$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: 82f4gu7LWrc5bEb4NHR9lknE0UTbGYzRgL/Dwm3ewUQ= Subject key identifier: C2:F5:E2:A0:00:CB:C8:3A:B3:8E:3D:F9:08:08:53:70:B4:D7:9E:D7 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 80 Signing time: Sun 19 May 2024 07:10:24 +0000 Manifest this update: Sun 19 May 2024 07:10:23 +0000 Manifest next update: Sun 26 May 2024 07:10:23 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: 4pHymktn7UyC1bLnMxDx8R4kewRTlkuiu31IWvlLsBA=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: UEP6ePzBERtQHgyGtP7PY4xc2h9fSUeeMx68So968PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: May 19 07:10:23 2024 GMT Not After : May 26 07:10:23 2024 GMT Subject: CN=6649a5e0-206b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:d0:34:70:0c:9d:b4:5c:ef:2f:cb:19:d0: 0f:8f:4d:69:11:21:30:85:12:d4:fa:74:15:a5:6e: fc:80:bc:03:19:56:a2:3e:6a:1a:d9:6b:7e:1e:50: 25:bc:64:d7:1e:b6:63:2b:90:c4:9e:40:b1:85:d2: aa:25:5e:e5:1d:9a:56:58:a6:4e:4d:ee:5a:bb:0f: d7:6d:02:d5:43:5b:14:21:fc:a3:64:a0:12:4d:7d: f6:f4:33:42:93:11:3b:16:2f:3c:c0:3e:3f:8e:3a: 1a:0e:94:7e:cf:38:85:d4:37:c8:e9:1b:18:b1:33: 4b:8f:4c:27:34:e3:53:f0:39:a5:43:58:11:be:eb: 41:5f:11:0a:4b:3a:9e:5e:c2:a7:14:63:7e:c6:b4: 5e:90:34:43:86:00:8f:8e:be:2d:4d:ca:20:04:cd: 46:c5:1e:58:0d:8e:08:10:88:e2:31:46:cb:91:10: 84:8c:b7:1e:96:be:40:2d:7a:c8:f8:be:3a:f3:fb: b3:66:f4:b0:9a:0c:77:6a:fb:ca:06:07:65:28:ca: d9:cb:c9:03:50:13:29:c7:39:57:bd:3f:f2:7b:a9: b3:c0:bd:dc:81:d8:70:96:e1:d5:26:26:dc:87:2f: 40:ac:23:ac:a7:9b:31:df:cf:43:8a:05:35:f2:3d: df:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F5:E2:A0:00:CB:C8:3A:B3:8E:3D:F9:08:08:53:70:B4:D7:9E:D7 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:fa:63:12:89:65:74:42:15:1b:70:5d:46:b7:3c:d1:18:5b: 63:05:4f:25:74:30:4e:cd:63:8a:f4:17:cf:ae:49:a2:2c:4f: 66:84:cc:5f:0b:f3:8a:8f:5b:f9:85:21:8f:9c:21:c7:d2:aa: f3:94:80:2a:82:d2:2c:ff:4b:ff:fc:cc:83:58:fb:52:b4:cc: d0:62:10:28:d7:68:f4:bd:6a:f2:7b:be:7f:8c:26:b9:c5:d9: 19:ca:1f:c7:a6:c3:70:e3:e4:b0:98:e3:9f:c2:7f:f9:14:d1: 9f:be:74:06:4b:0f:d8:f2:74:46:cb:73:a6:0e:b1:03:c5:e3: e6:3a:1b:cd:bc:66:13:58:2d:af:49:2b:aa:69:08:3a:bf:1c: 20:5e:23:f6:cd:14:e7:83:8a:62:8e:aa:15:76:4f:bc:20:1c: f7:96:a6:f3:61:08:f9:6d:6f:f4:ba:03:aa:b2:1d:d2:8b:81: e1:e3:6b:c7:08:86:4c:e2:85:5c:64:3a:cb:ca:6f:08:57:e0: 57:82:ec:96:64:42:02:41:6b:05:c3:8b:09:de:b3:0b:bf:03: 24:b2:e9:6c:b7:e2:1f:ec:e4:7c:83:3d:d5:9f:6a:3e:96:80: f4:f9:22:81:4c:af:2c:13:dc:3d:46:64:ec:f9:2e:b0:15:81: 08:14:69:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjQwNTE5MDcxMDIzWhcNMjQwNTI2MDcxMDIzWjAYMRYwFAYD VQQDEw02NjQ5YTVlMC0yMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs73QNHAMnbRc7y/LGdAPj01pESEwhRLU+nQVpW78gLwDGVaiPmoa2Wt+HlAl vGTXHrZjK5DEnkCxhdKqJV7lHZpWWKZOTe5auw/XbQLVQ1sUIfyjZKASTX329DNC kxE7Fi88wD4/jjoaDpR+zziF1DfI6RsYsTNLj0wnNONT8DmlQ1gRvutBXxEKSzqe XsKnFGN+xrRekDRDhgCPjr4tTcogBM1GxR5YDY4IEIjiMUbLkRCEjLcelr5ALXrI +L468/uzZvSwmgx3avvKBgdlKMrZy8kDUBMpxzlXvT/ye6mzwL3cgdhwluHVJibc hy9ArCOsp5sx389DigU18j3fZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFML14qAA y8g6s449+QgIU3C0157XMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK+mMSiWV0QhUbcF1GtzzRGFtjBU8ldDBOzWOK9BfPrkmiLE9mhMxf C/OKj1v5hSGPnCHH0qrzlIAqgtIs/0v//MyDWPtStMzQYhAo12j0vWrye75/jCa5 xdkZyh/HpsNw4+SwmOOfwn/5FNGfvnQGSw/Y8nRGy3OmDrEDxePmOhvNvGYTWC2v SSuqaQg6vxwgXiP2zRTng4pijqoVdk+8IBz3lqbzYQj5bW/0ugOqsh3Si4Hh42vH CIZM4oVcZDrLym8IV+BXguyWZEICQWsFw4sJ3rMLvwMksulst+If7OR8gz3Vn2o+ loD0+SKBTK8sE9w9RmTs+S6wFYEIFGly -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org