$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: ekmhK3qFvNloYqM+6RTyjgVF362pb+wv856tKVdv8f0= Subject key identifier: 68:AE:30:7F:4B:C6:B2:7E:50:35:2D:B1:9B:05:4E:97:FC:AD:B5:91 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0B7A Signing time: Sat 18 May 2024 19:24:47 +0000 Manifest this update: Sat 18 May 2024 19:24:46 +0000 Manifest next update: Sat 25 May 2024 19:24:46 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: piWcgW26T5JCl07Y19ZhbS4vndKFdYHxYekKWhjX+jU=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: mKNonm5uTR/hVQD+wLdZOhPyWF7YiBfkjSGmeQPAvhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: May 18 19:24:46 2024 GMT Not After : May 25 19:24:46 2024 GMT Subject: CN=6649007f-6f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1b:6b:78:91:c9:15:f7:61:0b:65:26:f7:e6: 67:7f:da:5c:22:7e:2d:a3:16:cf:62:39:55:34:58: 74:83:51:6c:d7:0b:98:a8:a9:b3:35:83:14:a7:78: 51:07:94:88:e3:a5:3f:41:bf:b2:22:fa:e5:2e:af: 64:16:ea:90:11:d7:a6:d6:ce:a2:6f:53:1f:b9:00: cb:02:82:f5:38:e0:1e:dc:98:98:8b:b0:60:42:0c: ea:89:38:7f:8c:c4:9b:ee:0c:c5:c4:2d:ad:54:61: 45:11:b0:7e:5e:60:1e:92:af:e2:e8:8f:b8:d9:16: e3:74:4e:2a:19:0f:21:d7:e9:ec:40:2c:e8:da:f8: c7:46:f6:f1:3b:50:25:e3:66:6b:b7:5e:68:db:a2: d2:eb:d7:79:12:c1:42:dd:a5:94:f1:3a:61:2d:09: 84:e1:f5:1f:20:29:41:99:70:17:09:f0:31:bc:a4: 22:b7:cc:a4:59:b0:f8:96:c8:4f:1f:ff:5f:c5:41: 2b:74:c3:b6:e3:c5:ac:d9:75:b2:8d:20:ef:84:f7: 4f:67:ed:f2:2a:fb:fe:da:b4:e9:e7:41:4e:a3:3e: 09:7e:60:62:d4:f1:a7:39:46:fb:9f:3d:54:7a:6b: cf:4e:2f:42:69:00:b8:f4:66:a1:11:3a:c6:5f:36: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AE:30:7F:4B:C6:B2:7E:50:35:2D:B1:9B:05:4E:97:FC:AD:B5:91 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:a8:d7:ce:10:cc:25:3f:02:ae:02:ae:a2:a7:b4:e3:8d:b2: 8b:49:15:42:e0:fe:57:09:81:19:7d:fe:86:23:60:b7:c5:22: db:b4:61:2c:4d:15:dc:b7:d7:4f:ab:0f:9f:28:59:e5:3b:22: b9:21:63:07:f7:cf:60:00:48:d6:cd:1f:93:0f:86:e8:bc:74: 03:20:f8:c4:e4:57:e7:2d:73:e0:f5:0c:81:91:bb:a8:4f:eb: b7:da:ee:18:48:d9:3f:9f:16:e3:79:a7:79:10:e1:ab:84:7c: ad:c0:29:46:9a:2d:96:c3:9e:5d:13:70:25:27:2d:dc:ec:f0: 6d:78:e3:16:27:3b:a1:37:dc:95:83:7d:3b:81:2b:d2:97:db: ed:7f:d0:11:3e:f0:be:21:8a:14:6e:1d:c1:33:97:d8:5f:06: a5:3a:01:1a:14:22:dd:e3:64:b8:9a:28:06:60:81:aa:c6:58: 5d:b7:d0:cb:b4:35:e6:8b:7e:84:55:8e:d3:cb:a0:40:3c:7b: 53:a5:50:39:3f:30:30:2b:51:82:0a:ef:b9:2a:41:c2:23:f4: 24:dd:65:86:67:53:77:13:34:33:be:9f:76:80:fb:8d:05:8b: b0:c1:e9:73:e7:74:78:11:73:8c:a0:53:80:9d:05:cb:b6:de: 09:f5:25:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjQwNTE4MTkyNDQ2WhcNMjQwNTI1MTkyNDQ2WjAYMRYwFAYD VQQDEw02NjQ5MDA3Zi02ZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBtreJHJFfdhC2Um9+Znf9pcIn4toxbPYjlVNFh0g1Fs1wuYqKmzNYMUp3hR B5SI46U/Qb+yIvrlLq9kFuqQEdem1s6ib1MfuQDLAoL1OOAe3JiYi7BgQgzqiTh/ jMSb7gzFxC2tVGFFEbB+XmAekq/i6I+42RbjdE4qGQ8h1+nsQCzo2vjHRvbxO1Al 42Zrt15o26LS69d5EsFC3aWU8TphLQmE4fUfIClBmXAXCfAxvKQit8ykWbD4lshP H/9fxUErdMO248Ws2XWyjSDvhPdPZ+3yKvv+2rTp50FOoz4JfmBi1PGnOUb7nz1U emvPTi9CaQC49GahETrGXzaJSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiuMH9L xrJ+UDUtsZsFTpf8rbWRMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjqNfOEMwlPwKuAq6ip7TjjbKLSRVC4P5XCYEZff6GI2C3xSLbtGEs TRXct9dPqw+fKFnlOyK5IWMH989gAEjWzR+TD4bovHQDIPjE5FfnLXPg9QyBkbuo T+u32u4YSNk/nxbjead5EOGrhHytwClGmi2Ww55dE3AlJy3c7PBteOMWJzuhN9yV g307gSvSl9vtf9ARPvC+IYoUbh3BM5fYXwalOgEaFCLd42S4migGYIGqxlhdt9DL tDXmi36EVY7Ty6BAPHtTpVA5PzAwK1GCCu+5KkHCI/Qk3WWGZ1N3EzQzvp92gPuN BYuwwelz53R4EXOMoFOAnQXLtt4J9SUO -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org