$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: rDSoCYztxlwgun/21d+1Q5RHAZgHsLrf25HiS5Ov4ws= Subject key identifier: CD:74:C9:5E:58:DE:2E:93:6A:67:A1:50:3F:3C:9D:71:8C:36:68:29 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 09B1 Signing time: Sat 18 May 2024 20:50:39 +0000 Manifest this update: Sat 18 May 2024 20:50:38 +0000 Manifest next update: Sat 25 May 2024 20:50:38 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: 1k0+6I2dGlnpG9/CdCN+OjjtwWFBRCgXC1ok+Ok1LIw=) 2: 1AD373BAB85911EEAD35104FC4F9AE02.roa (hash: 4SlIaTwQG5C7Z3NVeZVgFQclH1vtAwFQo1VKovMtgy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: May 18 20:50:38 2024 GMT Not After : May 25 20:50:38 2024 GMT Subject: CN=6649149e-0bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6d:d2:7a:b7:66:b1:c4:c7:a5:0d:23:31:ea: fe:d4:d8:a7:1e:6e:bb:1e:68:13:86:90:0b:c1:e8: 66:b5:cf:34:10:14:ef:b0:ae:da:10:05:3b:90:40: 6c:83:dd:7e:9b:4a:79:38:1d:e9:16:22:54:63:a4: d3:17:08:48:4a:70:ec:22:a5:a3:4a:1a:68:59:d6: 6d:68:c3:72:6c:33:bc:0a:1d:a8:3d:4b:70:c4:88: 45:44:6c:3d:11:f0:74:2b:63:9c:b7:15:1b:27:03: 28:0f:69:7c:7c:53:af:96:6a:65:66:33:a3:40:5d: 80:f2:ef:21:be:74:a4:05:ba:00:00:10:ad:a2:b7: 12:8d:5b:29:8d:f5:ee:ae:8f:fc:c0:63:49:ca:79: 9f:88:7c:7d:27:57:d5:e3:69:88:ed:c8:1a:86:64: f3:b7:ae:01:67:f3:19:c4:a4:a6:5f:8b:ea:c5:3a: 3d:78:38:f7:09:a2:36:9d:02:e4:b5:ba:69:02:bc: f9:76:b5:da:b2:31:ff:f5:49:8e:10:06:16:aa:b0: b7:c8:4d:be:22:ed:c1:35:6e:6e:73:9c:1b:43:49: 28:f1:21:3b:ad:db:ca:4b:f2:8b:0c:6e:f2:97:4a: cd:43:60:b6:55:e0:02:aa:35:53:d6:c3:77:e2:e6: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:74:C9:5E:58:DE:2E:93:6A:67:A1:50:3F:3C:9D:71:8C:36:68:29 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:af:a2:3c:ab:bb:bb:46:ce:57:4d:60:3c:03:85:db:7b:8f: fa:8b:67:ba:7c:d2:7a:1c:14:65:6f:63:99:0e:dd:5e:80:99: 8c:7c:86:90:d0:4f:5f:9b:7f:9f:b2:e4:eb:94:5c:2d:1a:c9: 2e:26:80:05:7a:31:9c:55:7c:69:f1:7b:b6:bd:9a:5e:5c:17: f5:8d:5b:1d:a8:cf:16:19:aa:a9:9e:22:5a:9e:65:2a:17:47: 1b:1e:c2:e7:5f:3a:33:0e:08:78:2a:65:a7:67:39:25:a4:55: ed:93:3f:ea:a6:e7:2d:7b:6b:11:d4:7d:05:d5:38:0b:7b:a0: c4:c3:29:2f:65:20:17:ec:a3:69:5e:fc:89:40:3d:a3:39:86: 63:14:60:53:53:0b:f0:08:2c:df:cc:a0:48:da:71:5b:ef:18: 58:34:5a:cb:bc:7b:1a:1d:2f:48:8d:ff:21:70:bb:58:32:4e: 77:2d:83:0d:9f:66:3e:52:07:bc:aa:f6:99:cd:d5:92:09:0d: 04:36:c3:9a:45:9d:58:93:a8:bf:88:8c:37:d7:3d:a8:94:95: 81:04:c3:08:8c:36:53:dd:b5:b5:f8:3f:70:5f:cb:2b:45:4d: 83:e8:33:e4:cf:9d:e6:cf:d2:66:31:bf:fe:44:ee:2c:da:11: c9:7d:0f:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjQwNTE4MjA1MDM4WhcNMjQwNTI1MjA1MDM4WjAYMRYwFAYD VQQDEw02NjQ5MTQ5ZS0wYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp23SerdmscTHpQ0jMer+1NinHm67HmgThpALwehmtc80EBTvsK7aEAU7kEBs g91+m0p5OB3pFiJUY6TTFwhISnDsIqWjShpoWdZtaMNybDO8Ch2oPUtwxIhFRGw9 EfB0K2OctxUbJwMoD2l8fFOvlmplZjOjQF2A8u8hvnSkBboAABCtorcSjVspjfXu ro/8wGNJynmfiHx9J1fV42mI7cgahmTzt64BZ/MZxKSmX4vqxTo9eDj3CaI2nQLk tbppArz5drXasjH/9UmOEAYWqrC3yE2+Iu3BNW5uc5wbQ0ko8SE7rdvKS/KLDG7y l0rNQ2C2VeACqjVT1sN34uZ9MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM10yV5Y 3i6TamehUD88nXGMNmgpMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmr6I8q7u7Rs5XTWA8A4Xbe4/6i2e6fNJ6HBRlb2OZDt1egJmMfIaQ 0E9fm3+fsuTrlFwtGskuJoAFejGcVXxp8Xu2vZpeXBf1jVsdqM8WGaqpniJanmUq F0cbHsLnXzozDgh4KmWnZzklpFXtkz/qpucte2sR1H0F1TgLe6DEwykvZSAX7KNp XvyJQD2jOYZjFGBTUwvwCCzfzKBI2nFb7xhYNFrLvHsaHS9Ijf8hcLtYMk53LYMN n2Y+Uge8qvaZzdWSCQ0ENsOaRZ1Yk6i/iIw31z2olJWBBMMIjDZT3bW1+D9wX8sr RU2D6DPkz53mz9JmMb/+RO4s2hHJfQ+U -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org