$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: FHlpndIP1ZlnNvuXSgpnAUeDt7T+nZAX4pR/u15+rZU= Subject key identifier: 1D:A0:FB:36:E4:48:34:17:54:01:B1:90:67:D8:97:CA:5F:80:EC:5A Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 10B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 10AD Signing time: Fri 26 Apr 2024 17:54:51 +0000 Manifest this update: Fri 26 Apr 2024 17:54:51 +0000 Manifest next update: Fri 03 May 2024 17:54:51 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: 2u9ibpEk61UP4xW6PiEtnoQmo9BZhEpxD7zjJ6cbUfo=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: n0eE4w1ioXiku75wdXVIUXgqTRR1ty++Snk078GZCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4274 (0x10b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Apr 26 17:54:51 2024 GMT Not After : May 3 17:54:51 2024 GMT Subject: CN=662bea6b-0496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:ec:07:90:fc:34:b0:52:ac:df:5a:3f:d8: 81:ff:bc:9b:d9:df:71:3e:91:54:0f:43:83:34:05: 6d:70:31:19:9f:4e:a5:97:48:1d:f9:00:de:25:13: 10:d3:58:10:4f:ef:63:0a:6f:b6:27:b8:66:8b:3e: c7:fa:25:46:66:a0:3a:f7:3c:fd:f8:82:71:36:6d: 58:e5:9d:1c:99:b0:90:a8:26:7c:43:4c:cd:89:e6: 7f:66:33:6b:8a:3c:73:6c:73:99:7f:c0:10:3a:f7: 69:c2:3d:d8:73:39:dc:bc:a7:3b:95:a0:39:59:d0: c0:c5:c3:54:fa:43:02:53:94:e5:8c:6e:bc:a4:1e: 58:b3:e5:5e:da:55:e3:e5:26:1c:c4:e7:1b:2a:03: 3e:71:75:78:31:43:94:71:21:79:cd:cb:14:6c:20: 09:0d:3c:a1:9c:67:4e:81:37:a8:75:ed:73:cd:ca: a0:e0:f0:a3:a7:fd:74:9c:09:db:6e:ba:0f:2e:8b: 89:47:ff:09:00:78:e3:43:c2:1b:73:8b:d8:29:1a: cd:de:12:18:71:74:b4:46:30:b3:86:59:03:bc:56: 3d:e5:15:c1:a8:ed:de:d5:9b:bc:15:b2:5a:cb:5a: c4:85:bc:96:04:b6:74:77:ad:d0:5e:6f:77:63:5d: e7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A0:FB:36:E4:48:34:17:54:01:B1:90:67:D8:97:CA:5F:80:EC:5A X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:03:2e:06:82:3a:35:06:56:ed:ad:f2:74:78:3d:d0:a3:f1: fb:16:4a:6e:2e:33:df:8d:2f:22:48:ca:00:2d:d8:cb:f6:00: e6:85:de:77:87:1c:e1:9d:5b:81:fd:9b:66:40:3c:41:bd:30: 0d:2a:08:ab:f4:8f:c2:7c:3f:c7:e5:fe:cc:21:cc:c6:e3:ca: cf:48:2a:4f:cd:e5:b7:59:51:da:a8:5b:ed:ff:7a:81:78:c6: 4a:9c:6b:89:7b:de:d7:27:03:58:35:4f:ac:5c:03:f1:c1:23: 48:4f:9c:f5:a6:1d:55:28:3d:7e:23:3f:c8:bd:56:38:d3:76: da:10:35:a5:c0:17:01:dc:83:03:b8:0b:7d:65:e1:a8:cc:60: 64:37:c7:d1:f3:e2:ad:da:c1:cc:30:b9:37:a4:a6:3b:e2:0d: 4f:d1:95:ee:ea:11:4a:5b:3d:9f:01:cf:b6:87:86:91:f4:2a: e7:6f:5e:de:35:90:16:31:d3:e1:00:f1:e4:ab:c2:29:4c:6c: bb:e2:bd:58:bb:b0:8d:08:e6:76:34:52:2c:90:3b:b8:0c:ae: da:30:7b:00:a0:79:98:3b:2c:2f:65:56:33:f3:68:ea:a7:2c: e2:27:2b:6b:0c:6a:6d:e7:49:50:11:3b:47:02:7e:99:19:2e: 6f:98:67:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjQwNDI2MTc1NDUxWhcNMjQwNTAzMTc1NDUxWjAYMRYwFAYD VQQDEw02NjJiZWE2Yi0wNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDvsB5D8NLBSrN9aP9iB/7yb2d9xPpFUD0ODNAVtcDEZn06ll0gd+QDeJRMQ 01gQT+9jCm+2J7hmiz7H+iVGZqA69zz9+IJxNm1Y5Z0cmbCQqCZ8Q0zNieZ/ZjNr ijxzbHOZf8AQOvdpwj3YczncvKc7laA5WdDAxcNU+kMCU5TljG68pB5Ys+Ve2lXj 5SYcxOcbKgM+cXV4MUOUcSF5zcsUbCAJDTyhnGdOgTeode1zzcqg4PCjp/10nAnb broPLouJR/8JAHjjQ8Ibc4vYKRrN3hIYcXS0RjCzhlkDvFY95RXBqO3e1Zu8FbJa y1rEhbyWBLZ0d63QXm93Y13nMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2g+zbk SDQXVAGxkGfYl8pfgOxaMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDAy4Ggjo1BlbtrfJ0eD3Qo/H7FkpuLjPfjS8iSMoALdjL9gDmhd53 hxzhnVuB/ZtmQDxBvTANKgir9I/CfD/H5f7MIczG48rPSCpPzeW3WVHaqFvt/3qB eMZKnGuJe97XJwNYNU+sXAPxwSNIT5z1ph1VKD1+Iz/IvVY403baEDWlwBcB3IMD uAt9ZeGozGBkN8fR8+Kt2sHMMLk3pKY74g1P0ZXu6hFKWz2fAc+2h4aR9Crnb17e NZAWMdPhAPHkq8IpTGy74r1Yu7CNCOZ2NFIskDu4DK7aMHsAoHmYOywvZVYz82jq pyziJytrDGpt50lQETtHAn6ZGS5vmGcm -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:56 2024 by rpki-client on console-ams.rpki-client.org