$ rpki-client -vvf rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft File: oPv941FZcJK2h-zGQOyF3CnyAXM.mft (raw, json) Hash identifier: SUvc/0IZn6jqvnGYbNCX6RzV997UhFQL68FOrxNmRdI= Subject key identifier: 38:54:3C:E1:6A:2D:81:ED:8F:B7:C9:A6:AD:0B:47:A5:DD:58:C3:88 Authority key identifier: A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 Certificate issuer: /CN=A9140B3F/serialNumber=A0FBFDE351597092B687ECC640EC85DC29F20173 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft Manifest number: DC Signing time: Fri 31 May 2024 06:49:49 +0000 Manifest this update: Fri 31 May 2024 06:49:49 +0000 Manifest next update: Fri 07 Jun 2024 06:49:49 +0000 Files and hashes: 1: oPv941FZcJK2h-zGQOyF3CnyAXM.crl (hash: pEio7P+7pIgtKg1rZ8ePXMpRK/qPsaMeMdbla9UaWiI=) 2: 1F63D776D29011EDA849876CC4F9AE02.roa (hash: HjC0ScFxWcDkhswRwTmon4vWr3GEQBEZANReqcj45FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140B3F/serialNumber=A0FBFDE351597092B687ECC640EC85DC29F20173 Validity Not Before: May 31 06:49:49 2024 GMT Not After : Jun 7 06:49:49 2024 GMT Subject: CN=6659730d-1311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0b:df:69:37:1b:ca:b4:75:ee:f0:65:e9:86: 3e:02:4a:65:2b:e7:bd:27:2c:1b:a5:78:4a:81:3b: 49:ad:25:bf:54:8a:9e:bd:59:4e:d7:b1:62:f5:1b: d9:05:85:ec:30:9f:c4:81:3c:58:87:3b:ac:fc:4c: f8:b3:4a:62:06:2c:28:2f:28:98:c2:4f:de:de:1a: fe:0a:e8:5c:7c:ac:67:2a:76:b4:12:b5:1e:70:0e: dd:b9:e9:5b:e1:ed:6e:35:fa:71:f3:1d:9f:e5:a1: 4a:1c:ad:ed:04:c5:54:d0:ba:ea:18:c3:19:e6:ce: 42:4f:a9:9b:50:f0:4d:7f:e4:03:79:8e:49:72:81: 3f:e2:a7:18:39:f6:93:e0:00:d3:ec:39:a2:1b:e9: fd:c7:45:74:cd:fb:08:9d:a2:0e:1d:f7:f6:36:d3: a5:8a:5a:8a:e2:ac:76:c6:fb:db:dc:5c:41:8e:a8: 08:68:50:92:d5:e2:6a:6c:ae:27:88:cb:61:b5:71: bf:f4:e3:70:9f:15:5b:aa:ca:49:f0:29:22:bb:7d: 2c:56:fb:3d:57:bf:8f:59:62:c0:c4:dd:72:d2:34: b5:1b:ad:e1:4d:42:e5:15:bd:18:58:22:19:4a:43: b7:46:8d:c6:3f:2f:36:bf:17:46:81:6c:37:f0:f1: c7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:54:3C:E1:6A:2D:81:ED:8F:B7:C9:A6:AD:0B:47:A5:DD:58:C3:88 X509v3 Authority Key Identifier: keyid:A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c8:10:fc:f8:85:f9:0b:15:48:fe:7a:22:37:58:94:59:f2: 96:a3:eb:37:c5:c8:2a:e7:7b:bb:26:97:8b:75:23:e7:bc:c5: 