$ rpki-client -vvf rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft File: dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft (raw, json) Hash identifier: jZB/TQiEjff/157Zg0sVSzB32O8k/ehG7sOMdnz8KGg= Subject key identifier: A4:95:EA:F6:56:02:7E:3C:AF:AA:1B:D7:4D:DD:C1:78:D8:69:75:96 Authority key identifier: 76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D Certificate issuer: /CN=A9147526/serialNumber=76DF846E6554C70CCAB78B8F8A5A7463E930AC0D Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft Manifest number: 033D Signing time: Tue 07 May 2024 02:57:00 +0000 Manifest this update: Tue 07 May 2024 02:56:59 +0000 Manifest next update: Tue 14 May 2024 02:56:59 +0000 Files and hashes: 1: dt-EbmVUxwzKt4uPilp0Y-kwrA0.crl (hash: 3B2a70RsDNCk3JeAyQsAS96Oi2iRcedTobQL2DFs25Y=) 2: 3D3238BADE7111ECA2E8646DC4F9AE02.roa (hash: 7uS2Z6zcporQxRqf7dVLJ5KNwnR7/LfuK1paT5o9xxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.crl rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147526/serialNumber=76DF846E6554C70CCAB78B8F8A5A7463E930AC0D Validity Not Before: May 7 02:56:59 2024 GMT Not After : May 14 02:56:59 2024 GMT Subject: CN=6639987b-08bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e7:07:de:b7:1a:d1:95:b2:43:a7:e3:71:83: 9d:a8:47:fe:23:b5:97:7d:36:f0:bd:67:d8:7e:d4: 92:0d:07:0b:a0:33:4d:01:3c:62:00:25:a2:2e:f4: ee:94:23:81:96:d5:66:fb:3e:98:03:4e:44:12:b7: e0:78:78:75:e7:cc:4a:1f:a2:0c:f0:67:54:31:da: 9e:c0:78:e7:73:9b:37:cc:22:70:98:cf:9e:d7:a2: 69:ba:0d:27:e2:c3:92:7b:4d:4c:8f:89:93:5c:7e: 2d:a8:76:bb:52:b3:05:79:df:e1:48:be:20:af:84: 6b:b5:20:45:02:91:c8:cd:4a:7f:04:e9:b9:1a:30: db:5b:74:4d:41:15:51:bc:04:59:99:40:e9:1e:25: e0:77:83:4c:53:fc:09:20:c8:5a:19:d1:89:b4:5d: cd:dd:a8:aa:39:3f:14:b0:03:d4:62:a6:e5:1d:b4: c0:21:63:5e:e7:bf:98:c1:e0:14:1d:83:21:1e:0c: b9:7c:ea:b5:b3:d3:2b:12:22:f9:8c:c8:5c:f2:c5: f4:18:78:81:07:69:e3:2e:24:51:f9:28:11:f3:38: ee:43:2a:f2:7b:da:7e:0f:4e:48:b9:81:8f:ee:66: 60:3d:eb:cc:7d:56:6d:6d:e7:4d:7a:c9:9d:a7:53: 7a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:95:EA:F6:56:02:7E:3C:AF:AA:1B:D7:4D:DD:C1:78:D8:69:75:96 X509v3 Authority Key Identifier: keyid:76:DF:84:6E:65:54:C7:0C:CA:B7:8B:8F:8A:5A:74:63:E9:30:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt-EbmVUxwzKt4uPilp0Y-kwrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147526/4B149548744C11EC9B58307AC4F9AE02/dt-EbmVUxwzKt4uPilp0Y-kwrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:3a:86:5a:6b:0f:23:17:11:ad:a2:20:7e:91:68:fa:7c:e4: 