$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: DAHmAsADLbCU816g9QafhTwN8JWfWmp8SEKeUkc+4oE= Subject key identifier: F8:E4:9B:AC:98:1B:52:55:E2:BC:31:28:5A:E5:69:F4:8F:CF:3E:02 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0BBF Signing time: Sat 18 May 2024 19:14:59 +0000 Manifest this update: Sat 18 May 2024 19:14:59 +0000 Manifest next update: Sat 25 May 2024 19:14:59 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: GOmzX3bN54YUjhIcEpBKUQZ0W96rjowsmzyB1pR+4Ns=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: iKfci7tsa+jhLLRTbBFfO22Soy787xfFX8zNv1laW9A=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: clx30qLYvbm68jKy4mtHXR8lQ9RAC1U+UxoMWQrquX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: May 18 19:14:59 2024 GMT Not After : May 25 19:14:59 2024 GMT Subject: CN=6648fe33-25e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5f:d0:cd:46:b4:35:db:d7:dd:ad:18:8b:73: c6:f0:90:4d:05:e0:fc:79:63:5b:fa:dc:7c:8a:5c: 3f:52:f4:25:64:af:e7:57:3b:88:2f:44:2a:1e:e5: 88:54:2a:d4:01:8e:7f:f4:99:d1:90:5d:7d:a0:97: e0:59:63:5d:1c:5d:b5:32:f9:ad:78:2a:4f:87:28: db:eb:7d:02:90:86:e0:27:5a:7d:f8:d0:4a:be:b3: 3e:42:fe:d6:4d:40:99:21:35:50:71:9d:35:3c:19: 58:fe:b7:08:4c:1a:31:9f:33:fe:a1:de:77:c8:0d: c0:70:18:b0:c4:b4:df:df:9b:33:e0:e1:16:ba:14: 66:90:1c:79:2e:01:09:b6:62:60:74:36:cb:ca:9e: 6d:e9:7a:95:0f:cb:36:e8:31:19:85:31:2b:de:0c: e1:d8:99:3a:ec:48:e9:c8:02:5a:b7:cb:fa:aa:9d: 13:37:dc:fa:74:1e:37:38:5f:d6:80:b0:cc:99:72: 2e:f1:6e:25:d5:dd:02:2f:ee:49:73:b2:fb:cd:fd: 6e:87:99:8b:14:55:f4:5c:8b:4e:e2:ad:6b:90:cf: 77:db:24:59:95:b0:ab:2e:f9:4d:c3:d0:22:ce:64: bf:c5:73:5e:87:76:57:81:16:1d:d2:0f:f3:ea:33: b6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E4:9B:AC:98:1B:52:55:E2:BC:31:28:5A:E5:69:F4:8F:CF:3E:02 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:fb:8a:f1:ba:85:a6:f6:c0:c0:09:ef:f8:5c:80:4d:93:1c: 67:75:3d:92:a3:dc:27:eb:33:0e:e6:3a:c1:61:10:f5:6d:70: a1:8a:f1:9a:82:f3:36:c1:4e:90:89:31:7a:18:ee:6b:bd:b7: f7:23:47:f5:69:de:e2:0a:c6:a9:b0:8c:cb:6f:8e:62:a2:de: c1:be:f9:af:1a:e9:1f:8a:c5:8f:a2:0d:b0:d2:a7:42:e9:db: 26:c7:b8:a3:73:42:ce:b9:51:f8:a1:18:ac:0c:bf:7d:3d:47: 8d:6b:54:07:5b:2e:d3:29:61:f6:7b:78:9c:75:f4:6a:ca:42: 79:76:5b:56:5f:24:3d:70:51:4b:cf:b7:3e:30:99:a7:09:e6: c2:9a:a1:fd:4f:b0:f7:0d:d8:be:21:97:15:2c:4f:a3:73:e5: 56:cc:39:8d:ee:09:ae:af:32:37:57:c7:29:9b:f8:fd:9b:8c: dc:3c:e1:20:a7:3a:0b:17:1a:ff:0f:f7:bf:20:36:58:7b:c8: 73:4b:6e:cd:93:d7:2c:cf:7a:1a:3a:13:c7:0e:1f:5c:31:13: 2c:c5:89:d1:c0:1e:bd:83:20:7b:9e:01:28:91:61:d0:69:a7: 0f:a1:38:f7:d0:2c:61:f6:4c:bf:7c:e9:42:72:cd:59:f5:7b: d2:7c:c5:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjQwNTE4MTkxNDU5WhcNMjQwNTI1MTkxNDU5WjAYMRYwFAYD VQQDEw02NjQ4ZmUzMy0yNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwl/QzUa0NdvX3a0Yi3PG8JBNBeD8eWNb+tx8ilw/UvQlZK/nVzuIL0QqHuWI VCrUAY5/9JnRkF19oJfgWWNdHF21MvmteCpPhyjb630CkIbgJ1p9+NBKvrM+Qv7W TUCZITVQcZ01PBlY/rcITBoxnzP+od53yA3AcBiwxLTf35sz4OEWuhRmkBx5LgEJ tmJgdDbLyp5t6XqVD8s26DEZhTEr3gzh2Jk67EjpyAJat8v6qp0TN9z6dB43OF/W gLDMmXIu8W4l1d0CL+5Jc7L7zf1uh5mLFFX0XItO4q1rkM932yRZlbCrLvlNw9Ai zmS/xXNeh3ZXgRYd0g/z6jO2JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjkm6yY G1JV4rwxKFrlafSPzz4CMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3+4rxuoWm9sDACe/4XIBNkxxndT2So9wn6zMO5jrBYRD1bXChivGa gvM2wU6QiTF6GO5rvbf3I0f1ad7iCsapsIzLb45iot7BvvmvGukfisWPog2w0qdC 6dsmx7ijc0LOuVH4oRisDL99PUeNa1QHWy7TKWH2e3icdfRqykJ5dltWXyQ9cFFL z7c+MJmnCebCmqH9T7D3Ddi+IZcVLE+jc+VWzDmN7gmurzI3V8cpm/j9m4zcPOEg pzoLFxr/D/e/IDZYe8hzS27Nk9csz3oaOhPHDh9cMRMsxYnRwB69gyB7ngEokWHQ aacPoTj30Cxh9ky/fOlCcs1Z9XvSfMWF -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org