9b:94:33:c2:25:f7:26:81:68:e7:98:27:3a:60:9a:ec:d9:41: 10:08:c7:0c:35:20:ed:f5:35:36:4b:26:81:29:d8:6c:9c:59: 31:05:23:93:2b:45:97:e3:27:84:07:55:fc:c2:3a:16:ed:4f: 86:49:5f:99:4a:8b:55:d2:91:6c:a0:67:ec:b1:5b:99:75:2e: 48:c1:84:68:e6:07:82:35:54:87:91:9c:77:3c:97:48:9f:80: 6d:fa:e0:36:0f:e9:f2:66:0f:a1:83:b1:ee:3c:dd:7f:c8:8c: 97:d1:f4:1b:3d:f7:d1:d6:ad:8f:a4:77:67:03:f8:6a:16:dc: 35:ab:33:2e:09:f9:6d:33:1b:0f:25:02:c8:e1:30:b5:2d:08: d7:47:05:67:5e:1b:fb:46:d8:84:8b:b7:bf:90:3c:f1:9d:23: 22:1f:e0:f3:28:42:e7:59:61:65:f5:9a:c1:c7:56:63:55:05: 7e:45:0b:94:b3:b3:5b:0b:ad:01:10:28:8e:be:8b:f1:62:4c: f2:a9:b8:8a:6f:49:fb:56:05:b2:9a:4b:aa:ce:60:7c:ae:19: ea:bb:4b:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCM0YxMTAvBgNVBAUTKEEwRkJGREUzNTE1OTcwOTJCNjg3RUNDNjQwRUM4NURD MjlGMjAxNzMwHhcNMjQwNTMxMDY0OTQ5WhcNMjQwNjA3MDY0OTQ5WjAYMRYwFAYD VQQDEw02NjU5NzMwZC0xMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQvfaTcbyrR17vBl6YY+AkplK+e9JywbpXhKgTtJrSW/VIqevVlO17Fi9RvZ BYXsMJ/EgTxYhzus/Ez4s0piBiwoLyiYwk/e3hr+CuhcfKxnKna0ErUecA7duelb 4e1uNfpx8x2f5aFKHK3tBMVU0LrqGMMZ5s5CT6mbUPBNf+QDeY5JcoE/4qcYOfaT 4ADT7DmiG+n9x0V0zfsInaIOHff2NtOlilqK4qx2xvvb3FxBjqgIaFCS1eJqbK4n iMthtXG/9ONwnxVbqspJ8Ckiu30sVvs9V7+PWWLAxN1y0jS1G63hTULlFb0YWCIZ SkO3Ro3GPy82vxdGgWw38PHHYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhUPOFq LYHtj7fJpq0LR6XdWMOIMB8GA1UdIwQYMBaAFKD7/eNRWXCStofsxkDshdwp8gFz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEIzRi9GOEQ3MkNEQ0Qy OEMxMUVEQkFFOUVFNkFDNEY5QUUwMi9vUHY5NDFGWmNKSzJoLXpHUU95RjNDbnlB WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qdjk0MUZaY0pLMmgtekdRT3lGM0NueUFYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEIzRi9GOEQ3MkNEQ0QyOEMxMUVEQkFFOUVFNkFDNEY5QUUwMi9vUHY5NDFGWmNK SzJoLXpHUU95RjNDbnlBWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAayBD8+IX5CxVI/noiN1iUWfKWo+s3xcgq53u7JpeLdSPnvMWblDPC JfcmgWjnmCc6YJrs2UEQCMcMNSDt9TU2SyaBKdhsnFkxBSOTK0WX4yeEB1X8wjoW 7U+GSV+ZSotV0pFsoGfssVuZdS5IwYRo5geCNVSHkZx3PJdIn4Bt+uA2D+nyZg+h g7HuPN1/yIyX0fQbPffR1q2PpHdnA/hqFtw1qzMuCfltMxsPJQLI4TC1LQjXRwVn Xhv7RtiEi7e/kDzxnSMiH+DzKELnWWFl9ZrBx1ZjVQV+RQuUs7NbC60BECiOvovx YkzyqbiKb0n7VgWymkuqzmB8rhnqu0sa -----END CERTIFICATE-----Generated at Fri May 31 08:38:29 2024 by rpki-client on console-fra.rpki-client.org