25:34:03:6b:bb:7b:63:a9:30:79:19:38:b7:d8:71:d1:91:b7: 7b:40:6f:f2:8d:01:c2:67:7d:0b:15:c7:36:3d:1e:08:92:b6: 5b:9b:c8:60:f2:17:c9:bb:e6:6e:e6:ba:99:a1:8f:6f:80:66: b1:0d:6d:67:cb:0c:1e:aa:66:da:5f:45:1e:c5:8b:e9:29:88: 0c:ae:db:03:b2:f5:c3:25:ea:20:3f:64:1a:09:f1:34:a5:8d: 1d:05:56:55:f7:eb:49:b0:f0:be:5c:2d:c4:65:da:6a:7a:5a: 98:eb:ba:32:46:f5:59:09:3f:8e:9b:39:68:1b:11:8a:07:35: 4b:e7:a1:6f:74:2d:aa:36:94:2a:c6:52:a7:85:89:58:bc:bf: d8:35:8c:1d:bc:f7:0f:3d:d2:83:5b:af:81:d1:d2:b9:cc:6e: 2b:06:65:80:5b:59:9f:ea:fe:f9:70:b1:c1:61:92:42:fd:2f: 44:94:31:2c:ab:bb:0a:00:de:99:c0:07:12:b5:6b:ad:c9:9b: e4:4d:07:57:8b:22:18:00:c4:08:a2:74:10:02:fe:76:a1:e0: fa:0a:66:e7:19:3c:9b:5b:99:ac:0a:f1:1f:63:8e:03:e5:7d: a0:59:58:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1MjYxMTAvBgNVBAUTKDc2REY4NDZFNjU1NEM3MENDQUI3OEI4RjhBNUE3NDYz RTkzMEFDMEQwHhcNMjQwNTA3MDI1NjU5WhcNMjQwNTE0MDI1NjU5WjAYMRYwFAYD VQQDEw02NjM5OTg3Yi0wOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ucH3rca0ZWyQ6fjcYOdqEf+I7WXfTbwvWfYftSSDQcLoDNNATxiACWiLvTu lCOBltVm+z6YA05EErfgeHh158xKH6IM8GdUMdqewHjnc5s3zCJwmM+e16Jpug0n 4sOSe01Mj4mTXH4tqHa7UrMFed/hSL4gr4RrtSBFApHIzUp/BOm5GjDbW3RNQRVR vARZmUDpHiXgd4NMU/wJIMhaGdGJtF3N3aiqOT8UsAPUYqblHbTAIWNe57+YweAU HYMhHgy5fOq1s9MrEiL5jMhc8sX0GHiBB2njLiRR+SgR8zjuQyrye9p+D05IuYGP 7mZgPevMfVZtbedNesmdp1N64wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSV6vZW An48r6ob103dwXjYaXWWMB8GA1UdIwQYMBaAFHbfhG5lVMcMyreLj4padGPpMKwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzUyNi80QjE0OTU0ODc0 NEMxMUVDOUI1ODMwN0FDNEY5QUUwMi9kdC1FYm1WVXh3ekt0NHVQaWxwMFkta3dy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0LUVibVZVeHd6S3Q0dVBpbHAwWS1rd3JBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzUyNi80QjE0OTU0ODc0NEMxMUVDOUI1ODMwN0FDNEY5QUUwMi9kdC1FYm1WVXh3 ekt0NHVQaWxwMFkta3dyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/OoZaaw8jFxGtoiB+kWj6fOQlNANru3tjqTB5GTi32HHRkbd7QG/y jQHCZ30LFcc2PR4IkrZbm8hg8hfJu+Zu5rqZoY9vgGaxDW1nywweqmbaX0UexYvp KYgMrtsDsvXDJeogP2QaCfE0pY0dBVZV9+tJsPC+XC3EZdpqelqY67oyRvVZCT+O mzloGxGKBzVL56FvdC2qNpQqxlKnhYlYvL/YNYwdvPcPPdKDW6+B0dK5zG4rBmWA W1mf6v75cLHBYZJC/S9ElDEsq7sKAN6ZwAcStWutyZvkTQdXiyIYAMQIonQQAv52 oeD6CmbnGTybW5msCvEfY44D5X2gWVj+ -----END CERTIFICATE-----Generated at Tue May 7 03:53:37 2024 by rpki-client on console-fra.rpki-client.org