$ rpki-client -vvf rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft File: OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft (raw, json) Hash identifier: ROcrryLtj/XwL+WbTTb1+4+WAyJvusNPg1ucZniz3x4= Subject key identifier: 8E:5C:6C:4B:E7:1B:D7:7F:19:6F:2A:C5:3F:A5:97:D9:4A:61:B9:C0 Authority key identifier: 39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 Certificate issuer: /CN=A91613AB/serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft Manifest number: 011E Signing time: Sun 19 May 2024 05:21:06 +0000 Manifest this update: Sun 19 May 2024 05:21:05 +0000 Manifest next update: Sun 26 May 2024 05:21:05 +0000 Files and hashes: 1: OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl (hash: iDnpq7FjeSoK0Te1qC+Y2INsolznOQZli4UEkW0IREo=) 2: A50FD050DA7911EDB0D3866BC4F9AE02.roa (hash: UIaiumWPe9jUL45AtctOwNh6JmpIHSNMvBEiVQiJmyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91613AB/serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Validity Not Before: May 19 05:21:05 2024 GMT Not After : May 26 05:21:05 2024 GMT Subject: CN=66498c41-73ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:74:8d:34:66:db:e0:d6:d8:ca:c5:ee:35:6f: 78:eb:dd:d8:6d:97:2e:19:55:31:f9:57:2e:37:fb: 94:61:a5:c6:5b:de:94:58:49:ab:94:67:e8:a7:69: 28:9a:55:a3:b8:d5:e7:a1:e0:2f:c9:c6:2a:24:dd: f0:bc:35:9c:1c:a6:e3:a6:e8:05:4a:4c:c8:c3:87: 24:3f:ad:fb:ac:89:c9:28:7d:3f:37:7e:ca:7f:1c: b4:87:da:86:13:fd:04:a6:9f:3b:74:fa:7e:4b:1a: f2:a8:30:ca:a2:22:c5:2a:92:97:f1:c4:3a:16:dc: a9:43:cb:94:53:d3:60:9d:0a:cd:b9:3c:c1:19:8e: 56:98:30:9e:b5:33:37:5c:90:6e:6b:60:8a:dd:c2: 03:fb:79:bc:d5:cb:64:78:e9:f1:2a:cd:96:78:6a: 78:6a:45:fc:23:be:db:6d:2c:71:5e:fa:59:e6:d9: 2e:ae:cb:1e:3d:c3:61:64:60:42:cc:b5:ed:f4:28: 75:6c:67:6f:ab:c9:10:f2:36:73:2a:21:16:15:a5: fd:40:8c:cc:4f:fd:e2:f6:62:3d:f6:7e:40:14:88: b8:a7:f6:ad:d3:92:d3:9b:60:bd:e5:2b:8b:16:fb: af:c4:32:94:fd:9b:22:62:a1:c0:68:c0:b3:0b:0c: 89:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5C:6C:4B:E7:1B:D7:7F:19:6F:2A:C5:3F:A5:97:D9:4A:61:B9:C0 X509v3 Authority Key Identifier: keyid:39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:34:3a:2a:6e:73:4e:6e:bf:63:31:8a:80:c4:55:7b:ab:9c: 01:df:06:e2:b7:93:c4:f6:b9:e9:ac:fe:f4:a1:a1:33:49:a3: 9e:ff:82:11:49:77:27:9d:8d:29:92:d7:b9:07:77:96:36:f3: 17:7f:4a:b5:1b:7c:b1:ff:7a:6e:a0:38:8d:6b:01:bf:b5:a0: de:d9:dc:5d:e6:96:20:ff:82:2b:0f:6c:9e:b1:51:ab:cc:38: 4b:f4:2f:9a:53:8f:d2:a1:72:85:58:16:29:59:b7:b6:50:e6: ec:aa:e3:50:46:e0:72:f1:1f:35:b1:ea:01:b2:f2:8d:ff:31: d0:92:db:3a:53:a1:b2:16:f9:9e:a5:ae:69:6a:3a:89:32:19: 97:89:a5:5e:63:d6:93:21:b7:4c:c1:be:29:73:16:67:a5:fa: 47:c7:8d:ee:24:4a:bc:7d:dc:d1:d3:f9:b7:da:d8:14:ef:cf: e5:ef:a4:3a:85:8b:30:bc:3d:cf:ff:05:72:7a:6e:a8:5f:54: 6d:05:2b:29:3c:3d:82:cf:f2:00:6b:e0:72:33:c6:90:ec:d0: 12:93:e6:77:4c:1f:e9:0d:05:fe:f9:62:cb:9b:40:1a:73:bf: 71:4d:d0:78:6f:d9:7e:ba:21:e3:ce:29:5b:0c:a3:01:91:a2: 5b:97:af:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEzQUIxMTAvBgNVBAUTKDM5MDFBRjRBOTNGRUZBQUVCODc5Q0M5RjU5OTRFNEU3 RjAxQUY4MzgwHhcNMjQwNTE5MDUyMTA1WhcNMjQwNTI2MDUyMTA1WjAYMRYwFAYD VQQDEw02NjQ5OGM0MS03M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXSNNGbb4NbYysXuNW94693YbZcuGVUx+VcuN/uUYaXGW96UWEmrlGfop2ko mlWjuNXnoeAvycYqJN3wvDWcHKbjpugFSkzIw4ckP637rInJKH0/N37Kfxy0h9qG E/0Epp87dPp+SxryqDDKoiLFKpKX8cQ6FtypQ8uUU9NgnQrNuTzBGY5WmDCetTM3 XJBua2CK3cID+3m81ctkeOnxKs2WeGp4akX8I77bbSxxXvpZ5tkurssePcNhZGBC zLXt9Ch1bGdvq8kQ8jZzKiEWFaX9QIzMT/3i9mI99n5AFIi4p/at05LTm2C95SuL FvuvxDKU/ZsiYqHAaMCzCwyJ3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5cbEvn G9d/GW8qxT+ll9lKYbnAMB8GA1UdIwQYMBaAFDkBr0qT/vquuHnMn1mU5OfwGvg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTNBQi85Q0Y3RUNEQTZG OEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1xNjRlY3lmV1pUazVfQWEt RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09RR3ZTcFAtLXE2NGVjeWZXWlRrNV9BYS1EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTNBQi85Q0Y3RUNEQTZGOEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1x NjRlY3lmV1pUazVfQWEtRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKNDoqbnNObr9jMYqAxFV7q5wB3wbit5PE9rnprP70oaEzSaOe/4IR SXcnnY0pkte5B3eWNvMXf0q1G3yx/3puoDiNawG/taDe2dxd5pYg/4IrD2yesVGr zDhL9C+aU4/SoXKFWBYpWbe2UObsquNQRuBy8R81seoBsvKN/zHQkts6U6GyFvme pa5pajqJMhmXiaVeY9aTIbdMwb4pcxZnpfpHx43uJEq8fdzR0/m32tgU78/l76Q6 hYswvD3P/wVyem6oX1RtBSspPD2Cz/IAa+ByM8aQ7NASk+Z3TB/pDQX++WLLm0Aa c79xTdB4b9l+uiHjzilbDKMBkaJbl69h -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org