$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft File: dyPYVuUggiTyvImjgJd39SgzEvw.mft (raw, json) Hash identifier: XcrmDY+3mF6JmdQMpDuh3mA48ZdDQQ6OF1bmvfE7EmU= Subject key identifier: DA:41:0C:52:7B:98:9C:EA:78:77:9B:94:0F:BC:0F:B1:1C:76:0C:BF Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft Manifest number: 57 Signing time: Sat 25 May 2024 08:07:52 +0000 Manifest this update: Sat 25 May 2024 08:07:51 +0000 Manifest next update: Sat 01 Jun 2024 08:07:51 +0000 Files and hashes: 1: dyPYVuUggiTyvImjgJd39SgzEvw.crl (hash: dtvlHYQ0WDmaQD+4zVpfIhR3KFIyj6o0+9C1MZeAr34=) 2: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (hash: lfkx7Gg1VhdE+TUcHWrPNfc+039nZrYRsXfPQ5IPMKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Validity Not Before: May 25 08:07:51 2024 GMT Not After : Jun 1 08:07:51 2024 GMT Subject: CN=66519c57-d824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:df:a2:74:1e:2e:0d:ee:b5:22:02:4f:58:5a: 61:20:c2:28:ee:5c:4e:67:5d:68:b9:90:74:f2:b2: b2:af:b2:60:0b:87:ba:ec:b3:ec:49:2a:9a:60:ad: cf:80:91:ad:47:47:58:07:5f:63:e9:b9:46:e4:56: 8a:0c:64:9d:9e:f6:30:4f:70:b2:da:c3:84:92:6b: 03:16:99:a9:74:98:14:4e:bb:72:5d:06:db:f6:b3: 85:97:ca:7c:55:f4:1d:1c:7f:62:59:09:03:04:5f: ba:92:90:77:67:26:98:ec:93:87:cf:65:d1:2e:7a: 98:cf:65:d1:e4:e6:64:9b:ee:ab:44:3a:7f:c6:11: 50:2b:b5:c7:c3:30:5c:c1:b9:ec:c2:82:2a:f6:62: 4f:4f:eb:70:20:9f:8b:c6:f2:2c:a0:9a:69:5b:52: a1:30:03:42:5d:e4:42:b8:4c:82:39:d8:0c:eb:d5: 40:c0:78:11:26:61:9f:3d:e5:d3:56:af:79:24:0f: 72:66:96:3d:86:cc:0a:f9:56:57:47:9c:49:20:b1: 4b:7d:17:f8:95:6e:c2:bd:bb:96:f2:79:50:14:9e: b5:6c:de:b0:41:5c:be:b3:53:da:48:56:7b:a6:bb: 80:ec:31:28:e6:db:43:9c:e7:f5:88:08:89:f8:ec: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:41:0C:52:7B:98:9C:EA:78:77:9B:94:0F:BC:0F:B1:1C:76:0C:BF X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9d:86:93:ea:f1:b3:97:bc:30:80:ed:1a:be:bc:74:af:81: 0a:4e:80:5c:62:1f:e4:77:a9:09:38:3d:26:e6:82:99:d1:38: 2e:5e:af:29:09:f2:dd:8a:13:98:10:e6:4b:fd:c7:4a:dd:13: 86:07:02:78:32:32:34:8e:73:93:53:40:4e:ee:fd:79:4b:6b: 8c:97:d2:00:58:43:f5:46:5a:fc:e2:1d:44:99:0f:0a:da:29: 96:7f:76:1b:7f:ed:b2:94:f4:eb:04:08:45:49:e6:54:be:87: df:41:49:d4:19:03:70:77:96:7f:b1:95:55:1d:cb:1c:3f:e6: 66:67:4a:bd:4e:24:e8:7a:46:7a:da:21:fa:15:8f:5f:b9:86: 80:95:26:fb:2f:88:35:de:6a:ce:97:64:3e:6b:92:7a:2c:d1: 67:8e:0a:1f:9c:47:37:fa:8b:74:84:98:ba:87:28:f2:d4:0a: 4d:de:9e:22:e5:f2:16:22:09:51:34:9e:87:29:f0:00:a6:85: b2:97:4f:e4:ea:3f:57:b2:e3:39:83:3d:e4:5b:be:c3:d5:6f: fe:14:bb:8f:24:01:c8:18:e8:0f:c0:40:dd:3e:59:17:16:36: 83:0d:49:b0:10:9a:1a:ec:14:0a:c8:c7:95:5f:1d:df:fa:82: ac:c4:32:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 M0VERjExMC8GA1UEBRMoNzcyM0Q4NTZFNTIwODIyNEYyQkM4OUEzODA5Nzc3RjUy ODMzMTJGQzAeFw0yNDA1MjUwODA3NTFaFw0yNDA2MDEwODA3NTFaMBgxFjAUBgNV BAMTDTY2NTE5YzU3LWQ4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+36J0Hi4N7rUiAk9YWmEgwijuXE5nXWi5kHTysrKvsmALh7rss+xJKppgrc+A ka1HR1gHX2PpuUbkVooMZJ2e9jBPcLLaw4SSawMWmal0mBROu3JdBtv2s4WXynxV 9B0cf2JZCQMEX7qSkHdnJpjsk4fPZdEuepjPZdHk5mSb7qtEOn/GEVArtcfDMFzB uezCgir2Yk9P63Agn4vG8iygmmlbUqEwA0Jd5EK4TII52Azr1UDAeBEmYZ895dNW r3kkD3Jmlj2GzAr5VldHnEkgsUt9F/iVbsK9u5byeVAUnrVs3rBBXL6zU9pIVnum u4DsMSjm20Oc5/WICIn47NdjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2kEMUnuY nOp4d5uUD7wPsRx2DL8wHwYDVR0jBBgwFoAUdyPYVuUggiTyvImjgJd39SgzEvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzRURGL0Q4QTdDNzM2OTcy MjExRUU5OUFDMzM3RUM0RjlBRTAyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZHlQWVZ1VWdnaVR5dkltamdKZDM5U2d6RXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYz RURGL0Q4QTdDNzM2OTcyMjExRUU5OUFDMzM3RUM0RjlBRTAyL2R5UFlWdVVnZ2lU eXZJbWpnSmQzOVNnekV2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEqdhpPq8bOXvDCA7Rq+vHSvgQpOgFxiH+R3qQk4PSbmgpnROC5erykJ 8t2KE5gQ5kv9x0rdE4YHAngyMjSOc5NTQE7u/XlLa4yX0gBYQ/VGWvziHUSZDwra KZZ/dht/7bKU9OsECEVJ5lS+h99BSdQZA3B3ln+xlVUdyxw/5mZnSr1OJOh6Rnra IfoVj1+5hoCVJvsviDXeas6XZD5rknos0WeOCh+cRzf6i3SEmLqHKPLUCk3eniLl 8hYiCVE0nocp8ACmhbKXT+TqP1ey4zmDPeRbvsPVb/4Uu48kAcgY6A/AQN0+WRcW NoMNSbAQmhrsFArIx5VfHd/6gqzEMqQ= -----END CERTIFICATE-----Generated at Sat May 25 10:21:09 2024 by rpki-client on console-ams.rpki-client.org