$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: e000RGU47iO01HTy/pHcXyPc3m+UbVdqe9SfhIoaxGo= Subject key identifier: 79:62:9A:70:32:CD:CF:EA:AC:9F:70:51:51:00:07:7A:01:97:EE:4C Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3400 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 33E5 Signing time: Sat 04 May 2024 14:29:20 +0000 Manifest this update: Sat 04 May 2024 14:29:20 +0000 Manifest next update: Sat 11 May 2024 14:29:20 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: TkVuyrZOf+rTvUq2pneONNgRiqOK/c0pyiqDNHFARc0=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: HIdgNu2HYr5bSIGTFbP41jLCx34b7qkYn64+9uNdbV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13312 (0x3400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: May 4 14:29:20 2024 GMT Not After : May 11 14:29:20 2024 GMT Subject: CN=66364640-d90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b0:ba:d5:c6:3d:9a:82:bd:52:a1:05:c2:35: 36:76:c6:8e:df:64:df:d4:c8:8b:47:db:c3:1f:28: 31:e5:fe:48:e4:05:de:9f:d6:48:17:0a:fa:a0:0d: 48:a4:06:c0:ae:65:9e:e0:1e:93:23:c1:be:d7:b3: d0:5f:ff:10:9d:60:91:31:36:f4:fa:5d:62:7d:c3: 49:c2:db:eb:bc:34:02:76:c0:a4:29:16:45:0c:79: c2:6b:07:36:ec:b7:21:9c:c2:bd:b6:d1:39:d2:62: 0a:c5:dd:8e:91:5f:d7:22:4a:7b:28:36:f5:9d:01: 47:80:03:d4:ef:24:5c:0c:17:94:18:e1:0f:80:84: 35:9f:0e:c5:9d:a9:94:aa:b9:54:39:08:22:1f:24: 9f:d8:a8:51:58:e5:9f:55:5c:c3:af:ac:1e:4e:f5: 81:bb:c5:7c:e1:e4:71:d2:ea:5f:68:2e:96:86:15: 14:5b:f8:64:2d:d4:38:e5:c6:5a:82:fc:fd:54:3e: c4:4f:06:33:17:2c:5a:2f:e6:43:2f:82:dd:2b:d5: b0:f0:df:21:a2:10:d5:d9:f2:af:34:46:64:55:80: a9:c3:5d:2d:11:14:e1:20:61:ae:a3:7e:89:09:3c: 08:5b:d3:5b:f2:bd:ad:31:06:da:c4:47:72:03:b9: 55:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:62:9A:70:32:CD:CF:EA:AC:9F:70:51:51:00:07:7A:01:97:EE:4C X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:e1:ce:34:39:45:59:5c:f4:e0:94:c4:e8:c5:ac:18:fe:15: dd:5b:c6:2a:37:78:0c:7b:2a:a2:87:a4:f1:ac:37:8c:2b:35: d1:44:23:6d:54:60:18:e1:c9:db:a3:e9:62:2b:ef:2c:f4:0d: 5c:76:37:aa:33:41:17:13:39:35:22:e1:e8:af:1b:fa:3e:18: 39:4a:7e:ce:2d:e1:4a:69:6d:a8:4e:9b:7c:4e:eb:ff:c5:23: d7:a0:56:d7:68:06:3b:d6:95:fa:6b:b1:1c:1a:47:15:b1:dc: df:62:ef:29:d8:7e:d8:fb:69:14:89:1b:7c:ba:50:3f:8d:d0: ba:ac:e1:7f:62:a6:03:e5:83:ec:12:ef:dd:5d:e6:1a:7d:8d: 00:0c:1f:b3:19:db:ac:d0:63:a5:99:d5:3a:8d:2a:2c:c0:f9: ed:28:68:cf:1a:21:b6:a9:90:55:f4:7f:5d:14:97:ba:78:b9: ee:64:ce:b8:d6:00:47:16:a7:bd:6c:22:15:b1:b3:c2:8e:1b: c8:f0:f9:e9:08:a5:ee:68:2c:8d:1d:7a:6d:2b:6c:49:53:4f: b3:3b:1a:8f:27:7a:78:9c:af:4f:92:bb:a5:c6:52:7d:a8:07: 99:ef:ad:18:29:12:18:0e:f2:2c:fe:53:3e:c6:d6:37:18:35: 37:97:66:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjQwNTA0MTQyOTIwWhcNMjQwNTExMTQyOTIwWjAYMRYwFAYD VQQDEw02NjM2NDY0MC1kOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57C61cY9moK9UqEFwjU2dsaO32Tf1MiLR9vDHygx5f5I5AXen9ZIFwr6oA1I pAbArmWe4B6TI8G+17PQX/8QnWCRMTb0+l1ifcNJwtvrvDQCdsCkKRZFDHnCawc2 7LchnMK9ttE50mIKxd2OkV/XIkp7KDb1nQFHgAPU7yRcDBeUGOEPgIQ1nw7FnamU qrlUOQgiHySf2KhRWOWfVVzDr6weTvWBu8V84eRx0upfaC6WhhUUW/hkLdQ45cZa gvz9VD7ETwYzFyxaL+ZDL4LdK9Ww8N8hohDV2fKvNEZkVYCpw10tERThIGGuo36J CTwIW9Nb8r2tMQbaxEdyA7lVVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlimnAy zc/qrJ9wUVEAB3oBl+5MMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw4c40OUVZXPTglMToxawY/hXdW8YqN3gMeyqih6TxrDeMKzXRRCNt VGAY4cnbo+liK+8s9A1cdjeqM0EXEzk1IuHorxv6Phg5Sn7OLeFKaW2oTpt8Tuv/ xSPXoFbXaAY71pX6a7EcGkcVsdzfYu8p2H7Y+2kUiRt8ulA/jdC6rOF/YqYD5YPs Eu/dXeYafY0ADB+zGdus0GOlmdU6jSoswPntKGjPGiG2qZBV9H9dFJe6eLnuZM64 1gBHFqe9bCIVsbPCjhvI8PnpCKXuaCyNHXptK2xJU0+zOxqPJ3p4nK9PkrulxlJ9 qAeZ760YKRIYDvIs/lM+xtY3GDU3l2b7 -----END CERTIFICATE-----Generated at Sat May 4 15:45:47 2024 by rpki-client on console-fra.rpki-client.org