$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: Zr8QRujYWVEo2A6lAC/ZGwsoKRK9+SQPAT26craEBkc= Subject key identifier: 6A:DF:82:19:08:48:BA:39:A9:E9:8C:EC:A6:3C:B6:42:D2:A0:20:2F Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 1442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 1439 Signing time: Sat 18 May 2024 17:24:37 +0000 Manifest this update: Sat 18 May 2024 17:24:36 +0000 Manifest next update: Sat 25 May 2024 17:24:36 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: P/JSnR19Zsj92Z+U5EVftZBxqbQpw8raEqVmg0NdJCA=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: ytAyS4L6at/OG/reU7sAXCynqrGoU17alDg629X64hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5186 (0x1442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: May 18 17:24:36 2024 GMT Not After : May 25 17:24:36 2024 GMT Subject: CN=6648e455-bdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bb:81:b8:7a:dc:f7:1f:9a:59:98:39:db:30: 6e:03:5a:c2:34:6f:f9:2f:f4:fa:08:6f:db:76:27: af:c2:1d:25:80:ad:0c:4f:43:4e:09:38:ac:f7:5f: da:df:3b:45:14:a9:2b:af:be:cd:11:4e:ff:83:b4: 1e:ce:c9:4b:5a:20:ea:3c:0d:9f:5c:53:15:6d:cb: 17:5c:d9:2f:44:03:c8:9b:04:1f:89:fb:32:7b:40: dd:78:08:a1:b4:79:94:8b:5a:b5:ef:10:ea:76:da: f6:79:48:23:7b:b3:29:e6:8d:bb:9b:a9:61:7b:af: e5:9c:8c:c0:ec:9f:58:e5:70:47:59:ec:d3:ea:e0: 4f:0d:4e:26:ee:0a:46:13:08:03:f3:48:ea:82:1b: 84:14:24:a1:c4:de:b3:dc:b5:90:b4:e3:e8:a6:02: 9a:e9:9e:53:96:89:49:ac:01:ba:f6:96:a1:22:14: 9d:ae:9c:6e:d0:cf:83:22:bb:f3:8f:c2:e5:f6:e9: 4e:2b:97:a8:66:54:30:70:5b:9f:fb:39:f1:d3:24: 02:17:16:31:ee:43:17:38:1d:dc:d6:06:3c:1c:2a: 1d:2a:fd:fd:14:e6:38:21:a1:0e:d5:1b:a9:1a:e9: 8c:40:30:53:3a:fc:0f:10:75:53:20:d1:bc:3f:bb: 77:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DF:82:19:08:48:BA:39:A9:E9:8C:EC:A6:3C:B6:42:D2:A0:20:2F X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:98:ba:e3:4d:49:6b:31:ac:f2:23:5e:6b:d4:ec:84:57:15: 3e:51:5a:29:8c:8f:53:c4:cc:66:a7:6b:e6:2c:99:04:60:ff: e3:a6:68:f3:76:0c:a2:8b:18:4b:47:a1:2e:da:d7:b0:8a:3b: 16:1e:9a:bd:47:e4:e3:f7:be:79:d6:9b:30:c1:6c:a6:89:33: 90:89:d5:35:83:67:03:3a:3e:01:6f:b2:63:47:ab:d2:e5:8d: 15:f5:7f:d8:3c:36:72:24:5d:3f:40:c2:ee:17:4b:70:bd:96: 09:9a:9a:cb:39:96:30:bc:3b:7f:9b:60:04:ca:ff:a0:32:76: 3b:cc:30:e4:ba:8f:d0:a8:f6:e5:f4:55:5b:1f:de:de:b8:7e: b1:62:99:db:7f:af:de:79:8b:9d:45:1b:b6:ff:59:18:4d:23: c6:32:aa:6a:d5:3e:ec:11:7c:9a:00:e8:09:cf:2f:a4:d6:83: 71:20:47:8f:41:9c:e9:c5:81:3b:2f:b4:94:ea:0f:58:88:2c: 8f:a1:36:6f:87:70:34:e3:1a:a8:2b:b3:40:80:77:e7:aa:14: 3c:85:2d:f0:6f:4b:c0:bd:50:b4:1b:b8:5f:41:d6:25:b2:8d: dd:47:6d:69:08:1c:1c:07:ee:b2:ed:31:bc:ab:2a:8b:65:ae: 2a:a1:2e:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjQwNTE4MTcyNDM2WhcNMjQwNTI1MTcyNDM2WjAYMRYwFAYD VQQDEw02NjQ4ZTQ1NS1iZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7uBuHrc9x+aWZg52zBuA1rCNG/5L/T6CG/bdievwh0lgK0MT0NOCTis91/a 3ztFFKkrr77NEU7/g7QezslLWiDqPA2fXFMVbcsXXNkvRAPImwQfifsye0DdeAih tHmUi1q17xDqdtr2eUgje7Mp5o27m6lhe6/lnIzA7J9Y5XBHWezT6uBPDU4m7gpG EwgD80jqghuEFCShxN6z3LWQtOPopgKa6Z5TlolJrAG69pahIhSdrpxu0M+DIrvz j8Ll9ulOK5eoZlQwcFuf+znx0yQCFxYx7kMXOB3c1gY8HCodKv39FOY4IaEO1Rup GumMQDBTOvwPEHVTING8P7t3VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrfghkI SLo5qemM7KY8tkLSoCAvMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEmLrjTUlrMazyI15r1OyEVxU+UVopjI9TxMxmp2vmLJkEYP/jpmjz dgyiixhLR6Eu2tewijsWHpq9R+Tj97551pswwWymiTOQidU1g2cDOj4Bb7JjR6vS 5Y0V9X/YPDZyJF0/QMLuF0twvZYJmprLOZYwvDt/m2AEyv+gMnY7zDDkuo/QqPbl 9FVbH97euH6xYpnbf6/eeYudRRu2/1kYTSPGMqpq1T7sEXyaAOgJzy+k1oNxIEeP QZzpxYE7L7SU6g9YiCyPoTZvh3A04xqoK7NAgHfnqhQ8hS3wb0vAvVC0G7hfQdYl so3dR21pCBwcB+6y7TG8qyqLZa4qoS7r -----END CERTIFICATE-----Generated at Sat May 18 18:12:31 2024 by rpki-client on console-fra.rpki-client.org