$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: BX0DJPX3ZmflFtobI8C5+eC6/Afgc2vG2uMPUBrGQso= Subject key identifier: D5:19:41:09:6C:85:F4:F7:FE:A9:D6:B4:2D:42:EC:8E:8C:F4:31:76 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 01D1 Signing time: Mon 29 Apr 2024 04:24:34 +0000 Manifest this update: Mon 29 Apr 2024 04:24:33 +0000 Manifest next update: Mon 06 May 2024 04:24:33 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: m8WowQj98NeJhGw2YPFCTC8Y6mjXqUEUALLHAmc27Us=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: LvjI1kGLElm7JCE/Hv6TR8CpWAtHCUumiOTJr7qH3KA=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: p4VGJGNo8OqjO9e3iY6T8itNoXa552xGBOdZnfrySyg=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: ttroBuzpyNHaJs78T3ge8SIPw8AYDGc7mDgWt6Iq9qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Apr 29 04:24:33 2024 GMT Not After : May 6 04:24:33 2024 GMT Subject: CN=662f2102-0bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3b:33:6e:a1:b6:42:25:0f:ea:cd:4e:05:1c: e2:2f:98:26:c0:31:d2:89:fd:20:ff:20:fd:4d:cc: a5:b0:d0:74:32:9f:2a:26:77:ff:aa:0c:01:ae:ba: b7:9d:8a:1f:3e:c1:72:68:84:54:61:7c:6b:35:61: 06:53:d1:e1:90:1b:48:f9:6a:2e:6a:60:0c:4d:b2: 91:87:2f:58:59:34:f6:73:20:19:d2:19:d7:c5:2b: 40:95:ef:a1:e4:37:1c:2d:08:4c:33:0e:41:f9:69: 05:57:12:ab:3b:a4:79:df:ab:73:92:f2:16:ea:8c: 99:f6:bb:b4:ab:69:72:1a:7a:29:a5:60:76:ca:a0: 61:8f:46:35:58:91:2f:72:c5:25:fb:f8:44:bc:ae: b8:a7:2c:2a:ad:fa:dd:9b:8c:cc:33:7c:8f:4e:f4: d5:7e:5d:04:8d:1b:7a:c0:7a:1b:83:db:95:ad:1c: 7b:f3:9c:fb:96:45:c2:2f:29:c0:73:33:8b:0a:b7: e5:39:59:b1:dd:e0:60:27:8c:d5:b7:e2:6d:b8:3f: 7b:f9:9f:15:21:15:37:83:d0:5a:37:5f:26:40:5e: 6f:0c:ce:23:35:77:76:12:ee:21:0a:d2:dd:2d:c3: 43:a1:b7:bf:46:2d:02:91:68:23:68:e6:f4:30:88: 05:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:19:41:09:6C:85:F4:F7:FE:A9:D6:B4:2D:42:EC:8E:8C:F4:31:76 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:05:7a:d5:8f:26:ba:ab:f6:ae:7d:44:68:45:97:74:dd:13: 45:59:57:1c:6a:14:ae:5d:a6:b7:33:8e:c8:89:23:fa:1a:d9: a1:c2:b7:11:12:bb:d4:53:ed:bb:f9:d3:85:2e:93:19:e2:e7: c6:16:73:eb:e4:b1:ee:0f:04:ff:5e:31:0c:6d:e0:6f:67:62: 3f:08:49:e9:40:38:1c:5f:73:20:da:2a:a7:8d:ab:20:8c:9c: 71:e1:07:c0:28:0b:24:06:fb:5b:67:74:45:09:d1:46:44:04: b9:00:8c:e9:3d:69:71:64:8e:96:b3:0c:48:0d:c8:ff:34:b0: 71:aa:b7:73:ae:04:56:4e:2c:77:10:5e:1c:b7:35:2b:2a:38: 34:c7:80:25:7c:8e:bc:bd:e8:7a:5e:fc:88:c6:de:7f:62:29: c4:27:7c:a1:be:c1:1f:9f:50:85:7d:83:12:cd:4d:08:ed:a0: 0b:7d:a6:4f:06:ec:63:11:9f:b2:3b:44:a5:e0:98:50:77:9f: 51:93:1a:ce:b5:8e:f7:1c:7d:f2:69:e9:56:09:c8:ae:f2:62: a5:37:c5:9e:4f:e9:7f:5e:6c:3b:ad:a9:f3:af:5c:05:a7:66: 73:c8:cd:1c:c6:c3:da:bf:75:dc:af:0a:f3:b5:ba:d0:8b:a9: 7d:60:49:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjQwNDI5MDQyNDMzWhcNMjQwNTA2MDQyNDMzWjAYMRYwFAYD VQQDEw02NjJmMjEwMi0wYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzszbqG2QiUP6s1OBRziL5gmwDHSif0g/yD9TcylsNB0Mp8qJnf/qgwBrrq3 nYofPsFyaIRUYXxrNWEGU9HhkBtI+WouamAMTbKRhy9YWTT2cyAZ0hnXxStAle+h 5DccLQhMMw5B+WkFVxKrO6R536tzkvIW6oyZ9ru0q2lyGnoppWB2yqBhj0Y1WJEv csUl+/hEvK64pywqrfrdm4zMM3yPTvTVfl0EjRt6wHobg9uVrRx785z7lkXCLynA czOLCrflOVmx3eBgJ4zVt+JtuD97+Z8VIRU3g9BaN18mQF5vDM4jNXd2Eu4hCtLd LcNDobe/Ri0CkWgjaOb0MIgFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUZQQls hfT3/qnWtC1C7I6M9DF2MB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChBXrVjya6q/aufURoRZd03RNFWVccahSuXaa3M47IiSP6GtmhwrcR ErvUU+27+dOFLpMZ4ufGFnPr5LHuDwT/XjEMbeBvZ2I/CEnpQDgcX3Mg2iqnjasg jJxx4QfAKAskBvtbZ3RFCdFGRAS5AIzpPWlxZI6WswxIDcj/NLBxqrdzrgRWTix3 EF4ctzUrKjg0x4AlfI68veh6XvyIxt5/YinEJ3yhvsEfn1CFfYMSzU0I7aALfaZP BuxjEZ+yO0Sl4JhQd59RkxrOtY73HH3yaelWCciu8mKlN8WeT+l/Xmw7ranzr1wF p2ZzyM0cxsPav3XcrwrztbrQi6l9YEnt -----END CERTIFICATE-----Generated at Mon Apr 29 04:55:16 2024 by rpki-client on console-fra.rpki-client.org