$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft File: DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft (raw, json) Hash identifier: nr2g7wXtxdCpb6rJUfDdCrC7UyPPEiC+L/0IsyE2mGg= Subject key identifier: 66:AC:EB:3E:E5:87:2B:56:0F:27:CC:8F:DD:EE:B1:7C:CD:6F:E4:FF Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 15EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft Manifest number: 15E4 Signing time: Thu 02 May 2024 17:17:07 +0000 Manifest this update: Thu 02 May 2024 17:17:07 +0000 Manifest next update: Thu 09 May 2024 17:17:07 +0000 Files and hashes: 1: DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl (hash: 8LE9TYUS/CGScbR5Rf0dOvLlEIvMnWwUQjJTFngRCr4=) 2: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (hash: Zj+iHPxvMADUxX/J3R3nQF997c2L/tq6sljYaBjJeZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5614 (0x15ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: May 2 17:17:07 2024 GMT Not After : May 9 17:17:07 2024 GMT Subject: CN=6633ca93-5d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:9e:0f:69:4f:49:9d:2f:d0:a7:e2:81:2f: 7f:f4:0d:06:1f:4b:06:a6:8b:a5:42:63:19:f5:f9: 76:98:7f:22:fd:fe:9f:e3:72:5c:6d:81:3b:e2:14: 1c:9e:25:8f:b0:4d:f0:72:3f:d6:52:e8:a6:97:27: 93:fa:a8:48:b7:f3:21:4f:3b:1d:95:53:fb:69:ec: 5d:06:14:ae:b1:4e:b2:b4:3c:8b:19:85:c3:45:bd: b6:35:4c:55:4a:9a:cd:b6:c0:ac:bc:c9:27:ef:be: fa:51:c4:d3:bb:85:56:e7:7d:fc:14:6c:9e:9a:04: 22:9b:87:54:23:99:af:c9:8d:97:5c:c9:c3:df:18: 4c:51:32:19:b9:ed:05:9d:35:cb:41:09:1b:0c:9b: 17:be:16:48:0a:60:b3:fa:c0:5d:3a:ca:53:4f:e5: e0:48:f6:6c:20:c9:23:bc:f9:99:55:df:51:d9:97: d0:1c:4d:d8:8b:ab:bc:32:e1:ae:0f:3b:43:b0:12: bd:dc:c4:51:3b:c6:2c:eb:1f:d2:65:f8:04:20:99: aa:0d:dd:b5:c1:80:38:cb:24:4b:db:d3:37:cf:84: e2:33:9d:09:5b:55:e6:83:5b:11:63:de:3f:52:82: e3:4c:f7:98:db:f3:a5:ba:8c:14:94:e2:da:12:50: 19:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:AC:EB:3E:E5:87:2B:56:0F:27:CC:8F:DD:EE:B1:7C:CD:6F:E4:FF X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8c:c1:15:d9:0f:2b:3e:18:b7:ad:8e:2f:22:92:4a:af:40: 6e:6d:25:64:50:04:32:3d:0a:10:b0:0b:0b:73:76:99:80:48: 73:dd:ab:3c:e2:93:0c:88:1b:d9:6f:00:68:32:18:7e:66:c2: 37:35:3d:85:dc:95:55:28:8b:0f:aa:7d:c1:c4:41:ff:b5:a5: 32:bf:00:a0:55:d2:6e:7f:2d:f8:86:89:3c:83:2c:62:e7:21: 12:44:17:a1:46:6a:60:28:0d:a9:e7:a9:7d:06:a5:f7:f5:35: 97:03:9a:f5:86:5f:38:10:f8:a4:26:50:a3:ee:31:b5:59:b5: 8c:6f:24:be:fb:4e:9a:34:d3:60:46:4d:52:61:0b:36:6b:1c: e2:d6:20:d6:56:e1:5d:be:9e:6f:c7:0f:2c:a8:14:d5:80:31: e4:1e:6a:95:87:18:f8:0c:12:a8:b9:bd:ef:33:28:57:af:67: 82:08:f1:e6:d0:fb:e8:1b:f6:ee:14:e6:6d:27:f5:d0:31:a5: b1:04:38:62:90:d6:0e:8b:45:5e:df:84:3a:07:91:da:82:9b: f2:d8:ee:9e:69:53:f3:8a:4f:f5:12:ae:a6:7c:47:cc:4a:dd: d7:07:96:63:c6:99:c7:00:56:61:b7:da:79:ee:05:49:b0:e3: 4a:fb:de:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjQwNTAyMTcxNzA3WhcNMjQwNTA5MTcxNzA3WjAYMRYwFAYD VQQDEw02NjMzY2E5My01ZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPSeD2lPSZ0v0KfigS9/9A0GH0sGpoulQmMZ9fl2mH8i/f6f43JcbYE74hQc niWPsE3wcj/WUuimlyeT+qhIt/MhTzsdlVP7aexdBhSusU6ytDyLGYXDRb22NUxV SprNtsCsvMkn7776UcTTu4VW5338FGyemgQim4dUI5mvyY2XXMnD3xhMUTIZue0F nTXLQQkbDJsXvhZICmCz+sBdOspTT+XgSPZsIMkjvPmZVd9R2ZfQHE3Yi6u8MuGu DztDsBK93MRRO8Ys6x/SZfgEIJmqDd21wYA4yyRL29M3z4TiM50JW1Xmg1sRY94/ UoLjTPeY2/OluowUlOLaElAZyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGas6z7l hytWDyfMj93usXzNb+T/MB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODE2MS82NzA2MTJCMEZBNjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJW ZlFMTkJMUlNJNnVBWnFWRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAajMEV2Q8rPhi3rY4vIpJKr0BubSVkUAQyPQoQsAsLc3aZgEhz3as8 4pMMiBvZbwBoMhh+ZsI3NT2F3JVVKIsPqn3BxEH/taUyvwCgVdJufy34hok8gyxi 5yESRBehRmpgKA2p56l9BqX39TWXA5r1hl84EPikJlCj7jG1WbWMbyS++06aNNNg Rk1SYQs2axzi1iDWVuFdvp5vxw8sqBTVgDHkHmqVhxj4DBKoub3vMyhXr2eCCPHm 0PvoG/buFOZtJ/XQMaWxBDhikNYOi0Ve34Q6B5Hagpvy2O6eaVPzik/1Eq6mfEfM St3XB5ZjxpnHAFZht9p57gVJsONK+97x -----END CERTIFICATE-----Generated at Thu May 2 20:50:38 2024 by rpki-client on console-fra.rpki-client.org