$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft File: dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json) Hash identifier: qdLNrviHW2mHxrNmCRN30HjD0sj0NBsk05r9z8heo/Y= Subject key identifier: 84:4B:17:54:B2:95:ED:53:67:BA:65:09:11:86:EA:6F:F4:0E:68:91 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft Manifest number: 052A Signing time: Mon 29 Apr 2024 01:00:22 +0000 Manifest this update: Mon 29 Apr 2024 01:00:22 +0000 Manifest next update: Mon 06 May 2024 01:00:21 +0000 Files and hashes: 1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: GvSju4VhGT8jPpxhYyB9/B1hp6bN02t7+m/VOTjL86k=) 2: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: TQKu3Nc5/FjRxOW6/aUczeg6MDtWMA4/C2ZjdqW/R80=) 3: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: 8HKS7RMG63E7DZ9IVm0xhKdd0cM0xsTIgNOY7MeyMiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 01:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Apr 29 01:00:22 2024 GMT Not After : May 6 01:00:21 2024 GMT Subject: CN=662ef126-ce8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5c:97:3f:1a:15:61:3a:c7:9c:5b:d3:94:7b: 6b:f2:e7:c1:9c:d5:f2:af:04:d1:b9:d9:89:e5:f0: 80:a3:00:db:38:8b:1c:38:3f:e9:89:49:6d:8e:e0: 33:30:98:ff:c8:f4:31:8a:0b:6e:31:50:5f:e4:77: 55:bc:9b:cb:7e:e6:6b:e0:7d:8e:33:bb:65:a5:3a: 75:e1:cf:7c:aa:78:99:3f:8a:96:33:6e:8c:91:7b: de:b6:e6:0a:46:18:9a:f6:90:98:00:b5:3c:23:96: 8c:d9:f3:1d:48:04:3d:f3:84:84:29:76:f4:63:80: 2e:bc:fc:2f:aa:0e:de:af:1a:8c:e8:ac:bd:29:1d: 62:2d:d2:28:f2:84:b6:e4:92:69:91:e7:22:60:be: fb:78:14:9d:25:1d:eb:24:49:bd:ff:15:1f:07:50: 11:5b:85:87:76:f0:bb:6e:0b:a6:b3:8b:a5:f5:84: 7b:ee:67:d6:59:aa:39:37:87:c9:f7:11:55:0b:25: 04:fa:5a:23:c0:78:bd:44:26:de:f4:4d:0b:0c:5d: 85:98:ae:37:05:47:f2:c4:1b:f3:6e:8c:19:70:1f: d8:90:85:58:84:c5:07:4c:ea:b2:13:6f:c2:05:03: 2d:1c:3a:0b:d0:43:ce:dc:09:9b:bd:c1:e5:62:c4: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4B:17:54:B2:95:ED:53:67:BA:65:09:11:86:EA:6F:F4:0E:68:91 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:4d:ce:8a:83:70:19:24:a4:4c:14:52:c7:c1:cc:a5:f7:29: e1:ec:0f:0d:9b:3f:09:57:b8:4e:5b:d3:92:a3:e0:b1:1f:81: 56:63:01:0f:7e:08:76:ac:84:e7:af:c3:5f:2e:62:88:f3:d6: 2f:49:16:dd:e0:65:56:20:09:f4:bb:3e:e0:d3:a6:2c:e9:f3: b4:e9:aa:48:3b:55:07:36:34:5c:de:72:40:88:8f:5c:c2:97: f3:55:76:a8:27:1d:ee:7c:ef:1e:e7:ce:20:20:a9:39:10:96: 41:b2:64:c9:e3:ac:5e:36:c2:2f:1b:04:16:4d:25:7b:ea:ef: 69:95:28:a0:6b:c4:1f:cc:fe:46:c6:29:d0:f5:14:c7:26:04: 13:f4:9d:31:8a:88:56:68:45:ba:53:99:57:67:b3:95:92:d0: d6:f8:4e:00:8d:c5:d8:f3:23:42:ed:0c:0f:de:84:de:08:23: b3:0b:ad:ea:09:87:b9:56:32:76:9f:d1:11:3b:06:e7:ac:85: 44:3a:5f:2d:01:fa:5f:d8:3e:b2:21:34:06:e1:cc:47:d9:61: 1e:1c:f9:a3:90:e5:1f:5c:aa:ea:83:a6:d6:33:da:03:7c:21: d2:f8:e8:2a:a5:24:90:9e:60:62:74:b4:1d:a7:c4:ae:73:9a: 17:2f:f5:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjQwNDI5MDEwMDIyWhcNMjQwNTA2MDEwMDIxWjAYMRYwFAYD VQQDEw02NjJlZjEyNi1jZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lyXPxoVYTrHnFvTlHtr8ufBnNXyrwTRudmJ5fCAowDbOIscOD/piUltjuAz MJj/yPQxigtuMVBf5HdVvJvLfuZr4H2OM7tlpTp14c98qniZP4qWM26MkXvetuYK Rhia9pCYALU8I5aM2fMdSAQ984SEKXb0Y4AuvPwvqg7erxqM6Ky9KR1iLdIo8oS2 5JJpkeciYL77eBSdJR3rJEm9/xUfB1ARW4WHdvC7bgums4ul9YR77mfWWao5N4fJ 9xFVCyUE+lojwHi9RCbe9E0LDF2FmK43BUfyxBvzbowZcB/YkIVYhMUHTOqyE2/C BQMtHDoL0EPO3AmbvcHlYsRF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRLF1Sy le1TZ7plCRGG6m/0DmiRMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf VEpLWE5qbTdaMTFfQTVDWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8Tc6Kg3AZJKRMFFLHwcyl9ynh7A8Nmz8JV7hOW9OSo+CxH4FWYwEP fgh2rITnr8NfLmKI89YvSRbd4GVWIAn0uz7g06Ys6fO06apIO1UHNjRc3nJAiI9c wpfzVXaoJx3ufO8e584gIKk5EJZBsmTJ46xeNsIvGwQWTSV76u9plSiga8QfzP5G xinQ9RTHJgQT9J0xiohWaEW6U5lXZ7OVktDW+E4AjcXY8yNC7QwP3oTeCCOzC63q CYe5VjJ2n9EROwbnrIVEOl8tAfpf2D6yITQG4cxH2WEeHPmjkOUfXKrqg6bWM9oD fCHS+OgqpSSQnmBidLQdp8Suc5oXL/UU -----END CERTIFICATE-----Generated at Mon Apr 29 03:35:09 2024 by rpki-client on console-fra.rpki-client.org