$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: izB3gKszsl+r25ciRSFTnUS7o+L2w1tiA+vsPdJs6E4= Subject key identifier: 82:4C:C7:53:0D:8B:8A:B5:39:03:D6:11:96:1B:3D:2B:44:57:D9:FC Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0C80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0BC3 Signing time: Fri 26 Apr 2024 20:11:10 +0000 Manifest this update: Fri 26 Apr 2024 20:11:09 +0000 Manifest next update: Fri 03 May 2024 20:11:09 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: 3m2VUOUSqVmRLskw5jkKlSo/t6LjQRgsQoQTvtX0LCY=) 2: 2DD04222580811EBB9B04151C4F9AE02.roa (hash: dpUT7Ucg/leT00I/eK7eqHVr1y1HKzxiT1gKCbfM2nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Apr 26 20:11:09 2024 GMT Not After : May 3 20:11:09 2024 GMT Subject: CN=662c0a5d-6f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:1e:d1:77:9c:f9:b8:f2:31:cf:2b:8a:1d: c2:9f:ee:0e:42:f6:52:4a:71:99:a2:6e:7b:5a:87: 89:ec:ba:58:35:20:d0:0a:23:b4:90:b8:2a:80:c1: bb:d8:2e:f7:a5:27:d3:8b:2d:da:da:38:93:b6:1d: b4:e5:58:6e:af:ae:88:b8:17:95:c9:ee:13:32:2e: 30:e0:d8:1c:7b:bb:5e:2f:17:18:10:ef:28:9d:33: 97:70:20:da:00:0e:d6:75:0d:a4:5f:a9:42:06:b0: 0d:9c:c2:07:8e:89:eb:4b:c0:e3:3b:d3:5a:08:e4: 33:66:fd:9f:06:7d:51:86:10:aa:d9:f5:49:33:70: cd:7b:ca:6c:7e:dc:be:77:4a:bf:5d:39:37:69:47: c3:cd:a0:93:e1:48:3b:6f:32:f5:c4:0b:33:7b:f5: 3f:a9:e2:39:d4:a2:5c:91:c4:d2:5c:84:a0:ef:52: 1a:51:01:18:80:fe:f2:25:62:a1:90:75:f0:e4:39: 1a:bd:15:64:de:04:5a:69:d6:84:4a:54:b3:b3:78: ae:04:a2:da:c7:4c:d8:01:aa:dd:b3:40:6d:30:ad: 45:6a:12:79:75:f6:fd:33:90:92:eb:47:d8:6d:ce: 54:d3:8e:72:8b:ed:81:4c:0b:9b:61:c3:c0:95:fe: f7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4C:C7:53:0D:8B:8A:B5:39:03:D6:11:96:1B:3D:2B:44:57:D9:FC X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:62:8e:dc:8f:aa:2a:e8:2a:ed:1c:3f:4f:c1:07:03:14:ba: df:1a:a3:73:f4:80:23:20:fb:cd:2c:bd:c5:49:26:d4:43:20: f7:dc:22:f4:81:71:6c:ba:37:d0:0a:c9:43:d2:b2:66:34:67: 15:12:d9:0a:7f:fa:de:1c:dd:93:11:9a:bc:06:31:95:b0:c1: bd:75:bc:19:eb:58:70:65:18:d7:27:e1:0f:82:13:f7:37:74: 13:d4:27:a0:44:0a:22:b6:72:1e:ff:7e:7e:17:51:63:de:8a: d6:0d:45:5f:0d:b9:bf:da:2e:6b:65:ec:0c:fb:96:b4:44:72: 5c:56:1a:84:7f:08:85:6b:11:e1:be:5e:73:84:bb:1d:9a:37: 8c:3c:f2:bc:27:38:a8:91:0a:94:47:12:cf:7a:72:a3:b6:05: 90:bc:12:36:b9:76:5b:4b:2a:aa:c6:7e:bc:a5:81:8c:b0:92: 51:94:9c:ec:20:20:eb:a0:c4:03:44:0d:5d:be:38:ce:9a:78: 13:2f:74:53:bc:20:93:bf:f8:f2:08:73:6d:e0:47:c3:0c:1b: 93:2f:81:d1:93:0d:95:62:d4:75:76:67:d1:20:10:f1:83:47: a2:99:ff:2d:27:77:70:02:da:e9:8b:dc:20:33:c0:c6:e0:2c: 07:ac:4a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjQwNDI2MjAxMTA5WhcNMjQwNTAzMjAxMTA5WjAYMRYwFAYD VQQDEw02NjJjMGE1ZC02ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5se0Xec+bjyMc8rih3Cn+4OQvZSSnGZom57WoeJ7LpYNSDQCiO0kLgqgMG7 2C73pSfTiy3a2jiTth205Vhur66IuBeVye4TMi4w4Ngce7teLxcYEO8onTOXcCDa AA7WdQ2kX6lCBrANnMIHjonrS8DjO9NaCOQzZv2fBn1RhhCq2fVJM3DNe8psfty+ d0q/XTk3aUfDzaCT4Ug7bzL1xAsze/U/qeI51KJckcTSXISg71IaUQEYgP7yJWKh kHXw5DkavRVk3gRaadaESlSzs3iuBKLax0zYAards0BtMK1FahJ5dfb9M5CS60fY bc5U045yi+2BTAubYcPAlf73gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJMx1MN i4q1OQPWEZYbPStEV9n8MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcYo7cj6oq6CrtHD9PwQcDFLrfGqNz9IAjIPvNLL3FSSbUQyD33CL0 gXFsujfQCslD0rJmNGcVEtkKf/reHN2TEZq8BjGVsMG9dbwZ61hwZRjXJ+EPghP3 N3QT1CegRAoitnIe/35+F1Fj3orWDUVfDbm/2i5rZewM+5a0RHJcVhqEfwiFaxHh vl5zhLsdmjeMPPK8JziokQqURxLPenKjtgWQvBI2uXZbSyqqxn68pYGMsJJRlJzs ICDroMQDRA1dvjjOmngTL3RTvCCTv/jyCHNt4EfDDBuTL4HRkw2VYtR1dmfRIBDx g0eimf8tJ3dwAtrpi9wgM8DG4CwHrEo+ -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:01 2024 by rpki-client on console-ams.rpki-client.org