$ rpki-client -vvf rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft File: oxnfTQtEZSzooFXCNSUBGLSUBYU.mft (raw, json) Hash identifier: lSyhwLM3RGiNPg2caj5Bc+OGhkxVfIrelb02YdTAW7g= Subject key identifier: 51:06:C9:31:21:AD:8A:43:66:4E:0D:3B:49:CD:0B:58:33:F3:E3:EF Authority key identifier: A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 Certificate issuer: /CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft Manifest number: 06A0 Signing time: Sat 18 May 2024 23:17:42 +0000 Manifest this update: Sat 18 May 2024 23:17:42 +0000 Manifest next update: Sat 25 May 2024 23:17:42 +0000 Files and hashes: 1: oxnfTQtEZSzooFXCNSUBGLSUBYU.crl (hash: jwEv/pPeviRdULWtcqyWmd0T6w+rK4nIv+tsGdbFVzc=) 2: 29F6C42C1FD311EBA5D83A1EC4F9AE02.roa (hash: PQ9NQeFdUaem1pY4JLa9xvVBF10d7nB4VY0exGkqJTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Validity Not Before: May 18 23:17:42 2024 GMT Not After : May 25 23:17:42 2024 GMT Subject: CN=66493716-9bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0c:1d:bb:7f:99:3a:a5:7f:e5:48:f2:8a:36: c5:b6:86:6c:ca:b5:d8:fc:1d:35:de:38:e2:09:bf: 92:b8:21:2d:59:f4:62:36:ff:95:9c:c4:bb:a4:4e: 2c:4f:b7:32:e3:d2:6d:08:b9:00:0c:00:a5:17:bd: f0:bd:84:d5:0c:d0:35:2a:b2:af:d4:ac:16:e7:cd: 08:b5:d1:00:2e:47:d5:34:dd:33:5b:88:0a:85:08: f4:0c:b3:9a:af:74:fa:de:34:a0:53:ed:8f:ac:b5: 63:2b:e8:a0:24:6f:18:a3:bd:2e:b2:26:83:eb:f4: a8:94:93:f7:74:63:51:35:41:76:dd:7d:13:d3:d5: d7:43:7c:1c:90:a9:99:5e:65:7f:cf:75:99:ac:c0: f7:56:d4:eb:d7:ef:86:e9:6d:e5:ef:e7:a4:23:fe: cb:8b:70:d9:b3:cc:8b:11:11:e8:8d:27:9b:89:82: c1:42:e3:74:d4:f9:1d:45:86:00:0c:b6:2f:c6:94: 9d:63:70:52:30:87:57:44:c5:98:33:16:80:e2:26: 51:9b:09:37:99:c1:78:89:75:50:48:16:7b:18:c6: ac:a0:b8:4a:a4:2c:f7:05:6d:e8:ab:4c:f0:bd:e0: b1:b9:53:be:21:eb:ac:6a:7e:24:67:62:5a:5b:2c: 82:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:06:C9:31:21:AD:8A:43:66:4E:0D:3B:49:CD:0B:58:33:F3:E3:EF X509v3 Authority Key Identifier: keyid:A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:55:35:f1:52:b4:13:65:a5:dc:5c:d3:35:af:ac:0e:fd:98: 66:35:99:3b:37:bb:0d:ec:fc:69:c2:08:d9:8f:14:b6:27:6b: 12:47:59:6b:6e:a5:9f:03:c8:c8:32:41:98:6c:de:68:c8:dd: bc:ee:4e:1b:7b:43:92:ce:27:0c:62:74:18:05:e3:8b:ac:4d: 14:fa:d3:2f:35:a4:5e:25:de:45:de:fa:e4:77:09:86:5c:75: 79:3b:61:b7:b5:3d:d0:a3:05:a5:f8:5a:5d:b9:f0:df:56:97: 48:48:85:3a:db:de:82:7b:eb:71:a2:50:2b:53:1f:b1:08:c9: 26:b1:80:44:d2:06:ad:04:b1:a8:4f:fc:6e:ec:6e:cc:41:a8: be:70:9c:c9:7a:fc:ed:fc:57:6a:02:13:36:21:21:a6:d5:8d: 4b:75:71:b1:95:1c:ca:c4:2e:bb:fd:b3:f3:c1:b9:02:b8:12: 13:07:c2:55:97:75:c4:fb:29:08:58:7c:44:73:ce:2d:80:e4: 6c:f0:b7:b3:b2:58:7e:78:b5:53:f3:71:d7:98:a4:51:34:d6: 5a:c6:db:04:5b:a3:b9:e8:e3:d8:32:b6:f1:93:99:11:3f:13: bc:9d:0d:99:96:8e:3e:36:86:c1:c8:ff:12:e5:e0:82:84:6f: 3b:08:3b:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4ODExMTAvBgNVBAUTKEEzMTlERjREMEI0NDY1MkNFOEEwNTVDMjM1MjUwMTE4 QjQ5NDA1ODUwHhcNMjQwNTE4MjMxNzQyWhcNMjQwNTI1MjMxNzQyWjAYMRYwFAYD VQQDEw02NjQ5MzcxNi05YmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Awdu3+ZOqV/5UjyijbFtoZsyrXY/B013jjiCb+SuCEtWfRiNv+VnMS7pE4s T7cy49JtCLkADAClF73wvYTVDNA1KrKv1KwW580ItdEALkfVNN0zW4gKhQj0DLOa r3T63jSgU+2PrLVjK+igJG8Yo70usiaD6/SolJP3dGNRNUF23X0T09XXQ3wckKmZ XmV/z3WZrMD3VtTr1++G6W3l7+ekI/7Li3DZs8yLERHojSebiYLBQuN01PkdRYYA DLYvxpSdY3BSMIdXRMWYMxaA4iZRmwk3mcF4iXVQSBZ7GMasoLhKpCz3BW3oq0zw veCxuVO+Ieusan4kZ2JaWyyCaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEGyTEh rYpDZk4NO0nNC1gz8+PvMB8GA1UdIwQYMBaAFKMZ300LRGUs6KBVwjUlARi0lAWF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTg4MS8xRTY0MkVFNDFG RDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpTem9vRlhDTlNVQkdMU1VC WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL294bmZUUXRFWlN6b29GWENOU1VCR0xTVUJZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTg4MS8xRTY0MkVFNDFGRDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpT em9vRlhDTlNVQkdMU1VCWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRVTXxUrQTZaXcXNM1r6wO/ZhmNZk7N7sN7PxpwgjZjxS2J2sSR1lr bqWfA8jIMkGYbN5oyN287k4be0OSzicMYnQYBeOLrE0U+tMvNaReJd5F3vrkdwmG XHV5O2G3tT3QowWl+FpdufDfVpdISIU6296Ce+txolArUx+xCMkmsYBE0gatBLGo T/xu7G7MQai+cJzJevzt/FdqAhM2ISGm1Y1LdXGxlRzKxC67/bPzwbkCuBITB8JV l3XE+ykIWHxEc84tgORs8Lezslh+eLVT83HXmKRRNNZaxtsEW6O56OPYMrbxk5kR PxO8nQ2Zlo4+NobByP8S5eCChG87CDta -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org