpki-client -vvf rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft File: DHYrLJAks0yYhILx1x10mufcSus.mft (raw, json) Hash identifier: 5koyl/B+Tqk7C2s8qgR1MTQMD2q+xOFQNrJ+M4Zsdnw= Subject key identifier: E8:83:3D:0A:81:37:6C:C5:4C:2C:8A:9E:FF:F6:7C:A5:CD:61:5C:E4 Authority key identifier: 0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB Certificate issuer: /CN=A91348C9/serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft Manifest number: 2E Signing time: Wed 15 May 2024 08:34:56 +0000 Manifest this update: Wed 15 May 2024 08:34:55 +0000 Manifest next update: Wed 22 May 2024 08:34:55 +0000 Files and hashes: 1: DHYrLJAks0yYhILx1x10mufcSus.crl (hash: ukz6yzNR4vrlmrTCAYw3EFnHvitY2HJf2xeRb/fkimE=) 2: 5D31D17ACE9811EE9392467BC4F9AE02.roa (hash: nmqIHRLv/Q4Hr6mVd9JiGcJerZCryDBpQg56b/HUztQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348C9/serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Validity Not Before: May 15 08:34:55 2024 GMT Not After : May 22 08:34:55 2024 GMT Subject: CN=664473b0-0ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:13:30:84:21:f0:a8:21:e3:8e:c7:0c:8d:24: 7f:6c:ea:72:2e:5f:07:29:66:b7:d6:4b:b4:70:92: cf:73:b0:99:1e:97:f1:12:2e:75:35:e8:5a:26:c5: bb:c6:65:c2:0e:ff:cf:a3:67:87:c1:79:db:12:d0: 6b:3b:21:9f:c3:62:2b:19:ed:3b:a5:ed:ba:4e:f4: 22:66:16:28:60:ff:7c:a5:5a:36:fa:a1:d2:21:ab: 23:40:dd:a3:f1:29:33:a0:2c:16:fb:dd:a8:93:ac: 05:bf:ec:80:31:52:11:78:8d:0a:8e:fa:37:e9:25: 96:29:93:d3:cc:47:24:8f:06:06:12:5f:9d:42:0a: 87:4c:9a:02:d5:52:48:cc:6a:1d:ff:c8:d8:30:fb: df:84:e9:ad:71:73:63:6d:bf:86:48:8b:9f:80:31: 28:c7:a9:2d:4d:b6:00:b1:41:cb:7e:68:f8:06:0d: c2:56:09:91:f2:89:e4:53:0e:38:5f:f3:7f:8c:a3: 25:d1:6d:0c:3a:0a:96:ec:48:d4:e3:71:30:cc:11: 48:48:bf:01:0d:ce:21:70:b9:65:e2:ae:3c:81:66: eb:ab:e0:d4:5c:1d:9b:6e:7a:b2:12:c7:b7:ba:97: 8c:ef:f1:f6:2d:d5:6a:57:13:4f:4b:e1:9a:93:ac: c6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:83:3D:0A:81:37:6C:C5:4C:2C:8A:9E:FF:F6:7C:A5:CD:61:5C:E4 X509v3 Authority Key Identifier: keyid:0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:c7:ce:9e:29:75:35:f0:d0:7d:b2:48:eb:87:38:89:ca:6b: 9a:e7:12:c1:b5:f3:34:61:5f:5a:50:06:8f:b6:99:21:5f:84: 16:9a:3a:3e:10:18:6f:f4:ef:67:5e:e4:a0:e6:46:dc:48:ad: 7e:5a:f7:ab:5e:b7:30:20:d9:62:d9:03:5d:2b:49:3f:7d:b5: 2b:fe:4e:d6:d0:9d:6e:4f:31:ec:c6:ed:68:ed:be:58:1c:db: bb:56:1a:0b:00:aa:bc:ed:8f:e8:a3:0b:0b:fe:42:08:64:22: db:21:e9:64:66:f7:1d:6d:20:73:40:95:13:1c:87:48:8a:4d: b6:c7:e5:25:e6:0c:7d:a4:02:f2:f1:6d:2b:cc:bd:09:ec:ca: fc:59:67:33:9c:a4:f3:83:be:1f:60:e4:3a:c4:0f:b7:8e:81: 91:70:5a:9f:da:de:9a:0b:b9:c8:3e:39:bd:13:a3:bf:e9:d8: ce:09:cc:a3:6a:ef:52:39:0b:da:c3:cb:a9:d7:3d:37:34:6c: 7c:7e:6c:4a:de:ec:6c:f9:c1:e2:17:9e:87:93:58:e5:cc:69: a3:bb:b4:3b:f2:06:f7:0a:99:67:da:2e:b7:77:d8:e0:43:88: 47:cb:11:e1:60:6e:79:f1:e9:95:09:e5:bb:69:b5:20:c5:db: 94:f6:99:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NDhDOTExMC8GA1UEBRMoMEM3NjJCMkM5MDI0QjM0Qzk4ODQ4MkYxRDcxRDc0OUFF N0RDNEFFQjAeFw0yNDA1MTUwODM0NTVaFw0yNDA1MjIwODM0NTVaMBgxFjAUBgNV BAMTDTY2NDQ3M2IwLTBhZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTEzCEIfCoIeOOxwyNJH9s6nIuXwcpZrfWS7Rwks9zsJkel/ESLnU16FomxbvG ZcIO/8+jZ4fBedsS0Gs7IZ/DYisZ7Tul7bpO9CJmFihg/3ylWjb6odIhqyNA3aPx KTOgLBb73aiTrAW/7IAxUhF4jQqO+jfpJZYpk9PMRySPBgYSX51CCodMmgLVUkjM ah3/yNgw+9+E6a1xc2Ntv4ZIi5+AMSjHqS1NtgCxQct+aPgGDcJWCZHyieRTDjhf 83+MoyXRbQw6CpbsSNTjcTDMEUhIvwENziFwuWXirjyBZuur4NRcHZtuerISx7e6 l4zv8fYt1WpXE09L4ZqTrMY7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6IM9CoE3 bMVMLIqe//Z8pc1hXOQwHwYDVR0jBBgwFoAUDHYrLJAks0yYhILx1x10mufcSusw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0OEM5L0NGQzEwRTBBQ0U5 NzExRUU5MjNGMDQ3MEM0RjlBRTAyL0RIWXJMSkFrczB5WWhJTHgxeDEwbXVmY1N1 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREhZckxKQWtzMHlZaElMeDF4MTBtdWZjU3VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 OEM5L0NGQzEwRTBBQ0U5NzExRUU5MjNGMDQ3MEM0RjlBRTAyL0RIWXJMSkFrczB5 WWhJTHgxeDEwbXVmY1N1cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD7Hzp4pdTXw0H2ySOuHOInKa5rnEsG18zRhX1pQBo+2mSFfhBaaOj4Q GG/072de5KDmRtxIrX5a96tetzAg2WLZA10rST99tSv+TtbQnW5PMezG7Wjtvlgc 27tWGgsAqrztj+ijCwv+QghkItsh6WRm9x1tIHNAlRMch0iKTbbH5SXmDH2kAvLx bSvMvQnsyvxZZzOcpPODvh9g5DrED7eOgZFwWp/a3poLucg+Ob0To7/p2M4JzKNq 71I5C9rDy6nXPTc0bHx+bEre7Gz5weIXnoeTWOXMaaO7tDvyBvcKmWfaLrd32OBD iEfLEeFgbnnx6ZUJ5btptSDF25T2mXE= -----END CERTIFICATE-----Generated at Wed May 15 09:27:30 2024 by rpki-client on console-fra.rpki-client.org