$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: rPc64tEBEolCbM2Ea/drDsiMvLzo85MQqd/rsfmQfpk= Subject key identifier: BE:BD:E6:52:E7:37:42:1A:BE:5C:C2:9F:BD:D1:E2:C3:07:E3:F0:CC Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 058B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0580 Signing time: Thu 16 May 2024 21:01:54 +0000 Manifest this update: Thu 16 May 2024 21:01:54 +0000 Manifest next update: Thu 23 May 2024 21:01:54 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: y5NE/f/+f5UHWmlnsX4Qy/tJ6TiWIG/MXaIREg95wdc=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: W590cMYjFz6FF4sW9oqplqFnjP+zPSYVDh+Je0kzPIE=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: eFxwV6TYZjxk4/Ekn5nyzAgAfEQn65e+4zP6/WFsXnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: May 16 21:01:54 2024 GMT Not After : May 23 21:01:54 2024 GMT Subject: CN=66467442-e33c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:dd:87:f2:87:da:2d:b4:20:cb:b0:c4:e5: a7:97:84:8d:e0:59:52:d9:a5:3e:ab:ef:04:f2:4a: 2e:d2:82:93:98:c8:8f:e9:73:2c:fc:4d:21:46:d1: 96:f7:73:32:7a:2d:aa:fe:7f:4b:d7:ae:85:a9:d4: 4f:ae:67:92:2e:5a:0a:a8:52:ad:b6:ed:27:26:8b: 6a:a0:e6:48:ef:9e:95:30:9c:d1:ee:6d:7b:39:d1: cb:e3:56:c7:f3:9d:c4:8b:7a:33:8c:67:14:6e:8d: 97:1c:b7:7e:57:1c:5e:78:28:20:9f:d0:f5:9a:60: 09:51:60:e4:01:c8:97:7c:13:52:26:33:2e:61:64: 8d:e5:03:5b:fd:b9:1d:90:4d:64:12:9d:37:15:ea: 20:39:b1:1d:a2:99:15:58:13:a3:07:df:9f:a1:cc: 00:ce:5c:04:c4:53:78:d0:55:f1:50:7c:6d:a0:a4: cc:87:fe:7c:02:14:0e:5c:e7:43:90:4e:3b:cc:d3: 1d:07:3b:b1:42:11:c4:85:89:5d:e7:27:3d:a7:74: e9:5e:fe:05:f0:01:82:98:de:11:1a:f1:d6:f1:9b: cc:88:74:a0:d7:d8:7c:b5:6a:74:2e:28:21:ca:9a: b5:67:bc:aa:cd:7e:32:9a:0e:63:b2:92:31:e9:45: 7d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BD:E6:52:E7:37:42:1A:BE:5C:C2:9F:BD:D1:E2:C3:07:E3:F0:CC X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:b4:88:d9:e0:e9:4f:a6:27:90:0b:29:76:4b:0b:f2:10:13: a0:fd:b5:25:f6:55:46:bd:7b:4e:3d:ea:1d:68:c0:e8:08:f3: eb:65:23:c9:9c:dc:6a:ee:f2:e9:d3:cc:91:72:82:e0:20:24: 7e:8c:5a:0e:ed:5c:69:bb:64:ee:db:a6:bb:0b:a2:5e:ed:f6: 64:ac:f1:16:70:08:1d:eb:50:f8:00:4d:6a:05:9d:c3:df:56: 74:99:4f:85:48:17:d7:b2:a5:1d:4b:e9:d4:0e:0b:89:fa:cc: bb:d7:5b:79:06:d5:63:c9:8b:37:47:05:9e:27:23:42:60:5d: 21:37:a0:59:0c:1a:eb:fc:b8:59:ca:6d:bf:77:d5:6d:97:9a: dc:98:9d:e9:cc:9b:63:6b:e1:e8:1a:33:43:d5:af:a3:72:97: cc:82:f7:af:d8:61:71:42:d1:b2:e8:26:bb:85:8e:79:44:dd: c7:ff:f2:35:61:4d:66:fb:70:38:ca:90:7b:0a:b5:2d:ae:71: 9e:15:94:49:60:d1:ea:70:71:e2:bc:b9:ef:ad:c1:1c:dc:c7: 5d:27:66:2d:c8:f5:05:60:6b:76:ee:05:92:55:84:89:4f:fc: df:61:6e:7f:c5:06:49:ed:0f:78:e7:9d:7b:89:f0:6f:e6:19: 90:d7:f9:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjQwNTE2MjEwMTU0WhcNMjQwNTIzMjEwMTU0WjAYMRYwFAYD VQQDEw02NjQ2NzQ0Mi1lMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzDdh/KH2i20IMuwxOWnl4SN4FlS2aU+q+8E8kou0oKTmMiP6XMs/E0hRtGW 93Myei2q/n9L166FqdRPrmeSLloKqFKttu0nJotqoOZI756VMJzR7m17OdHL41bH 853Ei3ozjGcUbo2XHLd+VxxeeCggn9D1mmAJUWDkAciXfBNSJjMuYWSN5QNb/bkd kE1kEp03FeogObEdopkVWBOjB9+focwAzlwExFN40FXxUHxtoKTMh/58AhQOXOdD kE47zNMdBzuxQhHEhYld5yc9p3TpXv4F8AGCmN4RGvHW8ZvMiHSg19h8tWp0Ligh ypq1Z7yqzX4ymg5jspIx6UV9KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL695lLn N0IavlzCn73R4sMH4/DMMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwtIjZ4OlPpieQCyl2SwvyEBOg/bUl9lVGvXtOPeodaMDoCPPrZSPJ nNxq7vLp08yRcoLgICR+jFoO7Vxpu2Tu26a7C6Je7fZkrPEWcAgd61D4AE1qBZ3D 31Z0mU+FSBfXsqUdS+nUDguJ+sy711t5BtVjyYs3RwWeJyNCYF0hN6BZDBrr/LhZ ym2/d9Vtl5rcmJ3pzJtja+HoGjND1a+jcpfMgvev2GFxQtGy6Ca7hY55RN3H//I1 YU1m+3A4ypB7CrUtrnGeFZRJYNHqcHHivLnvrcEc3MddJ2YtyPUFYGt27gWSVYSJ T/zfYW5/xQZJ7Q945517ifBv5hmQ1/nB -----END CERTIFICATE-----Generated at Thu May 16 21:45:28 2024 by rpki-client on console-fra.rpki-client.org