$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: AVl2XmNj9LEaBotZA7VyLqdFAhdz0Ypl/3q2GCQ8MrY= Subject key identifier: 44:E7:61:6E:94:B2:02:A9:2B:89:B3:3A:D3:C4:EC:6E:03:2E:61:AE Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 084E Signing time: Sat 18 May 2024 21:40:33 +0000 Manifest this update: Sat 18 May 2024 21:40:33 +0000 Manifest next update: Sat 25 May 2024 21:40:33 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: 9SloyCkR9zd9KIlhihNaXRzV7Lcxmg0oRX8jXk4xtOw=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: itCLnBcL2Gte2voVtQcQvcDsZmsmQBg0colGRKDZXYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: May 18 21:40:33 2024 GMT Not After : May 25 21:40:33 2024 GMT Subject: CN=66492051-84d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c6:bc:20:71:12:2b:b9:8a:22:35:7b:f8:23: 1c:0e:63:d3:5e:13:87:59:ab:58:a9:f9:36:db:20: 5e:e0:a0:cb:7e:59:8d:60:fb:0b:6e:72:60:dd:59: 7f:f1:c1:7b:18:4c:7f:4a:0d:57:5b:19:3c:70:83: 66:30:df:2a:d7:dd:6a:1b:43:e5:ba:04:1f:40:b0: 46:27:ed:3a:84:73:de:a1:eb:8b:8b:4d:1f:06:7d: 32:fe:f9:23:45:c5:40:ce:72:56:18:cd:65:7b:53: 49:2c:92:48:1c:d6:8d:42:b1:a8:dd:d0:7f:ef:8e: e1:20:1e:a5:ed:77:9e:1f:e9:39:75:81:e8:51:e6: 1a:a2:b7:f0:3c:a1:f0:92:92:53:e8:5e:b1:cb:58: a3:7c:c4:af:e0:7c:09:14:75:af:c0:50:16:be:27: 3e:ee:36:92:95:02:74:ea:35:7d:96:99:01:f3:0f: fa:7d:e6:aa:c6:ba:6f:33:83:ff:e1:48:50:18:d5: 12:85:11:17:ec:7d:25:7d:d9:19:89:dd:a6:53:be: 40:39:81:f9:69:af:04:91:4c:30:be:74:c6:db:79: 25:89:be:a1:89:dc:55:5e:1f:cb:68:22:9e:0f:ca: de:45:1a:3f:b5:6d:4b:6b:1a:58:82:94:71:84:3f: b4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E7:61:6E:94:B2:02:A9:2B:89:B3:3A:D3:C4:EC:6E:03:2E:61:AE X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:e0:2d:ab:53:44:49:f0:20:17:52:ec:f7:e6:b2:d0:78:d8: 76:10:54:42:2f:77:02:17:9d:1e:32:38:30:3f:ac:7e:10:4b: 0c:97:7f:bd:e1:54:40:46:47:1d:f7:80:85:24:b6:9f:a6:18: 2a:d4:8f:2d:86:82:eb:9b:ae:74:11:3c:2b:f7:44:74:4f:50: 1a:66:97:42:f2:53:71:c1:7f:d0:7a:23:5c:88:5f:54:c4:20: 99:30:cd:c5:31:cf:ce:17:05:18:69:57:7b:8a:84:13:90:52: 30:54:94:53:b2:ad:d9:a1:8f:a2:02:c7:df:51:f4:7a:b1:c8: ef:6d:48:96:5c:da:1e:33:48:54:0f:2e:df:35:f5:1d:d6:02: 57:78:c6:ed:4e:84:59:12:87:7b:3e:24:98:1e:99:14:01:24: ee:47:11:8c:89:31:78:d7:7f:8b:44:eb:c0:02:a9:72:f4:c6: 89:d8:94:b8:54:5a:ef:56:ef:5d:a2:1b:2a:8f:54:0b:1e:0e: 53:2d:6e:3a:7c:23:65:8c:5c:65:c0:75:f5:4c:03:e9:cb:04: 9b:86:ec:fd:0c:a2:5a:1d:25:9d:0a:37:f9:5c:db:e6:29:30: 59:95:72:98:6c:06:9f:96:78:a1:fe:51:d4:70:72:e3:bf:2f: 9a:5f:bb:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjQwNTE4MjE0MDMzWhcNMjQwNTI1MjE0MDMzWjAYMRYwFAYD VQQDEw02NjQ5MjA1MS04NGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58a8IHESK7mKIjV7+CMcDmPTXhOHWatYqfk22yBe4KDLflmNYPsLbnJg3Vl/ 8cF7GEx/Sg1XWxk8cINmMN8q191qG0PlugQfQLBGJ+06hHPeoeuLi00fBn0y/vkj RcVAznJWGM1le1NJLJJIHNaNQrGo3dB/747hIB6l7XeeH+k5dYHoUeYaorfwPKHw kpJT6F6xy1ijfMSv4HwJFHWvwFAWvic+7jaSlQJ06jV9lpkB8w/6feaqxrpvM4P/ 4UhQGNUShREX7H0lfdkZid2mU75AOYH5aa8EkUwwvnTG23klib6hidxVXh/LaCKe D8reRRo/tW1LaxpYgpRxhD+0tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETnYW6U sgKpK4mzOtPE7G4DLmGuMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDV4C2rU0RJ8CAXUuz35rLQeNh2EFRCL3cCF50eMjgwP6x+EEsMl3+9 4VRARkcd94CFJLafphgq1I8thoLrm650ETwr90R0T1AaZpdC8lNxwX/QeiNciF9U xCCZMM3FMc/OFwUYaVd7ioQTkFIwVJRTsq3ZoY+iAsffUfR6scjvbUiWXNoeM0hU Dy7fNfUd1gJXeMbtToRZEod7PiSYHpkUASTuRxGMiTF413+LROvAAqly9MaJ2JS4 VFrvVu9dohsqj1QLHg5TLW46fCNljFxlwHX1TAPpywSbhuz9DKJaHSWdCjf5XNvm KTBZlXKYbAaflnih/lHUcHLjvy+aX7uS -----END CERTIFICATE-----Generated at Sat May 18 22:27:53 2024 by rpki-client on console-ams.rpki-client.org