$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: m4TPuesQlKp9sOiuzUkF7ihAlaUKC7NFUw2T4QXWKM0= Subject key identifier: 70:FF:A8:14:60:2E:B1:6D:56:BB:59:1E:5E:96:FE:E6:BE:62:D8:67 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 0383 Signing time: Sat 04 May 2024 17:54:44 +0000 Manifest this update: Sat 04 May 2024 17:54:44 +0000 Manifest next update: Sat 11 May 2024 17:54:44 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: fGRu4PSUbUL3Gy+ctLnByZMrMvw9dEqH0EJpBhVWcPU=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: sxrmm3JlL/k0ct5wIWAW6jZv0BJa2muxpRwSyTLfsOs=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: yVqJXkyhmawyWOzSapKy8QYIEjCOWt6iWvrokohhmLc=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: BB94ioWlwmy+5Fk/XHM3As2KqIhpAGjiHmhVZf8F+aE=) 5: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: ozCsjqAuq1SouBvB98Jf4Yq1iuHvv/bdbzijdLA64Oc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: May 4 17:54:44 2024 GMT Not After : May 11 17:54:44 2024 GMT Subject: CN=66367664-5024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:90:41:99:0f:d9:4e:a0:88:18:83:13:43:1a: 3c:31:39:93:a2:06:82:1a:f3:6c:51:79:66:46:4b: 37:01:ab:8e:b0:51:5b:d6:83:6c:09:0c:b2:13:b5: f5:96:d6:5b:70:fb:4e:82:31:8c:17:5e:65:42:8e: 05:71:0d:c3:2a:99:49:8b:21:39:5f:74:47:a2:0f: 14:33:bb:9f:1a:0c:b2:bb:86:50:ca:7c:c6:fc:68: 89:38:0f:d0:da:69:40:80:6f:8d:ba:05:1d:fb:6e: e4:97:8e:cc:6d:5a:c9:d9:4c:08:c3:fc:aa:56:9a: d3:d0:fb:3a:c8:57:f4:f8:b2:1f:e7:eb:22:d8:5f: 6c:ae:db:bd:ad:3c:7e:14:ea:03:dd:26:56:f9:ed: 52:c1:01:61:f6:20:3a:64:21:b8:e8:ae:72:e9:17: 81:c9:d3:88:8e:5d:67:e5:78:79:a8:7f:ee:fe:28: f8:66:d7:a0:94:3b:9f:5e:6c:b9:a8:4c:5f:bd:22: a4:89:cf:a7:86:29:79:a5:9e:f2:74:02:3a:80:70: 44:bc:85:a4:6a:c2:91:8b:81:67:19:3b:35:0a:34: 02:79:c4:ac:7a:b2:f1:fd:7c:9c:35:f2:e0:c9:4f: 4e:60:64:6f:5b:44:ee:fe:f4:b2:83:40:e5:8e:3c: 85:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:FF:A8:14:60:2E:B1:6D:56:BB:59:1E:5E:96:FE:E6:BE:62:D8:67 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:07:22:39:2c:21:a9:ef:73:ff:e3:7e:ca:b1:24:36:a1:08: a9:3d:8d:17:fa:5e:24:e3:cd:12:40:67:c1:d4:25:06:8a:60: 3b:29:83:ad:33:b5:f8:df:bb:ae:9a:78:b2:33:70:58:0d:2d: c0:02:0a:56:8e:fe:da:1d:44:19:de:ef:e3:ad:6c:e2:b4:da: 9b:02:f8:e5:2b:1a:33:5e:41:fb:49:08:a5:79:93:57:7f:89: 66:aa:94:4a:01:1c:4f:22:4a:39:e7:f9:4d:f9:8a:76:f1:51: 95:59:6f:40:ac:b7:bf:a9:02:c4:a5:2a:84:bc:3f:8d:dc:4c: 86:6d:02:c9:fd:f8:cc:70:27:c5:d1:21:53:ea:01:2e:c0:8b: fe:cc:36:00:c0:a2:bb:92:2e:92:7c:65:f6:45:6a:3f:e3:60: 68:40:7b:ac:1c:1e:de:3b:6f:1c:59:dc:c5:95:cb:fb:fb:fb: 5f:7a:ee:30:a2:a8:58:22:70:44:56:6b:e7:0c:72:c5:73:cc: fb:26:24:64:c9:b1:78:70:41:f4:fe:aa:19:2f:d5:ae:9a:10: 07:ac:6f:0e:0d:47:9f:3a:81:d6:03:15:95:1d:12:48:e5:f6: 92:f0:46:cd:46:b5:d5:65:62:0c:ec:43:a9:ab:30:0a:f1:d4: ac:20:e2:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjQwNTA0MTc1NDQ0WhcNMjQwNTExMTc1NDQ0WjAYMRYwFAYD VQQDEw02NjM2NzY2NC01MDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5BBmQ/ZTqCIGIMTQxo8MTmTogaCGvNsUXlmRks3AauOsFFb1oNsCQyyE7X1 ltZbcPtOgjGMF15lQo4FcQ3DKplJiyE5X3RHog8UM7ufGgyyu4ZQynzG/GiJOA/Q 2mlAgG+NugUd+27kl47MbVrJ2UwIw/yqVprT0Ps6yFf0+LIf5+si2F9srtu9rTx+ FOoD3SZW+e1SwQFh9iA6ZCG46K5y6ReBydOIjl1n5Xh5qH/u/ij4ZteglDufXmy5 qExfvSKkic+nhil5pZ7ydAI6gHBEvIWkasKRi4FnGTs1CjQCecSserLx/XycNfLg yU9OYGRvW0Tu/vSyg0DljjyFwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHD/qBRg LrFtVrtZHl6W/ua+YthnMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwByI5LCGp73P/437KsSQ2oQipPY0X+l4k480SQGfB1CUGimA7KYOt M7X437uumniyM3BYDS3AAgpWjv7aHUQZ3u/jrWzitNqbAvjlKxozXkH7SQileZNX f4lmqpRKARxPIko55/lN+Yp28VGVWW9ArLe/qQLEpSqEvD+N3EyGbQLJ/fjMcCfF 0SFT6gEuwIv+zDYAwKK7ki6SfGX2RWo/42BoQHusHB7eO28cWdzFlcv7+/tfeu4w oqhYInBEVmvnDHLFc8z7JiRkybF4cEH0/qoZL9WumhAHrG8ODUefOoHWAxWVHRJI 5faS8EbNRrXVZWIM7EOpqzAK8dSsIOJ4 -----END CERTIFICATE-----Generated at Sat May 4 19:58:38 2024 by rpki-client on console-ams.rpki-client.org