$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: XXbB8hUYME5j5JyIcwJsxd3pqTPQB8WuYTB0F1Yh6uM= Subject key identifier: DC:41:89:F5:63:8B:1C:86:08:65:CA:C8:89:8F:06:76:AC:97:5D:CB Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 074D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 0747 Signing time: Sat 18 May 2024 22:24:30 +0000 Manifest this update: Sat 18 May 2024 22:24:29 +0000 Manifest next update: Sat 25 May 2024 22:24:29 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: 8B4/r+EEcEl3dA4edUOyC0TPUw5k/8tU6mImK2Qo6wc=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: rKz6S4ig+3Nn3Uq5Htmq9rz0thwBeC0p821+eve0GW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1869 (0x74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: May 18 22:24:29 2024 GMT Not After : May 25 22:24:29 2024 GMT Subject: CN=66492a9d-748d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:67:da:20:0b:8e:80:9f:68:a6:41:40:c9: c8:07:3b:bd:58:78:6b:3f:4d:cf:a2:3f:6e:63:e2: c4:4f:4d:5a:c9:c8:e9:bc:b5:75:a8:31:50:78:1a: c9:4b:6c:12:b6:45:f4:bd:53:2f:ce:d6:e9:31:7e: 31:79:ae:c1:0f:db:cc:2c:f4:ae:f6:9e:22:5c:e0: c4:68:ea:2f:63:d8:82:63:72:57:16:26:84:c8:4c: 6e:2a:56:86:a0:a7:f9:82:d9:db:6d:52:5c:90:a8: 8b:ba:c5:60:8b:02:3c:45:59:b2:95:13:ec:e3:e5: 86:81:5b:0a:69:c4:83:91:6a:f7:85:e4:5f:84:87: c3:1f:d5:68:36:da:12:00:0d:6c:7d:9d:4d:ce:6f: cb:70:cf:a2:5e:20:cd:96:46:85:86:0f:2f:b2:99: 0f:f5:d4:a7:52:e2:08:76:b7:58:1a:4e:07:cb:fd: b5:78:6d:5f:51:41:76:ba:3c:31:d4:96:b8:ba:3e: 3c:3c:3c:e3:ff:82:39:33:b2:ab:a0:32:cd:06:a5: f0:f0:5e:16:af:24:bc:37:0f:34:11:bd:c4:83:cc: b0:d0:03:77:77:de:a5:7c:78:02:ab:b8:59:73:4c: eb:e0:b4:63:48:ee:81:a9:43:68:c9:a3:c6:45:30: c7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:41:89:F5:63:8B:1C:86:08:65:CA:C8:89:8F:06:76:AC:97:5D:CB X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:e2:32:d3:42:19:59:0d:21:d6:36:d0:4f:f3:ae:ee:67:82: 21:f9:73:65:7f:da:f9:ed:c0:6e:fb:56:c5:22:a7:93:4e:06: 64:04:6d:f9:c4:1d:f0:20:9a:0e:43:69:2d:1f:41:c5:11:06: 14:b6:58:ae:44:e0:9a:44:29:7d:d8:c4:8b:aa:84:97:91:49: 1b:96:ea:a2:16:12:45:20:d9:35:2f:90:77:45:4e:bf:e0:8c: 85:82:76:fc:be:77:46:8c:f4:af:87:31:ab:bc:f5:1c:44:62: 73:cd:e1:63:57:0a:fb:63:9b:dd:ab:c9:4e:c1:85:76:57:6d: 64:81:03:65:33:2a:31:cb:ab:a0:70:a2:30:b9:82:90:d9:90: c7:49:c4:43:9c:23:5d:a4:15:a5:c9:ae:9f:13:28:52:57:c4: 77:48:b8:b4:47:73:61:3d:d6:f0:c1:9c:8a:78:fb:a3:5f:13: 3f:55:69:1a:55:5c:f6:ad:9f:ce:b3:d4:02:69:dd:fa:50:9a: b8:0a:a3:22:5c:72:64:ca:e8:84:01:5e:5f:4f:f4:e9:74:90: 40:be:82:4a:da:65:01:9e:62:87:7e:45:70:13:1f:12:08:cd: a1:e3:36:a8:8d:80:92:d0:e7:98:5e:58:77:a4:fe:68:8a:0a: db:5c:0a:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjQwNTE4MjIyNDI5WhcNMjQwNTI1MjIyNDI5WjAYMRYwFAYD VQQDEw02NjQ5MmE5ZC03NDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv1n2iALjoCfaKZBQMnIBzu9WHhrP03Poj9uY+LET01aycjpvLV1qDFQeBrJ S2wStkX0vVMvztbpMX4xea7BD9vMLPSu9p4iXODEaOovY9iCY3JXFiaEyExuKlaG oKf5gtnbbVJckKiLusVgiwI8RVmylRPs4+WGgVsKacSDkWr3heRfhIfDH9VoNtoS AA1sfZ1Nzm/LcM+iXiDNlkaFhg8vspkP9dSnUuIIdrdYGk4Hy/21eG1fUUF2ujwx 1Ja4uj48PDzj/4I5M7KroDLNBqXw8F4WryS8Nw80Eb3Eg8yw0AN3d96lfHgCq7hZ c0zr4LRjSO6BqUNoyaPGRTDHJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxBifVj ixyGCGXKyImPBnasl13LMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu4jLTQhlZDSHWNtBP867uZ4Ih+XNlf9r57cBu+1bFIqeTTgZkBG35 xB3wIJoOQ2ktH0HFEQYUtliuROCaRCl92MSLqoSXkUkbluqiFhJFINk1L5B3RU6/ 4IyFgnb8vndGjPSvhzGrvPUcRGJzzeFjVwr7Y5vdq8lOwYV2V21kgQNlMyoxy6ug cKIwuYKQ2ZDHScRDnCNdpBWlya6fEyhSV8R3SLi0R3NhPdbwwZyKePujXxM/VWka VVz2rZ/Os9QCad36UJq4CqMiXHJkyuiEAV5fT/TpdJBAvoJK2mUBnmKHfkVwEx8S CM2h4zaojYCS0OeYXlh3pP5oigrbXArc -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org