$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: R2wYj4+Gv2e/N244Mtk/UhjGk6Omkq38RMxOm7qAo3k= Subject key identifier: D7:98:3E:B8:D0:B0:E4:42:09:30:4A:2A:2B:A4:F4:94:E0:B4:29:0B Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 06C8 Signing time: Sat 18 May 2024 23:01:29 +0000 Manifest this update: Sat 18 May 2024 23:01:28 +0000 Manifest next update: Sat 25 May 2024 23:01:28 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: viT11o87K919sTKd09Vt1a3ktuqF96Bvpmz8xZ1B3i0=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 3b53oGZrk5tXtSU6CyAt3h+hYXdnaoLTFM3Jnq/kzQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: May 18 23:01:28 2024 GMT Not After : May 25 23:01:28 2024 GMT Subject: CN=66493348-4851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ca:fc:be:d4:8d:70:df:6e:21:45:dd:24:c6: dc:a5:15:22:4e:ff:f2:bd:1c:f8:be:bc:e1:4c:43: 4e:d8:f2:c1:4a:ff:f9:a1:2a:a3:5b:36:a4:20:c0: 11:1e:e5:98:cd:4f:04:3b:20:d2:19:e3:19:aa:fd: aa:43:9c:17:6f:a3:a8:99:a0:f7:1e:ad:51:9a:ba: 08:12:54:15:61:00:aa:7c:1e:28:e3:3a:74:d7:61: 57:97:c4:3a:5b:a4:b6:2c:63:7f:b8:b4:85:dd:e9: 13:87:8a:5e:81:b2:b1:d7:07:68:83:83:92:95:e5: 2a:81:03:9a:bf:cc:41:26:26:58:e0:1c:54:70:6b: 86:f9:11:ea:5f:5f:1b:2b:95:e5:a8:24:63:70:4f: 05:e8:82:22:d3:28:4e:d2:e7:d6:dd:04:56:be:68: fd:6e:49:c0:c3:90:9e:ef:c8:eb:f5:33:46:ec:74: 1f:d8:b2:8a:42:30:79:01:c4:aa:6a:df:c2:cb:c2: c6:b8:c6:a8:92:6f:69:da:20:5d:40:2b:4f:a4:df: cf:2f:8a:46:22:b5:32:23:49:58:32:0e:c5:c4:f8: 56:85:03:f3:e6:9e:bb:99:a6:92:38:11:42:57:2a: c3:5d:d1:11:05:68:e2:34:a4:33:55:3a:0f:80:c7: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:98:3E:B8:D0:B0:E4:42:09:30:4A:2A:2B:A4:F4:94:E0:B4:29:0B X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:ec:f5:e9:af:3e:af:93:f0:a7:9f:af:57:f2:b4:c7:80:ae: 98:7d:bb:dc:cc:a5:5b:5f:a9:a3:ec:69:f8:aa:4b:82:88:a1: 32:33:cb:36:f9:ed:14:6a:68:de:8e:c6:66:cd:e7:90:40:72: 34:79:ce:02:ea:56:b1:4a:8a:f0:7d:05:66:9e:54:88:9b:92: 03:e2:9a:69:12:31:6a:09:7f:88:5e:a6:01:ca:29:cd:25:0c: 93:9a:44:f7:03:85:61:54:50:81:ba:67:85:84:9d:6a:41:16: 1a:0e:1b:60:15:77:fd:bd:2c:0a:18:55:c0:77:64:04:7d:d8: 93:11:e7:3d:4d:af:88:dd:c9:bf:e9:67:08:25:12:93:d8:b3: 1d:cc:ea:80:8e:f3:81:60:92:5d:44:6f:29:f2:1a:8b:1e:26: bd:d4:7a:e6:7f:2a:07:1f:2e:4b:97:62:d9:e8:16:68:8f:53: 30:31:1d:fa:61:ad:a8:62:31:57:4c:2f:8b:29:05:ae:31:07: 1c:67:85:5d:31:30:65:7f:a0:aa:9e:5b:f4:96:22:a9:99:01: 9c:53:ac:ca:bf:e0:a0:5f:98:cc:bc:89:6f:86:1d:c9:db:f6: 33:c5:e1:a2:66:17:b0:fe:84:f6:9f:ea:b1:93:98:26:0e:e1: bf:18:bb:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjQwNTE4MjMwMTI4WhcNMjQwNTI1MjMwMTI4WjAYMRYwFAYD VQQDEw02NjQ5MzM0OC00ODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sr8vtSNcN9uIUXdJMbcpRUiTv/yvRz4vrzhTENO2PLBSv/5oSqjWzakIMAR HuWYzU8EOyDSGeMZqv2qQ5wXb6OomaD3Hq1RmroIElQVYQCqfB4o4zp012FXl8Q6 W6S2LGN/uLSF3ekTh4pegbKx1wdog4OSleUqgQOav8xBJiZY4BxUcGuG+RHqX18b K5XlqCRjcE8F6IIi0yhO0ufW3QRWvmj9bknAw5Ce78jr9TNG7HQf2LKKQjB5AcSq at/Cy8LGuMaokm9p2iBdQCtPpN/PL4pGIrUyI0lYMg7FxPhWhQPz5p67maaSOBFC VyrDXdERBWjiNKQzVToPgMeQUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeYPrjQ sORCCTBKKiuk9JTgtCkLMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDd7PXprz6vk/Cnn69X8rTHgK6YfbvczKVbX6mj7Gn4qkuCiKEyM8s2 +e0UamjejsZmzeeQQHI0ec4C6laxSorwfQVmnlSIm5ID4pppEjFqCX+IXqYByinN JQyTmkT3A4VhVFCBumeFhJ1qQRYaDhtgFXf9vSwKGFXAd2QEfdiTEec9Ta+I3cm/ 6WcIJRKT2LMdzOqAjvOBYJJdRG8p8hqLHia91HrmfyoHHy5Ll2LZ6BZoj1MwMR36 Ya2oYjFXTC+LKQWuMQccZ4VdMTBlf6Cqnlv0liKpmQGcU6zKv+CgX5jMvIlvhh3J 2/YzxeGiZhew/oT2n+qxk5gmDuG/GLtS -----END CERTIFICATE-----Generated at Sun May 19 00:30:12 2024 by rpki-client on console-ams.rpki-client.org