$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: izAdd4gyHj0m1amWvmyuNxAdpn+58T4TM1qS15AF0Vk= Subject key identifier: C0:FC:E6:F3:93:AE:D9:52:B1:65:9C:34:DC:B6:78:42:AF:44:8C:58 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 0903 Signing time: Sat 18 May 2024 21:18:47 +0000 Manifest this update: Sat 18 May 2024 21:18:47 +0000 Manifest next update: Sat 25 May 2024 21:18:47 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: 2qDaQjtlPPryNIzJ92pwSbM0MfKVfDCWhoThIWFwVMk=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: edRF5NmnUhALz+kYtW9yGNAWlG19b9huZPqLRyT0OOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: May 18 21:18:47 2024 GMT Not After : May 25 21:18:47 2024 GMT Subject: CN=66491b37-771b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a6:65:f2:b8:43:7d:d8:20:11:49:36:28:58: d0:3b:31:48:ca:83:39:88:06:b5:a4:db:f1:3c:0f: 3a:f2:fc:d9:38:7d:d5:82:d2:94:e1:28:23:cb:45: bc:f3:47:40:28:ab:3f:e1:ed:ad:72:5a:3f:a1:e9: f0:d5:c0:5e:d6:72:ed:95:38:be:cd:74:45:d2:a1: 01:60:7d:ff:5d:14:c5:c8:96:28:15:e7:c7:e8:d1: 64:a2:2a:6e:a3:60:9f:d1:80:de:c8:dd:95:83:03: b1:a8:0e:75:d9:80:47:07:11:42:33:e2:ef:a9:39: 43:ba:56:75:53:65:86:9c:df:d5:67:8e:9f:8e:60: 07:63:1d:3e:6f:ec:09:22:5c:09:4b:52:58:3e:c6: 76:11:09:3f:4d:3a:c9:29:09:ad:39:ce:7d:2e:e8: 1a:36:17:1c:c5:0a:6b:64:42:f2:54:5d:ad:80:5f: 1a:ee:14:d6:8b:e4:37:44:c6:2d:17:6d:6d:f1:40: 98:1d:76:f5:42:47:d2:ac:a3:6d:ab:d0:8d:f8:14: 99:98:3f:74:bf:1d:e2:73:65:01:57:79:52:28:37: 05:03:e5:9c:cf:f6:a2:6a:fd:c9:2a:37:79:7b:e8: 10:6a:c3:ae:f6:f1:22:d0:01:79:2f:d9:b9:94:e2: 33:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FC:E6:F3:93:AE:D9:52:B1:65:9C:34:DC:B6:78:42:AF:44:8C:58 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a8:ec:49:d5:3f:4d:06:e1:d1:36:59:30:ba:e8:72:1d:3f: a6:bb:f3:df:42:1b:a4:f0:5a:47:64:bb:7a:d4:2c:6f:90:8d: ae:e2:18:ec:35:89:fc:ce:65:67:d5:34:74:f9:71:df:30:b4: f1:f5:65:5a:c9:12:aa:cf:99:ec:c9:e0:cb:7d:f4:8b:31:6c: 03:29:2c:41:91:ec:0e:98:3b:0a:67:f3:20:f7:bf:2d:3c:6b: 4a:ba:d2:0e:21:9a:76:22:ef:8d:e7:c8:ec:33:e3:6b:2f:56: 24:f8:e1:3c:51:fd:b9:5d:49:93:c7:4f:63:e4:d4:99:ac:a1: a0:f4:db:fd:15:2c:44:82:3c:dd:37:09:bc:d9:fd:56:5b:36: 30:4a:2b:9b:57:44:06:f3:68:23:a8:86:64:de:94:25:2b:c8: cb:09:95:37:c6:02:b3:9b:82:1f:be:4f:cc:fb:4f:ca:47:95: 43:c3:1a:56:51:6b:60:8b:0f:2b:5a:1c:b6:52:0c:45:c2:c8: cf:b5:50:d1:ae:a5:c0:16:21:2a:df:ce:1c:7d:2d:fe:ca:45: 5f:2e:d5:24:19:db:55:db:a9:6c:5a:fb:cd:ed:a0:dc:df:b3: dc:9a:e3:13:73:e1:9b:c7:9e:f4:9c:bc:78:6d:0f:f9:82:a1: 38:8c:e7:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjQwNTE4MjExODQ3WhcNMjQwNTI1MjExODQ3WjAYMRYwFAYD VQQDEw02NjQ5MWIzNy03NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaZl8rhDfdggEUk2KFjQOzFIyoM5iAa1pNvxPA868vzZOH3VgtKU4Sgjy0W8 80dAKKs/4e2tclo/oenw1cBe1nLtlTi+zXRF0qEBYH3/XRTFyJYoFefH6NFkoipu o2Cf0YDeyN2VgwOxqA512YBHBxFCM+LvqTlDulZ1U2WGnN/VZ46fjmAHYx0+b+wJ IlwJS1JYPsZ2EQk/TTrJKQmtOc59LugaNhccxQprZELyVF2tgF8a7hTWi+Q3RMYt F21t8UCYHXb1QkfSrKNtq9CN+BSZmD90vx3ic2UBV3lSKDcFA+Wcz/aiav3JKjd5 e+gQasOu9vEi0AF5L9m5lOIzawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMD85vOT rtlSsWWcNNy2eEKvRIxYMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfqOxJ1T9NBuHRNlkwuuhyHT+mu/PfQhuk8FpHZLt61CxvkI2u4hjs NYn8zmVn1TR0+XHfMLTx9WVayRKqz5nsyeDLffSLMWwDKSxBkewOmDsKZ/Mg978t PGtKutIOIZp2Iu+N58jsM+NrL1Yk+OE8Uf25XUmTx09j5NSZrKGg9Nv9FSxEgjzd Nwm82f1WWzYwSiubV0QG82gjqIZk3pQlK8jLCZU3xgKzm4Ifvk/M+0/KR5VDwxpW UWtgiw8rWhy2UgxFwsjPtVDRrqXAFiEq384cfS3+ykVfLtUkGdtV26lsWvvN7aDc 37PcmuMTc+Gbx570nLx4bQ/5gqE4jOcs -----END CERTIFICATE-----Generated at Sat May 18 22:14:03 2024 by rpki-client on console-fra.rpki-client.org