$ rpki-client -vvf rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft File: DeK2pi5UoKYbzzFLbi77jzoeOno.mft (raw, json) Hash identifier: XOddie4ltnMsddUDJCxYIDLcBM0vghN0lgeIsdRoFPM= Subject key identifier: C9:8A:A0:6E:F4:38:49:64:A7:C5:CF:0E:CE:88:56:B8:90:F5:80:A4 Authority key identifier: 0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A Certificate issuer: /CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft Manifest number: 7D Signing time: Wed 15 May 2024 07:20:54 +0000 Manifest this update: Wed 15 May 2024 07:20:53 +0000 Manifest next update: Wed 22 May 2024 07:20:53 +0000 Files and hashes: 1: DeK2pi5UoKYbzzFLbi77jzoeOno.crl (hash: 5fOSBCCLsnEYCOh036LFg8+dPbEBzYp553wD4g6L6Fk=) 2: 65A459FE54BD11EE8C958973C4F9AE02.roa (hash: rhwc/Od/B1m9sjtqX6Ckqk0wZ+xoSrzn3/LiPuCYOPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Validity Not Before: May 15 07:20:53 2024 GMT Not After : May 22 07:20:53 2024 GMT Subject: CN=66446255-6b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:b2:3e:23:b2:e5:f8:88:f1:86:52:a8:c5: 24:b0:d6:77:3c:1c:02:e9:a0:cc:af:0b:2e:f7:bf: de:3a:bc:18:89:6f:a1:cf:47:72:10:60:9e:e7:fb: 3a:21:4b:f7:08:8f:c4:1d:97:42:1a:93:9b:8d:2d: 37:2c:39:bf:52:34:3b:59:a8:65:4e:9e:b6:c0:96: 02:b0:af:93:03:c9:e1:9f:f1:ad:5a:5a:d9:3f:0a: 09:3f:36:f6:de:c5:46:5a:ba:69:f4:72:3e:2e:ab: 69:af:49:31:69:6c:fa:dd:e5:63:b2:2d:2e:4f:2b: be:69:23:bf:d5:33:e8:5c:a0:d7:57:ea:b1:34:0a: 66:49:50:bc:14:de:73:95:6f:d7:41:67:55:a0:fc: 88:30:a3:c7:db:ce:f5:ab:71:c8:74:59:bf:ec:b9: cb:1e:5c:07:02:40:ce:97:16:3a:fa:89:a5:51:dc: 81:cb:98:0d:a8:bb:d9:9f:b7:21:f1:e0:f0:f6:79: 95:66:79:8b:90:6f:2a:77:40:79:87:08:40:df:a6: bc:50:ce:56:eb:48:64:bd:1a:b9:9b:61:3a:7b:23: b3:5a:ed:eb:0c:79:54:b3:4b:a4:eb:ac:b4:6e:65: 5f:2c:b9:7f:9d:c9:8a:38:b7:ba:f0:f6:90:36:72: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8A:A0:6E:F4:38:49:64:A7:C5:CF:0E:CE:88:56:B8:90:F5:80:A4 X509v3 Authority Key Identifier: keyid:0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:96:ba:d5:7c:5b:02:84:f4:9d:ea:a9:0f:0c:7e:1d:d9:6b: 84:85:bb:45:39:e1:5f:77:d6:13:86:c0:32:43:a0:fb:14:e9: 9d:04:03:de:0b:19:f3:e5:28:00:0f:32:e6:c9:1a:11:07:18: ee:a0:5c:93:38:b0:d0:bb:76:52:fd:cd:a7:f9:c7:1a:1d:1e: 5f:fa:86:23:35:c5:86:24:f8:2f:8a:93:74:5b:18:e5:57:75: 57:21:39:c6:eb:a8:f0:41:3e:c7:87:31:2d:7c:29:ed:d7:50: e4:d1:bd:e6:d4:ca:75:e2:89:9b:b3:1b:a7:69:c5:26:6a:53: da:26:a2:6d:da:9c:d4:38:e6:d9:76:7e:83:91:ee:e8:57:d2: 0a:dd:b9:8e:33:a4:e4:00:18:64:0a:6d:13:b7:21:3a:98:b2: 51:91:a8:cb:d1:25:b5:9d:b2:85:bd:3f:6a:5f:f3:6f:c1:60: 9a:7a:68:69:73:8a:85:e9:16:27:13:bb:00:62:e4:87:f0:ef: 68:f2:08:84:ee:ed:fb:15:b6:56:38:73:bd:4d:78:2b:20:32: 5a:b3:e0:84:3d:09:bd:71:de:9a:d7:5f:d3:80:70:ec:a0:aa: 45:70:e1:6b:0a:65:d4:21:44:d0:82:ac:d5:a9:09:ca:26:90: b3:e2:69:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RjhEQjExMC8GA1UEBRMoMERFMkI2QTYyRTU0QTBBNjFCQ0YzMTRCNkUyRUZCOEYz QTFFM0E3QTAeFw0yNDA1MTUwNzIwNTNaFw0yNDA1MjIwNzIwNTNaMBgxFjAUBgNV BAMTDTY2NDQ2MjU1LTZiNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8K7I+I7Ll+IjxhlKoxSSw1nc8HALpoMyvCy73v946vBiJb6HPR3IQYJ7n+zoh S/cIj8Qdl0Iak5uNLTcsOb9SNDtZqGVOnrbAlgKwr5MDyeGf8a1aWtk/Cgk/Nvbe xUZaumn0cj4uq2mvSTFpbPrd5WOyLS5PK75pI7/VM+hcoNdX6rE0CmZJULwU3nOV b9dBZ1Wg/Igwo8fbzvWrcch0Wb/sucseXAcCQM6XFjr6iaVR3IHLmA2ou9mftyHx 4PD2eZVmeYuQbyp3QHmHCEDfprxQzlbrSGS9GrmbYTp7I7Na7esMeVSzS6TrrLRu ZV8suX+dyYo4t7rw9pA2chjTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyYqgbvQ4 SWSnxc8OzohWuJD1gKQwHwYDVR0jBBgwFoAUDeK2pi5UoKYbzzFLbi77jzoeOnow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGOERCLzZDOEJCODYyNTRC QzExRUVCOERCMTE0QUM0RjlBRTAyL0RlSzJwaTVVb0tZYnp6RkxiaTc3anpvZU9u by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGVLMnBpNVVvS1lienpGTGJpNzdqem9lT25vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZG OERCLzZDOEJCODYyNTRCQzExRUVCOERCMTE0QUM0RjlBRTAyL0RlSzJwaTVVb0tZ Ynp6RkxiaTc3anpvZU9uby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA2WutV8WwKE9J3qqQ8Mfh3Za4SFu0U54V931hOGwDJDoPsU6Z0EA94L GfPlKAAPMubJGhEHGO6gXJM4sNC7dlL9zaf5xxodHl/6hiM1xYYk+C+Kk3RbGOVX dVchOcbrqPBBPseHMS18Ke3XUOTRvebUynXiiZuzG6dpxSZqU9omom3anNQ45tl2 foOR7uhX0grduY4zpOQAGGQKbRO3ITqYslGRqMvRJbWdsoW9P2pf82/BYJp6aGlz ioXpFicTuwBi5Ifw72jyCITu7fsVtlY4c71NeCsgMlqz4IQ9Cb1x3prXX9OAcOyg qkVw4WsKZdQhRNCCrNWpCcomkLPiado= -----END CERTIFICATE-----Generated at Wed May 15 09:04:13 2024 by rpki-client on console-ams.rpki-client.org