$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json) Hash identifier: cXa30KelVMXelj/71Ch1KedsG2C9r9Pw+Ah0BBjTUEA= Subject key identifier: 83:B8:69:7C:0A:FA:26:E9:A6:2F:04:8A:48:82:24:E4:7D:4E:36:EA Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 06BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft Manifest number: 292A Signing time: Sat 04 May 2024 17:31:29 +0000 Manifest this update: Sat 04 May 2024 17:31:29 +0000 Manifest next update: Sat 11 May 2024 17:31:29 +0000 Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: JFnzqEHpvKbRIVsaiarxxExPc4b+a9NCFJsgkUnGBhM=) 2: A076FA54BD2B11EBA3874022C4F9AE02.roa (hash: rECWrESPi1Gsv9lGCcHvMxOXH5JRYUB6cIjdJabfsHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1723 (0x6bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: May 4 17:31:29 2024 GMT Not After : May 11 17:31:29 2024 GMT Subject: CN=663670f1-3318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7c:ec:f9:e0:75:64:43:4c:0b:55:72:7b:91: be:61:8f:dc:19:78:72:e0:f5:ec:11:6e:f9:11:d0: d7:09:ea:4a:87:28:06:36:e9:84:19:77:77:19:45: ac:61:21:3a:51:c2:ef:42:3c:92:27:c6:ba:32:04: 46:eb:d9:b4:36:d0:db:3a:2c:82:57:42:d4:73:6f: e6:de:6e:5c:88:3c:17:67:d6:59:40:23:63:e8:d2: b4:36:4a:01:33:57:e9:0f:9d:27:9f:b9:cf:a4:74: 24:49:5d:0a:a9:c0:94:46:e1:b5:4d:2d:95:9b:5a: ac:a3:3e:57:4e:e7:f4:e4:d3:0f:6c:51:4c:1b:f1: 86:61:39:59:01:3c:3b:69:0b:0f:d9:09:bd:d9:ae: 99:12:8d:22:6b:d9:7f:d9:1e:60:dd:55:80:0a:df: 01:d1:a1:c7:94:86:dd:5e:2f:cf:0a:df:20:1c:a7: b8:8c:f6:2e:9b:e5:77:d4:70:94:85:c6:61:e9:7c: 37:14:0d:1d:39:b7:03:a2:a9:4d:c2:36:45:67:ee: 14:a2:6b:4d:12:36:2b:ae:57:7e:9e:1a:28:24:9e: d5:ed:fa:84:e5:53:96:cb:33:3a:91:72:a2:7d:e5: c4:ef:2a:be:21:49:d4:1d:72:d6:a3:b1:d9:1b:92: 4b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B8:69:7C:0A:FA:26:E9:A6:2F:04:8A:48:82:24:E4:7D:4E:36:EA X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:11:02:c5:87:4a:47:25:3c:5e:ef:a7:b5:3e:c7:ef:ee:70: b9:91:61:4e:59:66:b6:de:3c:c2:73:f3:00:ca:25:1e:de:4c: a6:87:ee:37:f4:d0:20:e6:d3:8a:0f:0c:40:70:e6:ad:1b:f9: 45:02:9d:3e:74:61:96:7b:3c:72:a0:5d:b5:ec:52:f4:fb:94: e6:c7:b9:b0:6b:06:14:f0:91:30:23:3d:31:f3:41:a5:a8:63: fc:ed:2a:6d:6a:cb:5e:f5:bb:28:76:b0:41:17:a2:2c:1a:35: 6c:ec:00:04:28:97:95:1e:67:e6:01:a4:d6:e6:3a:ba:7b:8e: 95:3e:30:e6:ac:8d:3f:5a:7f:96:d2:dc:60:1e:eb:80:7e:1a: 6d:a5:5d:2e:6a:31:3c:72:00:1d:ab:f1:f9:a4:f9:9e:6f:5f: bb:75:36:6c:f9:c4:b2:77:6e:e9:79:81:82:e9:bc:0b:54:f6: d4:2d:6b:cd:ab:31:53:28:88:89:ef:7d:1c:74:30:38:8b:d4: 8c:57:b3:95:90:80:a5:5c:1b:e1:05:a3:4c:2b:2b:66:66:fd: e5:b7:3b:ed:e3:3a:f2:25:30:0b:1b:cc:73:40:53:dc:4c:cf: 84:3a:5a:0d:4d:c0:90:8a:7c:eb:54:22:03:79:de:0c:52:a5: c2:be:86:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjQwNTA0MTczMTI5WhcNMjQwNTExMTczMTI5WjAYMRYwFAYD VQQDEw02NjM2NzBmMS0zMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nzs+eB1ZENMC1Vye5G+YY/cGXhy4PXsEW75EdDXCepKhygGNumEGXd3GUWs YSE6UcLvQjySJ8a6MgRG69m0NtDbOiyCV0LUc2/m3m5ciDwXZ9ZZQCNj6NK0NkoB M1fpD50nn7nPpHQkSV0KqcCURuG1TS2Vm1qsoz5XTuf05NMPbFFMG/GGYTlZATw7 aQsP2Qm92a6ZEo0ia9l/2R5g3VWACt8B0aHHlIbdXi/PCt8gHKe4jPYum+V31HCU hcZh6Xw3FA0dObcDoqlNwjZFZ+4UomtNEjYrrld+nhooJJ7V7fqE5VOWyzM6kXKi feXE7yq+IUnUHXLWo7HZG5JLBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIO4aXwK +ibppi8EikiCJOR9TjbqMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0 Mm8wSjU2clpnc2dMYk9yYWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWEQLFh0pHJTxe76e1Psfv7nC5kWFOWWa23jzCc/MAyiUe3kymh+43 9NAg5tOKDwxAcOatG/lFAp0+dGGWezxyoF217FL0+5Tmx7mwawYU8JEwIz0x80Gl qGP87Sptaste9bsodrBBF6IsGjVs7AAEKJeVHmfmAaTW5jq6e46VPjDmrI0/Wn+W 0txgHuuAfhptpV0uajE8cgAdq/H5pPmeb1+7dTZs+cSyd27peYGC6bwLVPbULWvN qzFTKIiJ730cdDA4i9SMV7OVkIClXBvhBaNMKytmZv3ltzvt4zryJTALG8xzQFPc TM+EOloNTcCQinzrVCIDed4MUqXCvoZo -----END CERTIFICATE-----Generated at Sat May 4 19:58:39 2024 by rpki-client on console-ams.rpki-client.org