$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft File: DAmet3to0aLfVJLHMbZNVB9VmwI.mft (raw, json) Hash identifier: osgEma/NHBYBmdPkafNLxodQdJI5CW+maVE/VckBexc= Subject key identifier: C8:E7:FA:A3:24:FA:99:25:21:63:5E:A1:B3:F9:72:87:DA:48:2C:B0 Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft Manifest number: 0234 Signing time: Wed 01 May 2024 04:20:05 +0000 Manifest this update: Wed 01 May 2024 04:20:05 +0000 Manifest next update: Wed 08 May 2024 04:20:05 +0000 Files and hashes: 1: DAmet3to0aLfVJLHMbZNVB9VmwI.crl (hash: dR43Ylx1MFlLfI1DqVQsRSlyZi1FL4HSQo2AiZPRzYM=) 2: 32F44056DB1911EC87E56C0DC4F9AE02.roa (hash: +cUxt4TRLN42oBW+5NhB6UvFzJfvO83kyDHD3UXsZng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Validity Not Before: May 1 04:20:05 2024 GMT Not After : May 8 04:20:05 2024 GMT Subject: CN=6631c2f5-0242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cd:ec:30:95:7e:1c:58:b8:19:d4:c3:07:86: c4:b0:f2:5d:a7:80:e8:7f:b6:d5:67:a5:ae:6b:89: db:a4:55:8c:11:5f:0f:fb:2a:6b:3a:d4:e3:1f:8d: 43:8c:82:11:91:7c:8e:22:87:21:c2:93:29:82:05: af:99:c1:29:89:2c:2a:85:c6:fb:cb:06:de:5c:be: 3e:09:85:7a:dd:4c:2d:d6:74:3c:d2:b3:64:e5:c7: d1:c3:32:56:1f:d7:3f:c3:9b:e9:bf:b9:3a:3c:b6: df:b1:45:39:4b:0f:6b:60:7a:94:bd:c1:ed:f1:a3: c7:4b:f0:dc:64:84:12:7c:a0:61:67:7a:ce:81:bb: af:cf:3b:ef:80:75:28:6c:96:2c:09:93:af:61:c8: 6f:d5:3d:ed:dc:1b:9f:23:7f:bb:21:0d:ad:e7:53: f2:d7:69:5c:d4:26:06:37:bd:08:f5:3e:cb:a7:7c: c9:f0:c0:62:77:96:6c:5d:85:3e:fe:9e:a8:09:f0: d4:21:56:ca:e3:e3:cf:38:6e:a7:8a:68:d8:0c:c6: a0:fe:ae:81:2f:71:76:b9:31:02:c8:3b:c2:7b:1b: 83:b0:2a:46:93:9b:ae:c6:54:45:ee:cd:6c:74:2c: 0c:67:a7:29:6d:7d:f2:fe:54:d9:06:76:a5:42:e2: 26:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E7:FA:A3:24:FA:99:25:21:63:5E:A1:B3:F9:72:87:DA:48:2C:B0 X509v3 Authority Key Identifier: keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:73:d9:69:ca:09:26:f9:c0:b5:87:e9:39:b5:b7:7b:b1:00: 23:30:a4:65:e2:87:61:9a:05:1b:3f:df:0d:5e:68:6a:f6:41: 59:b7:64:20:d7:02:8d:77:15:16:e4:d4:7a:e4:cd:ea:06:d4: 3a:d7:14:c6:6d:5d:53:3d:4f:56:27:b6:68:62:cf:89:a6:bf: f3:ce:82:f7:e7:c3:d5:c5:3d:bd:26:67:4b:5a:1c:76:68:89: d0:08:03:9a:66:5f:23:5f:da:46:2f:dc:40:2f:36:72:a7:31: 7f:4a:aa:9f:f3:0f:e4:aa:d6:af:ea:40:3f:df:c6:30:9c:e9: a5:20:c8:34:89:45:b9:9d:97:3c:32:b9:88:c8:b7:09:62:5a: 67:4a:87:7a:cf:27:81:b0:15:2b:01:70:3a:2a:f6:56:8f:f3: f9:c2:d0:2d:26:ed:e9:5a:c8:3c:e8:f8:c7:b9:13:35:69:7c: d2:20:db:e8:67:c0:32:ff:85:3e:b0:f3:f1:93:a4:6d:b0:90: f8:40:8f:85:2e:dc:42:39:3e:2e:4e:a1:c2:03:da:b9:bf:77: 1a:cd:33:b3:ff:90:ef:01:e6:b4:bd:21:e9:36:1d:cd:db:d6: 2b:73:28:bb:85:d1:cf:34:45:15:6a:c2:6c:20:b9:55:e1:54: 50:e5:4b:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QTQxMTAvBgNVBAUTKDBDMDk5RUI3N0I2OEQxQTJERjU0OTJDNzMxQjY0RDU0 MUY1NTlCMDIwHhcNMjQwNTAxMDQyMDA1WhcNMjQwNTA4MDQyMDA1WjAYMRYwFAYD VQQDEw02NjMxYzJmNS0wMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx83sMJV+HFi4GdTDB4bEsPJdp4Dof7bVZ6Wua4nbpFWMEV8P+yprOtTjH41D jIIRkXyOIochwpMpggWvmcEpiSwqhcb7ywbeXL4+CYV63Uwt1nQ80rNk5cfRwzJW H9c/w5vpv7k6PLbfsUU5Sw9rYHqUvcHt8aPHS/DcZIQSfKBhZ3rOgbuvzzvvgHUo bJYsCZOvYchv1T3t3BufI3+7IQ2t51Py12lc1CYGN70I9T7Lp3zJ8MBid5ZsXYU+ /p6oCfDUIVbK4+PPOG6nimjYDMag/q6BL3F2uTECyDvCexuDsCpGk5uuxlRF7s1s dCwMZ6cpbX3y/lTZBnalQuIm+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjn+qMk +pklIWNeobP5cofaSCywMB8GA1UdIwQYMBaAFAwJnrd7aNGi31SSxzG2TVQfVZsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlBNC9EQkFCOTM2RURB NzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBhTGZWSkxITWJaTlZCOVZt d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBbWV0M3RvMGFMZlZKTEhNYlpOVkI5Vm13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlBNC9EQkFCOTM2RURBNzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBh TGZWSkxITWJaTlZCOVZtd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPc9lpygkm+cC1h+k5tbd7sQAjMKRl4odhmgUbP98NXmhq9kFZt2Qg 1wKNdxUW5NR65M3qBtQ61xTGbV1TPU9WJ7ZoYs+Jpr/zzoL358PVxT29JmdLWhx2 aInQCAOaZl8jX9pGL9xALzZypzF/Sqqf8w/kqtav6kA/38YwnOmlIMg0iUW5nZc8 MrmIyLcJYlpnSod6zyeBsBUrAXA6KvZWj/P5wtAtJu3pWsg86PjHuRM1aXzSINvo Z8Ay/4U+sPPxk6RtsJD4QI+FLtxCOT4uTqHCA9q5v3cazTOz/5DvAea0vSHpNh3N 29Yrcyi7hdHPNEUVasJsILlV4VRQ5Utf -----END CERTIFICATE-----Generated at Wed May 1 05:59:02 2024 by rpki-client on console-fra.rpki-client.org