$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: +f4AS2dMhV6kWziSFl/nT8raDw1pAt3ZKqe9uiMp/K4= Subject key identifier: 52:32:44:76:B4:15:98:3F:5C:1B:0A:F7:39:6B:05:10:31:6B:93:BB Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 76 Signing time: Sun 19 May 2024 07:50:50 +0000 Manifest this update: Sun 19 May 2024 07:50:50 +0000 Manifest next update: Sun 26 May 2024 07:50:50 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: 3WGUc8BeVtYoFTa3TcI6uNc5HEw/cDLvH5lRxNRMu/w=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: nZ1yHEPeiG19plzrBwBsmWUzv4md0N8DTeYNsXYdWYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: May 19 07:50:50 2024 GMT Not After : May 26 07:50:50 2024 GMT Subject: CN=6649af5a-5fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a3:89:3d:a0:fd:b6:99:a6:8e:fd:fd:d3:6b: 4b:c7:b5:76:29:88:22:c0:7a:12:a9:17:fa:33:de: ba:55:e7:d2:6d:08:20:c8:9d:32:05:88:38:e4:88: aa:35:a4:5c:62:b4:6e:62:93:02:33:e9:2a:04:5b: 37:db:0d:fd:fa:f0:82:ac:01:dd:a2:f1:31:77:e6: d6:e7:f3:4f:c8:be:ae:2a:fe:ae:a8:22:cb:4a:cd: 99:e4:1e:f4:18:d0:3e:b8:06:c5:2d:28:9c:6b:c0: cb:c0:1f:17:ab:98:2a:d3:d6:74:ca:29:df:e2:fa: 3b:70:74:eb:44:ff:b3:31:be:ab:84:96:79:2a:a2: e6:3a:65:5d:d3:02:b8:b6:58:d5:07:fc:31:58:7a: b1:86:cd:fb:61:06:e6:3e:e2:90:f4:61:66:66:ac: c6:53:7b:5c:38:e9:f1:e9:4a:04:9e:fb:52:46:72: f6:e5:22:85:be:68:4e:89:c3:c7:b7:21:db:65:92: b7:9d:b5:13:06:9d:e9:5e:85:0f:c0:3e:f5:27:30: c8:1d:69:43:14:74:ae:fd:86:a0:03:1b:1b:dd:74: 29:0d:95:87:dd:6f:2b:5c:48:3d:12:a6:d2:04:9a: 2b:63:21:24:9a:bb:f7:0d:13:16:30:7a:24:11:af: fa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:32:44:76:B4:15:98:3F:5C:1B:0A:F7:39:6B:05:10:31:6B:93:BB X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:de:07:6a:73:95:75:73:2d:72:e5:31:76:51:4f:97:35:8e: b8:d2:42:fd:b8:86:4f:6f:41:ff:2c:9e:26:5a:22:f8:b3:13: 49:20:2c:6b:d1:48:67:4b:ae:bc:27:46:74:c2:e7:54:31:9c: 14:b5:d3:2a:b2:56:5b:16:8c:26:87:f8:8f:cc:bb:09:c2:c8: c0:11:db:ec:19:d8:cd:1a:6f:78:e9:8d:7d:08:66:82:fb:3a: d1:f7:31:f1:19:12:4d:7b:e7:96:6c:6e:97:50:54:73:45:13: 2f:a4:fd:22:07:bd:96:1e:da:dc:09:65:ba:8c:2e:c3:a4:59: 06:50:73:e5:85:bd:b1:4e:52:3c:77:5b:00:1d:49:9d:9f:dd: 77:c3:31:37:b7:4c:0b:1e:7a:b5:98:0f:87:8d:ca:de:ff:68: 07:8b:6a:48:3b:dd:a1:0f:a3:14:5d:1c:bc:82:5b:2c:4e:8a: 2c:72:ef:95:79:ae:74:5e:76:6a:a3:bc:74:38:99:d1:53:d3: 69:c4:8e:04:13:d9:f1:24:47:46:77:52:b8:13:0b:2d:21:96: 5a:0e:b5:d6:b0:7a:f1:49:20:94:65:d5:63:08:07:14:e3:db: 71:a5:17:85:62:a2:9c:75:1e:56:d0:37:ac:43:a7:1f:4f:1f: 34:db:c6:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjQwNTE5MDc1MDUwWhcNMjQwNTI2MDc1MDUwWjAYMRYwFAYD VQQDEw02NjQ5YWY1YS01ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6OJPaD9tpmmjv3902tLx7V2KYgiwHoSqRf6M966VefSbQggyJ0yBYg45Iiq NaRcYrRuYpMCM+kqBFs32w39+vCCrAHdovExd+bW5/NPyL6uKv6uqCLLSs2Z5B70 GNA+uAbFLSica8DLwB8Xq5gq09Z0yinf4vo7cHTrRP+zMb6rhJZ5KqLmOmVd0wK4 tljVB/wxWHqxhs37YQbmPuKQ9GFmZqzGU3tcOOnx6UoEnvtSRnL25SKFvmhOicPH tyHbZZK3nbUTBp3pXoUPwD71JzDIHWlDFHSu/YagAxsb3XQpDZWH3W8rXEg9EqbS BJorYyEkmrv3DRMWMHokEa/6uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIyRHa0 FZg/XBsK9zlrBRAxa5O7MB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV3gdqc5V1cy1y5TF2UU+XNY640kL9uIZPb0H/LJ4mWiL4sxNJICxr 0UhnS668J0Z0wudUMZwUtdMqslZbFowmh/iPzLsJwsjAEdvsGdjNGm946Y19CGaC +zrR9zHxGRJNe+eWbG6XUFRzRRMvpP0iB72WHtrcCWW6jC7DpFkGUHPlhb2xTlI8 d1sAHUmdn913wzE3t0wLHnq1mA+Hjcre/2gHi2pIO92hD6MUXRy8glssTooscu+V ea50XnZqo7x0OJnRU9NpxI4EE9nxJEdGd1K4EwstIZZaDrXWsHrxSSCUZdVjCAcU 49txpReFYqKcdR5W0DesQ6cfTx8028bT -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org