$ rpki-client -vvf rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft File: 0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft (raw, json) Hash identifier: R3gncIQEzyarh3vfDMgV+BfyH2EzX9kfZ8NFLjxYQXo= Subject key identifier: CC:09:92:F9:F1:EA:F4:A8:60:84:A7:4A:61:A4:82:C6:AB:EF:B8:A9 Authority key identifier: D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 Certificate issuer: /CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Certificate serial: 0CB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft Manifest number: 0CAE Signing time: Sat 18 May 2024 18:48:51 +0000 Manifest this update: Sat 18 May 2024 18:48:50 +0000 Manifest next update: Sat 25 May 2024 18:48:50 +0000 Files and hashes: 1: 0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl (hash: RX0JJWratbl5p6E/oQg/tEre+4s821XPZnjyXzhFjJ8=) 2: 3F67E64E62BD11EE8F393D25C4F9AE02.roa (hash: WH82AuzkuaBUfX+CU/eyjfKymAYKdsJeRyZvDqGsz+w=) 3: DBDAFF6CC99611E9A41BCF75C4F9AE02.roa (hash: icYRbR5tc2wCnYjX5dQ4/TeG+uoe4Ost58AGatA/sHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Validity Not Before: May 18 18:48:50 2024 GMT Not After : May 25 18:48:50 2024 GMT Subject: CN=6648f813-0bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:10:03:49:24:99:03:8b:74:80:e5:06:12:b8: 99:60:99:ee:73:1d:da:18:f3:29:e1:93:86:18:00: f8:a3:a3:85:59:d3:e5:12:90:66:77:c5:a2:5e:5c: 24:27:a5:c2:55:f7:fc:a2:9a:3b:23:de:39:dc:d6: bc:2e:51:6e:b2:d8:de:bf:34:07:35:ce:aa:51:51: ba:23:f3:32:dc:ac:ff:f9:3b:d1:1e:36:8b:db:97: a4:30:58:25:9b:6e:90:52:85:df:a6:1e:27:cf:c5: ec:e5:a9:9b:d9:e3:e4:7f:bf:c1:7d:71:ff:29:7e: 15:1c:63:b9:44:84:11:20:31:11:ac:6e:55:92:4d: 0d:58:95:13:4e:2d:4e:c1:4c:ae:4f:0c:08:fc:53: 71:5c:f8:07:dd:b4:02:3c:6e:e4:7a:5d:b1:87:5d: e6:b1:6a:54:c4:7b:5e:06:e3:c5:e2:63:c8:16:10: 4d:c7:c3:36:61:43:41:68:58:96:ab:5a:c1:0e:ee: 55:a4:1c:d3:81:df:d5:a4:ec:cf:23:c0:69:63:d8: 93:d8:f6:60:d1:33:41:5c:83:b7:d0:6e:79:e2:dd: 82:2f:d0:a5:2e:77:9e:9d:5e:5e:38:d1:5e:6d:f7: c0:fe:72:6c:67:e8:53:96:e6:b4:5c:a1:a2:3a:b8: 9f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:09:92:F9:F1:EA:F4:A8:60:84:A7:4A:61:A4:82:C6:AB:EF:B8:A9 X509v3 Authority Key Identifier: keyid:D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:33:2c:c4:46:f0:fe:ca:1c:61:e1:a7:b3:9e:f8:ed:bf:33: 47:c0:a8:b8:9a:2f:3b:df:fd:a2:fc:fe:67:5e:1a:85:d0:ee: 1b:b2:2b:f3:e6:0d:a3:f5:f6:f3:50:60:a2:5a:1e:24:d6:fa: e3:0a:9e:a9:93:5b:8d:8f:1c:3b:65:18:19:74:ec:ce:17:3c: 76:c6:a5:3e:b4:47:c2:09:76:81:9f:3f:73:05:9a:27:95:62: 10:3d:3d:0a:04:ea:a7:bb:6c:be:86:ab:42:4b:66:4e:1e:11: f6:98:0d:a6:e6:fc:9d:5e:d4:26:55:9c:74:29:bd:11:8e:50: 29:bd:4a:fb:2d:a5:1e:ee:5d:9b:03:72:19:ab:4e:c6:82:0d: ba:8e:c5:39:28:b8:95:f6:10:45:95:4f:a6:66:0b:42:b7:cb: 1b:ad:6a:43:c6:02:b1:54:c6:48:7a:b3:41:d2:e8:e2:e4:3e: 20:7e:d8:34:6f:7e:b1:2d:0d:38:9a:d2:03:a3:52:dd:34:a1: 74:54:9f:58:92:78:46:85:ba:6b:c4:c4:5a:86:90:88:be:23: a5:65:54:89:59:46:b0:6f:7f:1a:f3:7c:27:e9:43:06:65:1b: 72:57:bb:b7:32:75:af:6e:a6:50:49:b1:a5:ad:5b:b1:c8:2d: 80:9d:4a:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxN0UxMTAvBgNVBAUTKEQyOEM1MkVEMDkwQzUzOUMxMEYyMjJERUVDRDlBNzND NDlBMTY4MDQwHhcNMjQwNTE4MTg0ODUwWhcNMjQwNTI1MTg0ODUwWjAYMRYwFAYD VQQDEw02NjQ4ZjgxMy0wYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxADSSSZA4t0gOUGEriZYJnucx3aGPMp4ZOGGAD4o6OFWdPlEpBmd8WiXlwk J6XCVff8opo7I9453Na8LlFustjevzQHNc6qUVG6I/My3Kz/+TvRHjaL25ekMFgl m26QUoXfph4nz8Xs5amb2ePkf7/BfXH/KX4VHGO5RIQRIDERrG5Vkk0NWJUTTi1O wUyuTwwI/FNxXPgH3bQCPG7kel2xh13msWpUxHteBuPF4mPIFhBNx8M2YUNBaFiW q1rBDu5VpBzTgd/VpOzPI8BpY9iT2PZg0TNBXIO30G554t2CL9ClLneenV5eONFe bffA/nJsZ+hTlua0XKGiOrif3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwJkvnx 6vSoYISnSmGkgsar77ipMB8GA1UdIwQYMBaAFNKMUu0JDFOcEPIi3uzZpzxJoWgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjE3RS9FMUFEQjc0NkM5 OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1d1E4aUxlN05tblBFbWhh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBveFM3UWtNVTV3UThpTGU3Tm1uUEVtaGFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjE3RS9FMUFEQjc0NkM5OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1 d1E4aUxlN05tblBFbWhhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOMyzERvD+yhxh4aeznvjtvzNHwKi4mi873/2i/P5nXhqF0O4bsivz 5g2j9fbzUGCiWh4k1vrjCp6pk1uNjxw7ZRgZdOzOFzx2xqU+tEfCCXaBnz9zBZon lWIQPT0KBOqnu2y+hqtCS2ZOHhH2mA2m5vydXtQmVZx0Kb0RjlApvUr7LaUe7l2b A3IZq07Ggg26jsU5KLiV9hBFlU+mZgtCt8sbrWpDxgKxVMZIerNB0uji5D4gftg0 b36xLQ04mtIDo1LdNKF0VJ9YknhGhbprxMRahpCIviOlZVSJWUawb38a83wn6UMG ZRtyV7u3MnWvbqZQSbGlrVuxyC2AnUrO -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org