$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft File: oo2gvpAdmDpDPYM1idFnv0hvZPw.mft (raw, json) Hash identifier: PxP0ou7y+GxrxESsVZlYYfU2ufg3GM7LFE2q6QLXsdE= Subject key identifier: 45:E5:C3:6A:E0:DE:7E:15:4D:DD:CF:9E:77:25:4E:DF:8D:BB:38:F8 Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft Manifest number: AF Signing time: Sun 19 May 2024 06:34:24 +0000 Manifest this update: Sun 19 May 2024 06:34:23 +0000 Manifest next update: Sun 26 May 2024 06:34:23 +0000 Files and hashes: 1: oo2gvpAdmDpDPYM1idFnv0hvZPw.crl (hash: RcnpEV6/0KETnb5Pe1PLv5/phI6BsGevz5qEz+8++Pc=) 2: DB27568209DA11EEBA18A082C4F9AE02.roa (hash: xkDRTRjpJ44DAm2KH+GLlFrHbbkGeE4AN4OlC0H4zYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Validity Not Before: May 19 06:34:23 2024 GMT Not After : May 26 06:34:23 2024 GMT Subject: CN=66499d6f-4414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:19:2c:aa:b5:fd:12:1a:5c:9f:f4:8b:53:ab: e7:0f:9c:e2:f0:36:f5:2d:ae:47:d3:3b:8c:d5:92: 62:84:a1:cc:35:df:86:f6:ad:58:16:ca:b9:d2:2d: c5:29:ea:c6:ce:b7:19:de:8b:2a:cf:90:3a:76:e0: ad:8b:44:dc:d4:64:59:05:67:7d:1f:0e:b5:d0:fb: ef:e5:91:7b:63:51:62:b2:ad:b3:ac:36:00:db:f9: 0d:4d:38:dd:06:33:4d:6a:54:86:bd:30:cc:8e:49: 18:d2:a9:dd:0e:10:48:35:94:7d:26:1c:2c:15:88: 5d:21:ae:7e:55:6b:f0:0b:09:ca:8f:2d:05:b5:75: 46:eb:88:38:e5:82:26:a7:03:5b:70:ee:44:eb:f6: f2:1b:7c:40:91:27:93:58:0a:dd:dc:7b:85:d1:b1: 53:63:40:8a:5d:9e:f4:dd:a5:00:19:da:e1:07:cf: cc:e3:7f:61:f5:3b:5c:21:b4:05:b3:df:8a:83:5d: f7:8b:63:d5:5d:53:de:f8:d8:27:b8:25:e7:14:7f: b6:ae:b0:b8:5e:48:e5:9b:cf:b5:7e:86:8c:07:29: 4b:cf:f9:72:6d:11:5f:7b:41:fd:0b:c2:2f:76:c8: 82:a4:c6:0c:90:53:cd:58:f9:80:54:64:4c:96:0e: 43:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E5:C3:6A:E0:DE:7E:15:4D:DD:CF:9E:77:25:4E:DF:8D:BB:38:F8 X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8c:7d:be:49:23:87:4a:25:4c:5c:fe:2c:9c:e3:cb:18:f7: c3:24:2d:ff:b8:61:f7:5d:23:fb:a7:08:cc:4d:a1:84:3e:ff: 7e:c8:05:10:2f:3b:3a:31:6a:b5:bd:90:55:62:cf:19:c6:be: 36:ae:c0:26:13:7c:4b:dc:c6:f6:99:9e:f2:5d:ae:59:44:c5: 7b:ce:4c:fd:2b:d6:93:c2:f8:2b:ca:9f:64:1f:e4:00:fe:1e: b9:ba:37:be:ee:29:90:fd:e4:a4:31:25:81:aa:bc:f8:e7:2b: d6:36:49:2e:d2:fe:54:e0:7d:30:e1:5a:85:23:4d:3b:8f:f1: 4e:c7:8b:13:a9:fb:3f:ed:f0:80:2b:ff:39:69:a0:a0:e2:d1: f5:4f:8e:8e:30:0b:b0:8c:71:7f:ad:43:50:01:bc:91:27:b6: 06:a5:6c:c1:3a:b7:91:c5:71:ab:69:de:40:d5:60:dc:21:26: fb:67:5d:1a:22:38:d5:a1:1f:d5:21:0b:10:6f:61:fa:be:d8: e6:2f:ad:6c:52:b8:3b:56:19:73:32:e8:20:7f:60:e8:f6:02: e4:cb:f6:ac:ae:39:1c:cf:ed:fd:67:90:df:5b:11:66:10:16: 39:b3:06:ae:cd:04:e1:a3:f9:1f:cf:01:40:2d:99:4c:65:3c: a0:3d:ea:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyMEUxMTAvBgNVBAUTKEEyOERBMEJFOTAxRDk4M0E0MzNEODMzNTg5RDE2N0JG NDg2RjY0RkMwHhcNMjQwNTE5MDYzNDIzWhcNMjQwNTI2MDYzNDIzWjAYMRYwFAYD VQQDEw02NjQ5OWQ2Zi00NDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhksqrX9Ehpcn/SLU6vnD5zi8Db1La5H0zuM1ZJihKHMNd+G9q1YFsq50i3F KerGzrcZ3osqz5A6duCti0Tc1GRZBWd9Hw610Pvv5ZF7Y1Fisq2zrDYA2/kNTTjd BjNNalSGvTDMjkkY0qndDhBINZR9JhwsFYhdIa5+VWvwCwnKjy0FtXVG64g45YIm pwNbcO5E6/byG3xAkSeTWArd3HuF0bFTY0CKXZ703aUAGdrhB8/M439h9TtcIbQF s9+Kg133i2PVXVPe+NgnuCXnFH+2rrC4Xkjlm8+1foaMBylLz/lybRFfe0H9C8Iv dsiCpMYMkFPNWPmAVGRMlg5D1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXlw2rg 3n4VTd3PnnclTt+Nuzj4MB8GA1UdIwQYMBaAFKKNoL6QHZg6Qz2DNYnRZ79Ib2T8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzIwRS81RTUxRDQ1QzA5 RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1EcERQWU0xaWRGbnYwaHZa UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzIwRS81RTUxRDQ1QzA5RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1E cERQWU0xaWRGbnYwaHZaUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtjH2+SSOHSiVMXP4snOPLGPfDJC3/uGH3XSP7pwjMTaGEPv9+yAUQ Lzs6MWq1vZBVYs8Zxr42rsAmE3xL3Mb2mZ7yXa5ZRMV7zkz9K9aTwvgryp9kH+QA /h65uje+7imQ/eSkMSWBqrz45yvWNkku0v5U4H0w4VqFI007j/FOx4sTqfs/7fCA K/85aaCg4tH1T46OMAuwjHF/rUNQAbyRJ7YGpWzBOreRxXGrad5A1WDcISb7Z10a IjjVoR/VIQsQb2H6vtjmL61sUrg7VhlzMuggf2Do9gLky/asrjkcz+39Z5DfWxFm EBY5swauzQTho/kfzwFALZlMZTygPepa -----END CERTIFICATE-----Generated at Sun May 19 08:24:59 2024 by rpki-client on console-ams.rpki-client.org