$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft File: DNkEx-s5CtGlXbr0_FAFTAhUbis.mft (raw, json) Hash identifier: pTnlTR/xcrpA1kfP7hQThWt+ylWycSu/SrlSROKpR+0= Subject key identifier: 24:C6:B7:3F:42:8D:C4:7B:6D:AC:0B:07:61:28:20:3D:31:7E:0E:28 Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft Manifest number: 2D Signing time: Fri 17 May 2024 08:32:51 +0000 Manifest this update: Fri 17 May 2024 08:32:50 +0000 Manifest next update: Fri 24 May 2024 08:32:50 +0000 Files and hashes: 1: DNkEx-s5CtGlXbr0_FAFTAhUbis.crl (hash: z9C6s9wciBHveduO3NdfaXBJd9aYh9RB7VfRW7L4/08=) 2: D45022C8CEC211EE80F08B36C4F9AE02.roa (hash: xCA25wbkGD0fkIHcfCSDQazpiDazjD9RA7SrbORza4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: May 17 08:32:50 2024 GMT Not After : May 24 08:32:50 2024 GMT Subject: CN=66471633-5f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:83:52:db:a8:92:f8:47:3c:42:af:b3:3b: 58:f7:b9:66:95:88:e0:74:a5:8f:8e:9c:f9:c6:ac: 8f:0a:1f:86:e5:73:c1:d3:71:7a:58:c4:44:86:4e: 59:93:d0:1d:ed:00:b3:65:3c:34:a0:fb:6a:ea:99: 10:79:85:08:07:35:de:3a:73:aa:78:68:ce:67:35: e2:c1:a6:5f:53:c5:38:8b:01:4d:0a:bb:38:91:be: e8:74:1e:67:ac:6d:e1:eb:c4:30:50:79:5e:ca:94: 23:7d:9f:36:59:79:23:27:98:c2:98:14:bd:e4:22: 3d:c3:6b:f1:fe:43:d3:79:4c:e2:66:13:b0:8c:79: 50:a1:02:07:06:91:89:74:13:9c:55:30:19:45:39: 9a:09:70:4a:c9:d9:ea:04:30:2a:73:23:bc:a7:44: c8:2b:e8:87:8a:e4:38:c3:9f:17:10:a4:d2:3f:c8: ab:15:07:3d:87:25:df:f2:0b:92:e7:d2:fc:b6:bc: ef:f2:95:20:9b:ed:83:3e:ba:c8:bd:bd:48:ef:9f: d5:16:0c:01:9f:a1:48:fc:5f:c7:64:a6:ff:b2:37: db:26:e7:a2:a7:69:a3:7d:ef:4b:15:d2:0a:67:f7: 55:b0:d1:62:30:25:c5:70:86:6d:ea:6a:8a:0c:a5: 96:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C6:B7:3F:42:8D:C4:7B:6D:AC:0B:07:61:28:20:3D:31:7E:0E:28 X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a0:29:dc:d6:0f:63:4d:09:1b:da:1c:85:ce:a5:33:b1:27: 8d:f9:71:b7:12:2a:f8:8a:bf:ea:4a:e9:0b:a6:6b:46:b9:72: 74:13:c7:22:6b:08:6e:a2:26:4b:c9:19:cf:70:ef:84:d1:ad: 44:bc:70:1b:62:a9:50:b4:24:7a:91:b6:b2:c6:35:f3:10:5b: 6a:42:5e:20:ad:23:45:12:b1:64:0f:32:23:36:79:e3:ed:d1: 9f:b0:37:0f:05:c8:42:22:e4:37:b1:f9:5a:18:7a:62:b7:4c: 81:77:ac:5b:57:25:e4:f9:ee:65:0a:3c:a5:46:62:ad:06:03: 00:e0:0f:0a:22:d9:af:6d:4c:b1:2b:a3:fc:73:04:f7:ca:a6: 1c:f8:35:cd:eb:d7:3d:5f:9a:3e:d2:46:d7:2e:e0:d0:cd:85: a6:08:4b:25:8e:3d:34:d0:9a:16:73:de:a6:e9:22:2a:cb:08: 98:22:b1:64:43:07:26:ac:b9:61:41:da:ed:93:41:32:a4:31: 9a:6f:fe:5b:bb:0d:b7:30:c9:1a:85:e6:ef:a0:40:11:a8:cf: ab:9a:4f:bb:02:bb:f8:eb:1a:d1:e2:bd:d9:24:42:d1:f4:ad: 40:09:b3:70:73:58:3f:4e:a3:3b:ed:c1:23:9c:93:01:af:5e: 11:21:9d:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDdCNjExMC8GA1UEBRMoMENEOTA0QzdFQjM5MEFEMUE1NURCQUY0RkM1MDA1NEMw ODU0NkUyQjAeFw0yNDA1MTcwODMyNTBaFw0yNDA1MjQwODMyNTBaMBgxFjAUBgNV BAMTDTY2NDcxNjMzLTVmOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTL4NS26iS+Ec8Qq+zO1j3uWaViOB0pY+OnPnGrI8KH4blc8HTcXpYxESGTlmT 0B3tALNlPDSg+2rqmRB5hQgHNd46c6p4aM5nNeLBpl9TxTiLAU0KuziRvuh0Hmes beHrxDBQeV7KlCN9nzZZeSMnmMKYFL3kIj3Da/H+Q9N5TOJmE7CMeVChAgcGkYl0 E5xVMBlFOZoJcErJ2eoEMCpzI7ynRMgr6IeK5DjDnxcQpNI/yKsVBz2HJd/yC5Ln 0vy2vO/ylSCb7YM+usi9vUjvn9UWDAGfoUj8X8dkpv+yN9sm56KnaaN970sV0gpn 91Ww0WIwJcVwhm3qaooMpZaNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJMa3P0KN xHttrAsHYSggPTF+DigwHwYDVR0jBBgwFoAUDNkEx+s5CtGlXbr0/FAFTAhUbisw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0N0I2LzkwNUQ3RkVFQ0VD MTExRUU4Q0YwMTc0MEM0RjlBRTAyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJp cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE5rRXgtczVDdEdsWGJyMF9GQUZUQWhVYmlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 N0I2LzkwNUQ3RkVFQ0VDMTExRUU4Q0YwMTc0MEM0RjlBRTAyL0ROa0V4LXM1Q3RH bFhicjBfRkFGVEFoVWJpcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAISgKdzWD2NNCRvaHIXOpTOxJ435cbcSKviKv+pK6Quma0a5cnQTxyJr CG6iJkvJGc9w74TRrUS8cBtiqVC0JHqRtrLGNfMQW2pCXiCtI0USsWQPMiM2eePt 0Z+wNw8FyEIi5Dex+VoYemK3TIF3rFtXJeT57mUKPKVGYq0GAwDgDwoi2a9tTLEr o/xzBPfKphz4Nc3r1z1fmj7SRtcu4NDNhaYISyWOPTTQmhZz3qbpIirLCJgisWRD ByasuWFB2u2TQTKkMZpv/lu7DbcwyRqF5u+gQBGoz6uaT7sCu/jrGtHivdkkQtH0 rUAJs3BzWD9OozvtwSOckwGvXhEhneU= -----END CERTIFICATE-----Generated at Fri May 17 10:59:12 2024 by rpki-client on console-ams.rpki-client.org