$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: bLhG9/aSzJs1+7SyGDMn6BQjH1ClbW6Reh9mfdg05hI= Subject key identifier: 04:87:0D:F4:AE:C9:8D:B0:6E:91:48:0C:26:D4:44:0D:45:79:0D:49 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 085C Signing time: Mon 06 May 2024 21:45:26 +0000 Manifest this update: Mon 06 May 2024 21:45:25 +0000 Manifest next update: Mon 13 May 2024 21:45:25 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: CwzRx4UQ4uf0XoWg/7i0TFPnLoQ+oSw4Ff7geHpOD/4=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: awdMDI45WMoyA7Hv0k/0lwP8aK2FFS10Os+VOyBIq0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: May 6 21:45:25 2024 GMT Not After : May 13 21:45:25 2024 GMT Subject: CN=66394f76-0d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ce:e8:8d:a2:fd:07:b7:7d:83:07:74:8a:70: b1:03:de:12:56:b2:81:01:35:e2:47:88:24:dc:31: 09:cb:46:80:3d:cd:ac:1d:e2:c2:44:56:41:d1:98: 0b:17:22:9d:e1:17:f0:f8:f0:36:28:09:07:1f:b7: 91:e2:e3:ea:ee:36:06:eb:0e:cb:68:1b:82:46:49: ac:c0:50:4a:5e:71:e0:42:e6:a8:f4:6e:6d:95:54: 96:c1:c9:a5:f2:30:9d:7a:10:50:40:a2:97:eb:9d: 34:77:19:f7:a4:40:b2:08:14:31:c9:6c:4b:60:f9: c9:f1:65:4a:71:d7:e3:98:98:d0:10:c2:f5:b9:4e: 0b:bc:30:d4:e2:a8:a1:4b:6c:64:b1:80:de:0c:5a: 41:26:b9:2d:b3:0e:fb:87:d9:f3:b7:4e:e4:be:62: 2e:21:61:a9:85:e3:b0:b8:c0:54:3e:7f:28:2b:8b: 7c:98:07:dd:1f:5e:a8:91:c6:5b:56:43:c0:c6:15: 9d:85:08:e3:26:56:aa:05:26:18:0a:ea:e6:08:0a: 27:0a:59:b3:10:c4:e5:e6:09:f9:c7:80:c9:ed:0d: 94:d7:5d:70:3b:4c:7d:a6:ea:63:7e:35:99:e7:4f: f2:c2:08:a3:aa:0f:0c:b6:ac:1d:16:71:75:95:cb: 90:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:87:0D:F4:AE:C9:8D:B0:6E:91:48:0C:26:D4:44:0D:45:79:0D:49 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:18:21:57:c5:d2:24:c2:03:59:35:95:5b:e6:90:58:62:7a: 45:cf:f7:35:4d:a2:84:17:69:2a:43:c6:31:62:5d:7e:96:b6: b4:0c:dc:8c:d6:e2:41:ff:46:f4:9c:ef:c9:43:6c:97:3f:e2: 20:78:a4:98:38:54:5c:48:0a:dd:b2:1e:31:0b:43:a7:2b:4b: bb:b2:a8:c0:4a:af:7e:1e:8e:8a:fc:ed:8b:9a:86:32:37:93: 37:de:00:a1:f0:75:fe:d3:0f:0d:b9:c5:4e:a9:96:a7:e7:08: a0:4f:b8:84:56:ad:ef:53:eb:c4:cc:70:25:5e:c9:95:94:b0: 95:99:f0:b8:fd:e5:91:de:5c:6b:c2:0f:00:71:64:00:a9:fa: 12:54:87:3b:fb:90:08:92:73:05:f2:18:44:a2:25:40:9a:75: 80:f3:af:f4:2d:23:7f:9a:bd:15:8c:ea:fe:e2:c0:26:95:29: 1e:81:1a:78:6a:bc:38:5d:d6:c7:c4:69:43:30:8f:42:c4:dd: 7d:f4:a6:b4:91:3d:2e:3a:65:91:93:e3:ed:4b:a0:3f:d7:94: 88:4d:f6:4a:e7:85:bd:79:68:1a:88:53:58:7d:2b:45:b1:48: cb:cd:86:a9:01:5a:21:98:c2:31:c2:07:6d:14:5d:f1:50:ce: 1e:bd:d2:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjQwNTA2MjE0NTI1WhcNMjQwNTEzMjE0NTI1WjAYMRYwFAYD VQQDEw02NjM5NGY3Ni0wZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4s7ojaL9B7d9gwd0inCxA94SVrKBATXiR4gk3DEJy0aAPc2sHeLCRFZB0ZgL FyKd4Rfw+PA2KAkHH7eR4uPq7jYG6w7LaBuCRkmswFBKXnHgQuao9G5tlVSWwcml 8jCdehBQQKKX6500dxn3pECyCBQxyWxLYPnJ8WVKcdfjmJjQEML1uU4LvDDU4qih S2xksYDeDFpBJrktsw77h9nzt07kvmIuIWGpheOwuMBUPn8oK4t8mAfdH16okcZb VkPAxhWdhQjjJlaqBSYYCurmCAonClmzEMTl5gn5x4DJ7Q2U111wO0x9pupjfjWZ 50/ywgijqg8MtqwdFnF1lcuQsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASHDfSu yY2wbpFIDCbURA1FeQ1JMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyGCFXxdIkwgNZNZVb5pBYYnpFz/c1TaKEF2kqQ8YxYl1+lra0DNyM 1uJB/0b0nO/JQ2yXP+IgeKSYOFRcSArdsh4xC0OnK0u7sqjASq9+Ho6K/O2LmoYy N5M33gCh8HX+0w8NucVOqZan5wigT7iEVq3vU+vEzHAlXsmVlLCVmfC4/eWR3lxr wg8AcWQAqfoSVIc7+5AIknMF8hhEoiVAmnWA86/0LSN/mr0VjOr+4sAmlSkegRp4 arw4XdbHxGlDMI9CxN199Ka0kT0uOmWRk+PtS6A/15SITfZK54W9eWgaiFNYfStF sUjLzYapAVohmMIxwgdtFF3xUM4evdLo -----END CERTIFICATE-----Generated at Mon May 6 23:05:50 2024 by rpki-client on console-fra.rpki-client.org