$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: vN53y7caIOwtcDiciVZQOrxV+gwm7Jfzs4wVFzYXOuk= Subject key identifier: 33:AA:13:75:6D:1C:23:EC:5A:CB:A9:21:26:A5:41:42:A7:6A:60:12 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0DB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0DAC Signing time: Sat 04 May 2024 18:40:32 +0000 Manifest this update: Sat 04 May 2024 18:40:31 +0000 Manifest next update: Sat 11 May 2024 18:40:31 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: acla0pXc4gz08g4SCxbA6SJSuD6eTNloy9vcTgKLtqM=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: wpaP/UJ1okKESnCBZ5S0aOpOY1jJLBjoc5z2xXs4h+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: May 4 18:40:31 2024 GMT Not After : May 11 18:40:31 2024 GMT Subject: CN=6636811f-d32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:b6:28:01:ac:87:6a:98:5b:39:8f:0c:26: 37:c8:e3:8c:75:25:b7:e6:4e:d2:c5:a2:55:a2:0c: 76:6a:80:89:a7:47:50:aa:40:10:40:f6:e6:97:d3: 2a:00:6f:f6:d7:16:f7:2b:6e:d1:fe:a8:78:d5:83: d3:0a:41:b3:c9:ea:67:b0:d3:aa:68:da:16:c0:a1: 6f:9f:33:14:9d:5b:fa:b2:dd:74:6b:c9:a8:e0:df: 85:63:5c:53:9e:98:48:1d:85:2e:40:09:b0:47:b6: fc:02:9d:85:4b:b0:5a:a0:a5:3e:a7:4e:a0:74:b8: df:8c:7d:12:ac:00:50:22:17:8f:6a:e0:b4:ab:22: 0c:0c:22:5e:3d:c8:0c:a6:c6:72:c8:57:11:84:b2: a5:1f:cf:f1:d2:b6:f7:78:c1:7d:46:46:04:8f:46: 8f:49:c4:2f:a8:b3:5b:48:3b:ac:3d:dd:99:1f:12: 92:50:2a:1e:4b:c4:1c:ae:14:a6:71:25:4a:b3:16: b1:62:13:f8:3d:e4:86:c7:3d:7d:8c:df:cf:1d:9b: 3c:0c:d4:25:b7:35:d4:1d:69:3b:40:a4:d7:7d:e2: 03:5e:76:e5:9e:a0:fe:aa:fa:95:a7:2b:49:f3:4c: 36:af:25:b0:dc:10:2d:39:75:92:2b:f5:4a:2f:d5: dc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AA:13:75:6D:1C:23:EC:5A:CB:A9:21:26:A5:41:42:A7:6A:60:12 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c9:d9:f4:14:36:77:23:a8:e7:2a:94:66:90:34:f6:c5:2b: 72:d5:7c:2b:c8:6f:31:1d:41:11:e6:00:52:49:b6:21:bc:59: d3:79:ad:04:9a:5e:06:87:19:23:f8:81:f2:1a:e7:8f:c5:2d: 8c:54:94:4c:28:4a:79:eb:42:9c:34:0b:c8:b3:6f:23:3e:c2: af:85:1b:85:00:a1:f9:8a:1e:27:de:4c:d7:f5:b7:70:93:02: 0c:60:3f:c0:18:12:75:91:29:ea:14:ac:90:c7:c7:7e:b0:91: 6d:d5:f0:c3:a8:ba:3c:fd:8e:58:d2:0e:c6:d9:c3:d3:09:19: 60:b2:46:f3:a0:8e:62:35:ec:7e:9c:c8:33:41:c0:10:70:9c: 4c:b3:bb:96:2f:7b:91:16:35:4a:e0:72:03:af:59:90:c5:c4: ef:7b:97:3a:fc:a2:52:9d:59:ab:4e:c8:aa:90:97:a2:30:c4: 87:e4:89:ca:84:9b:b3:bb:04:a9:39:11:04:23:b6:d4:59:7b: c9:9b:28:31:d4:de:55:46:1a:60:98:8c:6a:04:90:0f:b5:f7: 99:2f:1b:60:4e:f0:67:1f:7a:c3:4c:f1:0e:40:70:52:7f:fd: e4:5d:ab:dc:bc:c1:cf:45:60:03:66:a4:2f:50:23:65:0b:e1: ca:23:25:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjQwNTA0MTg0MDMxWhcNMjQwNTExMTg0MDMxWjAYMRYwFAYD VQQDEw02NjM2ODExZi1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOa2KAGsh2qYWzmPDCY3yOOMdSW35k7SxaJVogx2aoCJp0dQqkAQQPbml9Mq AG/21xb3K27R/qh41YPTCkGzyepnsNOqaNoWwKFvnzMUnVv6st10a8mo4N+FY1xT nphIHYUuQAmwR7b8Ap2FS7BaoKU+p06gdLjfjH0SrABQIhePauC0qyIMDCJePcgM psZyyFcRhLKlH8/x0rb3eMF9RkYEj0aPScQvqLNbSDusPd2ZHxKSUCoeS8QcrhSm cSVKsxaxYhP4PeSGxz19jN/PHZs8DNQltzXUHWk7QKTXfeIDXnblnqD+qvqVpytJ 80w2ryWw3BAtOXWSK/VKL9XcFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOqE3Vt HCPsWsupISalQUKnamASMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfydn0FDZ3I6jnKpRmkDT2xSty1XwryG8xHUER5gBSSbYhvFnTea0E ml4Ghxkj+IHyGuePxS2MVJRMKEp560KcNAvIs28jPsKvhRuFAKH5ih4n3kzX9bdw kwIMYD/AGBJ1kSnqFKyQx8d+sJFt1fDDqLo8/Y5Y0g7G2cPTCRlgskbzoI5iNex+ nMgzQcAQcJxMs7uWL3uRFjVK4HIDr1mQxcTve5c6/KJSnVmrTsiqkJeiMMSH5InK hJuzuwSpOREEI7bUWXvJmygx1N5VRhpgmIxqBJAPtfeZLxtgTvBnH3rDTPEOQHBS f/3kXavcvMHPRWADZqQvUCNlC+HKIyVG -----END CERTIFICATE-----Generated at Sat May 4 20:37:11 2024 by rpki-client on console-fra.rpki-client.org