$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: mppXoWSF+SDEKv9n7NcgTbtaA/0VGO+HtofaWO1JQI4= Subject key identifier: 8F:D7:6C:53:BA:61:86:79:B2:DA:B8:79:92:A8:F5:5D:AC:D3:7D:C0 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 167F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 166B Signing time: Sat 18 May 2024 17:09:26 +0000 Manifest this update: Sat 18 May 2024 17:09:26 +0000 Manifest next update: Sat 25 May 2024 17:09:26 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: oiKWzmmmddGcc61Hkbp6bRiYn1D+7hQFD5++0ouCvlQ=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5759 (0x167f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: May 18 17:09:26 2024 GMT Not After : May 25 17:09:26 2024 GMT Subject: CN=6648e0c6-e72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:46:b3:b4:8a:d3:7a:f0:f7:16:6d:db:f8: a5:1b:92:2f:9a:c2:25:37:fb:2b:cf:66:f2:4f:e0: ce:e2:47:c2:d8:19:f9:30:45:00:33:00:d4:aa:12: fa:a0:c5:b3:7e:c2:24:2e:3d:85:85:62:10:84:99: 29:f3:2c:31:df:85:75:a8:c8:c8:fc:3b:69:3d:a1: 82:b0:64:71:54:07:04:4e:65:69:76:44:d8:d9:b9: 7d:0e:95:5a:6a:ab:43:c1:fe:27:dd:97:e4:34:84: 79:b1:33:98:df:0e:72:44:90:97:33:03:7b:7d:e1: 15:86:a1:1e:4c:d3:7c:4c:9b:e0:4b:46:a0:ea:e4: c4:66:61:b4:21:ce:3e:44:18:39:e6:a2:79:19:e0: 4a:dc:28:c3:a1:72:59:0f:29:8f:08:ee:45:08:4e: 88:ef:f1:45:d2:29:ea:5d:4e:41:44:58:5a:8a:c1: 18:f7:cf:d2:82:0c:fd:8f:b3:d4:45:fc:63:87:b9: d2:f3:13:fb:67:86:8c:54:0f:75:64:c9:82:bb:fd: e9:ab:03:4e:10:32:52:a3:06:13:80:f3:33:a2:1d: 72:c9:37:59:d0:12:11:4f:e6:2a:bf:5b:04:41:6f: af:1f:52:34:5f:43:b9:2d:b5:d1:e8:e3:af:5e:41: aa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D7:6C:53:BA:61:86:79:B2:DA:B8:79:92:A8:F5:5D:AC:D3:7D:C0 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:12:87:2b:00:b8:c2:3a:33:6f:d0:d1:a6:7a:21:33:4c:11: 8a:d1:ca:fb:ab:9a:b2:4e:d3:3f:8f:fd:ba:49:b5:db:62:e8: 69:88:34:73:dc:31:84:c7:07:97:94:4d:20:53:5c:96:25:48: c9:14:50:5c:d1:39:81:c2:38:e2:47:4d:68:3e:29:c1:b0:6c: 66:19:28:38:34:ad:e8:33:3c:50:73:66:46:47:62:4a:42:8e: e4:fe:e5:1c:34:0c:12:18:a7:cc:fe:2f:35:0f:0f:c4:c1:85: fc:5b:38:ee:bb:e4:0f:24:7b:27:e2:93:e3:10:6f:23:5f:0f: 1a:47:d7:21:29:a0:dc:6f:18:ff:19:15:9a:3c:01:19:5e:be: f7:cc:f7:55:5d:a7:42:cd:7b:46:62:dd:8a:13:98:33:b6:1e: 5d:db:0f:72:d0:06:a5:62:20:a0:e4:02:b6:e5:ed:c0:ef:1a: cc:99:c7:95:7c:ac:8e:d8:06:f5:3e:e0:ac:23:c6:95:30:b5: f6:8f:46:af:ec:bf:37:0b:f6:d2:5b:3f:7b:fc:cc:30:d2:e7: 41:11:cf:0a:b3:33:07:d6:fd:35:a1:92:b9:61:7f:8f:50:9f: 8a:3c:49:e0:00:3a:b3:d3:8c:42:26:7b:6d:8d:7b:f9:94:fc: ce:cc:f4:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjQwNTE4MTcwOTI2WhcNMjQwNTI1MTcwOTI2WjAYMRYwFAYD VQQDEw02NjQ4ZTBjNi1lNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gdGs7SK03rw9xZt2/ilG5IvmsIlN/srz2byT+DO4kfC2Bn5MEUAMwDUqhL6 oMWzfsIkLj2FhWIQhJkp8ywx34V1qMjI/DtpPaGCsGRxVAcETmVpdkTY2bl9DpVa aqtDwf4n3ZfkNIR5sTOY3w5yRJCXMwN7feEVhqEeTNN8TJvgS0ag6uTEZmG0Ic4+ RBg55qJ5GeBK3CjDoXJZDymPCO5FCE6I7/FF0inqXU5BRFhaisEY98/Sggz9j7PU Rfxjh7nS8xP7Z4aMVA91ZMmCu/3pqwNOEDJSowYTgPMzoh1yyTdZ0BIRT+Yqv1sE QW+vH1I0X0O5LbXR6OOvXkGqhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/XbFO6 YYZ5stq4eZKo9V2s033AMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzEocrALjCOjNv0NGmeiEzTBGK0cr7q5qyTtM/j/26SbXbYuhpiDRz 3DGExweXlE0gU1yWJUjJFFBc0TmBwjjiR01oPinBsGxmGSg4NK3oMzxQc2ZGR2JK Qo7k/uUcNAwSGKfM/i81Dw/EwYX8Wzjuu+QPJHsn4pPjEG8jXw8aR9chKaDcbxj/ GRWaPAEZXr73zPdVXadCzXtGYt2KE5gzth5d2w9y0AalYiCg5AK25e3A7xrMmceV fKyO2Ab1PuCsI8aVMLX2j0av7L83C/bSWz97/Mww0udBEc8KszMH1v01oZK5YX+P UJ+KPEngADqz04xCJnttjXv5lPzOzPQk -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org