$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: /n4NsMcotizVOFoPAVamROqyK4zZdAfmNDnxIRc8rZs= Subject key identifier: E0:3B:10:F6:1A:A7:EC:5F:6B:1E:20:ED:17:57:80:A0:84:5B:64:B8 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0ABB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0AB6 Signing time: Sat 04 May 2024 20:19:15 +0000 Manifest this update: Sat 04 May 2024 20:19:14 +0000 Manifest next update: Sat 11 May 2024 20:19:14 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: zPBhGB96GBS0McarCqPcPVR93GOfn0UCBHALCXTlKsM=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: mNsfVlUdSNKkq52L+MBYvDx8ykV4jZ5oquFR9uSMYKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: May 4 20:19:14 2024 GMT Not After : May 11 20:19:14 2024 GMT Subject: CN=66369842-3eeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:94:19:96:fe:95:9a:9a:96:40:0c:ce:54:e0: e0:25:d2:a2:ea:03:82:c5:34:35:27:61:f8:73:31: 93:9a:a3:50:cd:ed:a7:ec:e4:88:e5:e5:a2:b0:96: a1:9a:0c:8c:5e:31:f1:dc:91:cb:42:e2:0b:38:78: c7:33:9a:aa:44:37:26:0a:c7:9b:ed:5b:03:54:b3: db:a2:44:df:1a:db:bf:a2:47:c4:bd:19:80:c2:bd: 9e:59:5d:9d:79:c4:64:b4:cb:ba:a7:91:37:c1:3a: 79:ba:71:e8:78:0f:ac:b9:d3:d8:b0:82:78:05:34: cd:9d:ab:54:f4:db:5f:6e:bc:59:63:0f:d5:da:8c: 82:b5:50:e6:2e:a5:95:87:6c:76:fa:04:9e:06:a4: 09:f6:aa:08:1a:61:c9:6b:74:1a:69:f0:ee:8d:38: f5:e0:b4:c5:3f:66:3b:2e:98:dc:af:cd:30:f0:be: 5e:3a:35:51:ab:6e:dd:15:91:8c:5e:9b:01:e3:0d: 82:25:e5:ab:98:52:c1:85:ab:0f:f6:f2:87:9a:6c: f9:01:40:4e:10:51:01:59:12:37:ca:db:38:e7:1f: d4:e4:bf:b4:99:19:c1:13:d3:3c:66:a0:fc:04:10: 80:d2:c1:dd:b2:2c:a2:53:45:0e:ea:f6:08:4d:4c: 3a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3B:10:F6:1A:A7:EC:5F:6B:1E:20:ED:17:57:80:A0:84:5B:64:B8 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:47:4d:36:6f:bd:23:2b:96:aa:4c:b1:e1:32:30:a5:33:00: f0:af:d1:13:0b:2b:7e:7f:be:23:01:84:6b:a5:82:04:db:23: 08:df:a0:57:4f:cf:c0:08:43:dc:9e:e4:5b:30:a9:22:a4:fb: f4:77:20:08:11:4b:0a:44:18:44:12:95:a0:57:de:e5:3b:6a: 0c:c1:2c:5d:6a:18:08:da:75:7f:a8:4e:4a:3d:37:5e:9a:3f: f8:6d:a3:4b:2b:33:3f:4c:a6:d4:3f:00:db:41:ef:f4:06:10: fa:1a:ca:b2:da:18:ce:4b:25:39:a6:41:88:11:3f:9b:66:41: 34:38:df:8b:20:90:cb:19:b9:14:37:28:ee:c2:9f:4d:ec:ee: 57:f4:42:e4:58:f2:ba:46:15:3d:e5:80:c9:4b:3a:bb:50:81: bb:af:2b:91:c7:6f:47:c4:32:fc:31:6a:81:3c:c4:fa:ba:76: c4:c1:2c:fc:ca:c8:90:07:c0:f7:ff:8c:a4:b8:79:ee:2a:10: bf:9e:ab:f9:09:9c:40:27:50:2d:ad:55:d4:7c:82:67:e1:23: ee:4a:a2:f0:ac:1d:6b:d0:d0:e5:60:c7:f2:e0:38:39:c3:76: 4d:9f:25:33:58:7c:1f:86:f7:46:95:28:ac:48:17:05:44:44: fc:7d:fe:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjQwNTA0MjAxOTE0WhcNMjQwNTExMjAxOTE0WjAYMRYwFAYD VQQDEw02NjM2OTg0Mi0zZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45QZlv6VmpqWQAzOVODgJdKi6gOCxTQ1J2H4czGTmqNQze2n7OSI5eWisJah mgyMXjHx3JHLQuILOHjHM5qqRDcmCseb7VsDVLPbokTfGtu/okfEvRmAwr2eWV2d ecRktMu6p5E3wTp5unHoeA+sudPYsIJ4BTTNnatU9NtfbrxZYw/V2oyCtVDmLqWV h2x2+gSeBqQJ9qoIGmHJa3QaafDujTj14LTFP2Y7Lpjcr80w8L5eOjVRq27dFZGM XpsB4w2CJeWrmFLBhasP9vKHmmz5AUBOEFEBWRI3yts45x/U5L+0mRnBE9M8ZqD8 BBCA0sHdsiyiU0UO6vYITUw6YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA7EPYa p+xfax4g7RdXgKCEW2S4MB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQR002b70jK5aqTLHhMjClMwDwr9ETCyt+f74jAYRrpYIE2yMI36BX T8/ACEPcnuRbMKkipPv0dyAIEUsKRBhEEpWgV97lO2oMwSxdahgI2nV/qE5KPTde mj/4baNLKzM/TKbUPwDbQe/0BhD6Gsqy2hjOSyU5pkGIET+bZkE0ON+LIJDLGbkU Nyjuwp9N7O5X9ELkWPK6RhU95YDJSzq7UIG7ryuRx29HxDL8MWqBPMT6unbEwSz8 ysiQB8D3/4ykuHnuKhC/nqv5CZxAJ1AtrVXUfIJn4SPuSqLwrB1r0NDlYMfy4Dg5 w3ZNnyUzWHwfhvdGlSisSBcFRET8ff7Z -----END CERTIFICATE-----Generated at Sat May 4 21:19:32 2024 by rpki-client on console-ams.rpki-client.org