$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: Ast+P1bQwM7Wb6CHMb3yMBEBh9wzOMfq1Qod6gF3h0Q= Subject key identifier: 0B:6A:ED:5B:BB:57:4F:27:36:31:0C:E5:14:DF:D0:59:63:FA:EA:75 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1C50 Signing time: Sun 28 Apr 2024 16:34:08 +0000 Manifest this update: Sun 28 Apr 2024 16:34:07 +0000 Manifest next update: Sun 05 May 2024 16:34:07 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: XYWFXK+/XNd+HoJZpMfoEbTh5MGDm+xv57+ift7NJ/s=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: B3AMhYtFPA/ESEYQ5MLKldCLC5pmb3wy+Ml4HNOLRF8=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: FksC/G9VYXmf9ycFmdDGc3yLyp750yl7sm9XPl5RbMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 16:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7259 (0x1c5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Apr 28 16:34:07 2024 GMT Not After : May 5 16:34:07 2024 GMT Subject: CN=662e7a80-5aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:8a:63:4c:15:a0:22:b5:c4:53:af:f1:30: 7d:79:45:95:30:f9:d0:ea:ff:e7:23:e1:b4:cd:31: 19:f8:86:9c:7d:2d:b9:06:fb:24:6d:60:85:9d:b5: 9e:26:39:4a:da:36:35:20:57:60:b5:73:dd:8a:bd: ad:0c:f2:f8:ad:d8:69:d7:57:d8:46:9f:4d:9e:fb: 50:ec:d9:a3:17:1a:e4:1b:1e:46:ef:c7:fa:f3:d5: 20:36:1a:6b:76:89:ff:b3:6e:f0:81:a4:a4:e0:8f: 2d:3c:c5:27:45:4a:f8:d0:9d:e4:c8:a5:48:6c:d5: bc:16:f6:2a:7a:bb:ad:a1:f1:3b:60:1b:9e:29:e1: 7d:73:21:5e:81:45:53:6c:3d:83:6c:c3:e0:a6:02: 84:94:47:2f:8e:a1:76:ae:e5:bc:4f:e5:8f:90:09: 89:7a:d3:17:74:39:c1:5c:d1:5c:dd:74:ad:a7:92: f4:08:37:b1:58:9f:c5:56:b5:b0:e0:98:bb:3b:11: 5b:7f:7c:79:10:0a:98:c4:79:95:56:52:8e:60:78: 19:b2:51:23:00:c4:08:dc:31:70:17:ab:56:66:ce: ce:ba:59:af:7c:0d:c2:e3:e3:ea:65:61:fe:aa:68: 51:29:51:59:24:4e:ff:51:df:ad:02:c0:74:4e:67: 29:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6A:ED:5B:BB:57:4F:27:36:31:0C:E5:14:DF:D0:59:63:FA:EA:75 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:57:99:9e:f2:f0:f1:ad:62:3d:11:5b:84:ae:19:61:19:81: 6d:c3:1a:4c:cd:2a:6e:65:49:d4:63:c9:f4:4e:50:87:fb:20: 65:3b:2a:10:f8:f4:4c:33:b6:84:73:24:ce:f0:9d:f9:35:b8: 29:57:f1:b6:42:a5:37:dd:d3:e9:80:d8:9b:f2:cd:bd:26:cb: e3:80:86:48:88:70:69:6a:70:97:57:aa:ec:3d:d2:0d:95:9b: e4:6f:53:69:be:0c:71:df:fe:04:0a:02:e5:37:2b:ca:f4:33: 9c:4d:ab:00:cf:01:b3:3e:74:0a:01:ef:5c:94:da:84:5a:2e: f3:32:e1:d3:7e:99:41:e4:f7:57:7a:d7:d7:ad:e3:4a:30:b9: 5d:55:35:41:c0:ab:e7:0b:1f:98:3e:d5:aa:eb:43:14:67:b3: 1a:24:0f:45:63:d9:56:a6:ad:08:6d:90:d8:12:1b:1a:6c:ee: 47:dd:85:59:3f:72:b7:b8:2e:cc:28:1a:14:f4:6b:f4:e5:50: 18:2d:81:59:2d:59:ff:ac:3c:22:a5:fd:08:36:38:8e:82:40: 84:3e:60:23:14:c0:8d:c5:67:af:67:f3:55:c4:55:bc:a4:40: 4b:34:c6:48:f9:16:f3:a8:c4:33:19:ba:a4:54:72:50:e8:97: 79:67:dc:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjQwNDI4MTYzNDA3WhcNMjQwNTA1MTYzNDA3WjAYMRYwFAYD VQQDEw02NjJlN2E4MC01YWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAWKY0wVoCK1xFOv8TB9eUWVMPnQ6v/nI+G0zTEZ+IacfS25BvskbWCFnbWe JjlK2jY1IFdgtXPdir2tDPL4rdhp11fYRp9NnvtQ7NmjFxrkGx5G78f689UgNhpr don/s27wgaSk4I8tPMUnRUr40J3kyKVIbNW8FvYqerutofE7YBueKeF9cyFegUVT bD2DbMPgpgKElEcvjqF2ruW8T+WPkAmJetMXdDnBXNFc3XStp5L0CDexWJ/FVrWw 4Ji7OxFbf3x5EAqYxHmVVlKOYHgZslEjAMQI3DFwF6tWZs7OulmvfA3C4+PqZWH+ qmhRKVFZJE7/Ud+tAsB0TmcpwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtq7Vu7 V08nNjEM5RTf0Flj+up1MB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpV5me8vDxrWI9EVuErhlhGYFtwxpMzSpuZUnUY8n0TlCH+yBlOyoQ +PRMM7aEcyTO8J35NbgpV/G2QqU33dPpgNib8s29JsvjgIZIiHBpanCXV6rsPdIN lZvkb1Npvgxx3/4ECgLlNyvK9DOcTasAzwGzPnQKAe9clNqEWi7zMuHTfplB5PdX etfXreNKMLldVTVBwKvnCx+YPtWq60MUZ7MaJA9FY9lWpq0IbZDYEhsabO5H3YVZ P3K3uC7MKBoU9Gv05VAYLYFZLVn/rDwipf0INjiOgkCEPmAjFMCNxWevZ/NVxFW8 pEBLNMZI+RbzqMQzGbqkVHJQ6Jd5Z9xH -----END CERTIFICATE-----Generated at Sun Apr 28 19:01:37 2024 by rpki-client on console-fra.rpki-client.org