$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: Lt7sFRxPHXDqQ0z4xk8Ekvy2NPItCXNdKrE3piNP4Jg= Subject key identifier: 67:35:DE:C8:A0:9D:39:7C:A4:A6:E9:6E:DB:06:97:24:2E:F9:35:54 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0AAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0AA6 Signing time: Thu 02 May 2024 20:16:04 +0000 Manifest this update: Thu 02 May 2024 20:16:03 +0000 Manifest next update: Thu 09 May 2024 20:16:03 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: dtnMHN2QDCvUy6U6l/avv7E85lJxmVhoLpPkdGd+fjg=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: HKy89nrPLtJKIpdDumSWpwndZ6mESDm6trXXJG7ABz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2734 (0xaae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: May 2 20:16:03 2024 GMT Not After : May 9 20:16:03 2024 GMT Subject: CN=6633f484-282f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:af:60:e9:bb:de:85:6c:6f:b7:5a:be:19:d4: d5:cd:f7:c8:e5:02:63:4a:91:ec:3f:8c:1c:55:04: 1c:06:50:b4:94:65:30:f0:da:70:dc:1a:10:dc:7a: 84:79:31:64:33:50:c8:cf:75:84:fb:7b:a9:24:9f: de:69:01:d5:34:36:ab:d3:02:11:4a:5c:73:ef:d1: d3:1b:88:c9:87:54:3f:f7:20:df:cc:d8:90:09:30: 4d:2c:d4:5e:73:15:88:6c:1d:31:b0:97:6c:00:07: 37:fe:a5:2c:6f:17:ae:5f:0a:d3:3b:a4:91:34:1b: 7e:7d:9b:6e:48:fd:e4:bb:e3:08:62:77:ff:35:b4: 29:58:e4:e7:66:b3:91:fa:8f:4d:f7:ab:c9:78:e7: fa:bc:c7:eb:e6:31:60:6e:6e:5b:26:61:01:47:8b: 98:a1:1d:87:33:eb:cb:dc:34:41:8e:5d:3e:71:58: ea:49:d1:f3:f9:49:25:41:c4:bd:8b:9b:cc:70:95: 89:ca:75:6c:84:93:07:71:20:78:d1:cc:8b:78:31: 4e:09:0a:d1:9a:97:0e:a0:85:7b:72:a6:1d:32:ce: 16:58:0c:5d:08:c5:0b:6c:ef:49:6c:1a:b8:c1:92: ac:e3:af:e8:17:0b:26:1a:75:25:7f:f9:39:33:e8: c9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:35:DE:C8:A0:9D:39:7C:A4:A6:E9:6E:DB:06:97:24:2E:F9:35:54 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:4e:f3:a2:a3:49:c9:4a:1f:84:67:49:de:2d:3d:16:1e:d3: 94:9e:4e:ee:05:46:d7:aa:72:e2:4c:19:c0:21:3b:02:be:d2: 64:3b:b0:22:fa:b3:ac:95:04:94:5a:68:0d:89:b6:27:37:d1: 76:8f:b7:35:5d:f8:83:47:86:d2:65:d7:47:37:db:98:01:65: df:f5:46:f2:e0:ba:78:de:6c:8b:c1:3d:5b:6c:9e:9b:1a:9c: a8:40:22:35:28:01:6f:c5:53:d9:ae:c6:42:18:86:38:9a:bc: 3d:38:d9:6a:63:97:3f:59:55:e0:b3:83:1d:5c:8f:0f:bd:b3: ac:da:5b:6b:45:a9:97:50:07:1d:eb:84:b0:44:69:33:16:0f: 34:45:e2:94:92:94:11:e1:0f:1f:1a:54:ff:f0:e5:01:50:0a: 4c:89:b9:e5:e8:a2:fa:ec:45:d3:7a:a1:fa:6f:0f:09:15:ce: 95:3d:dd:53:88:42:75:cb:41:bf:59:e5:c4:49:0d:08:88:9f: 5a:f8:3d:54:73:c7:ec:c3:dd:2c:93:25:49:0b:cb:a0:a2:dd: 75:39:8b:48:8a:88:b2:a3:de:bf:6e:a0:af:08:13:e8:42:a5: 21:90:9c:ce:ab:32:47:4d:99:bd:48:13:a1:79:52:d5:b5:a7: e5:de:b5:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjQwNTAyMjAxNjAzWhcNMjQwNTA5MjAxNjAzWjAYMRYwFAYD VQQDEw02NjMzZjQ4NC0yODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArq9g6bvehWxvt1q+GdTVzffI5QJjSpHsP4wcVQQcBlC0lGUw8Npw3BoQ3HqE eTFkM1DIz3WE+3upJJ/eaQHVNDar0wIRSlxz79HTG4jJh1Q/9yDfzNiQCTBNLNRe cxWIbB0xsJdsAAc3/qUsbxeuXwrTO6SRNBt+fZtuSP3ku+MIYnf/NbQpWOTnZrOR +o9N96vJeOf6vMfr5jFgbm5bJmEBR4uYoR2HM+vL3DRBjl0+cVjqSdHz+UklQcS9 i5vMcJWJynVshJMHcSB40cyLeDFOCQrRmpcOoIV7cqYdMs4WWAxdCMULbO9JbBq4 wZKs46/oFwsmGnUlf/k5M+jJ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGc13sig nTl8pKbpbtsGlyQu+TVUMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3TvOio0nJSh+EZ0neLT0WHtOUnk7uBUbXqnLiTBnAITsCvtJkO7Ai +rOslQSUWmgNibYnN9F2j7c1XfiDR4bSZddHN9uYAWXf9Uby4Lp43myLwT1bbJ6b GpyoQCI1KAFvxVPZrsZCGIY4mrw9ONlqY5c/WVXgs4MdXI8PvbOs2ltrRamXUAcd 64SwRGkzFg80ReKUkpQR4Q8fGlT/8OUBUApMibnl6KL67EXTeqH6bw8JFc6VPd1T iEJ1y0G/WeXESQ0IiJ9a+D1Uc8fsw90skyVJC8ugot11OYtIioiyo96/bqCvCBPo QqUhkJzOqzJHTZm9SBOheVLVtafl3rXu -----END CERTIFICATE-----Generated at Thu May 2 20:50:34 2024 by rpki-client on console-fra.rpki-client.org