$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: ZEBDzqLTapjwOF6uRLuNQ7FypC1yaAZpnufwt6O3OYQ= Subject key identifier: 1E:E4:7E:C3:C2:36:9C:EF:B0:11:58:B9:84:42:EA:BA:47:F4:53:14 Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0A25 Signing time: Sat 18 May 2024 20:33:44 +0000 Manifest this update: Sat 18 May 2024 20:33:43 +0000 Manifest next update: Sat 25 May 2024 20:33:43 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: Ejes4YPeRSLd+KSDkR1GIF5VFe/nEGbsv9ewzzG4vCE=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: cYqevdGEQNUI+tqiOOupeUJHH2ci29RPMSLOld+zvmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2603 (0xa2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: May 18 20:33:43 2024 GMT Not After : May 25 20:33:43 2024 GMT Subject: CN=664910a7-08a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:69:8d:40:b0:bf:a3:fe:e4:7b:f5:1f:87: 4f:20:f4:3c:f0:53:1f:dd:b5:44:88:3c:5b:79:dc: 89:b6:45:e5:28:b5:b9:b4:77:5d:43:c5:c7:cf:8b: 32:6c:72:f1:bd:5a:22:2b:bd:56:2d:c3:32:e3:f8: f7:f2:be:f5:70:f6:b1:cc:49:cf:bf:0b:23:af:4c: 4a:63:7c:f2:f4:33:2a:6a:7f:46:17:d9:e2:b9:c4: fb:20:85:68:d6:9d:e2:57:f0:51:fd:63:dd:17:4d: fd:0f:5d:e5:7b:63:cd:2f:e7:67:2e:44:c6:f2:4c: 9b:fd:37:b1:5b:32:9e:de:17:2a:66:f3:1b:ef:7a: 07:b6:34:7f:ee:7a:f6:ac:54:d7:9c:ec:3b:bd:3e: cb:e7:f0:2f:db:31:56:00:6b:05:ed:77:46:c9:10: 65:59:51:4f:a2:15:7a:c9:ee:dd:78:a0:4c:a7:e6: a0:4b:31:c1:76:e7:a9:aa:4c:da:27:2c:7c:32:74: 1f:c8:0f:8b:2b:6f:02:cf:a6:54:88:f7:78:3c:71: 55:95:00:78:1f:d5:d1:c4:32:b7:f4:a5:46:a1:cd: 36:cf:6a:ca:e1:7f:00:65:3b:b9:be:8d:95:27:12: 83:38:b7:26:74:36:1c:f7:10:c8:8b:f6:13:0b:4b: 54:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E4:7E:C3:C2:36:9C:EF:B0:11:58:B9:84:42:EA:BA:47:F4:53:14 X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ea:c7:69:a4:7c:f5:11:8a:21:13:cb:ef:65:a0:bc:c9:c5: b7:91:88:81:63:2d:4b:ee:9d:4e:30:94:a0:65:e4:d8:b7:4a: 0e:d5:b2:a6:e7:8b:b5:54:fc:5c:26:4f:b2:40:bf:b7:58:1f: 8a:11:69:db:d3:9f:60:2c:0e:38:b6:95:1f:3d:7f:91:8e:68: 19:0a:9b:50:b4:b3:39:ed:2b:62:54:54:ca:e5:2b:4c:42:00: cf:32:0c:65:6e:f8:ef:a7:8f:b9:72:97:c8:21:27:9c:80:3b: 13:5d:29:04:6b:77:93:2b:96:2e:08:c8:d6:dc:91:0e:6c:6a: 7c:66:c1:92:04:1b:9b:1c:39:98:69:99:4c:3b:da:3f:6c:61: 64:1e:d7:42:ec:ad:e3:71:24:07:04:64:77:ca:c4:23:d0:37: 1a:58:e1:4d:81:03:cd:84:01:f7:8e:f7:b1:5d:73:42:82:34: b9:5e:86:f4:85:2a:10:35:f9:34:dd:18:20:d7:8b:8f:7a:ef: d2:75:4d:02:71:f0:ca:c7:32:ed:5a:a5:5c:9b:51:ec:27:33: 9f:15:ff:32:82:62:80:02:a8:7c:17:2b:f6:8b:ee:42:82:d1: b5:67:76:bd:2d:e6:eb:50:ba:81:13:10:4e:88:c9:b3:fe:80: e9:e9:93:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjQwNTE4MjAzMzQzWhcNMjQwNTI1MjAzMzQzWjAYMRYwFAYD VQQDEw02NjQ5MTBhNy0wOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPxpjUCwv6P+5Hv1H4dPIPQ88FMf3bVEiDxbedyJtkXlKLW5tHddQ8XHz4sy bHLxvVoiK71WLcMy4/j38r71cPaxzEnPvwsjr0xKY3zy9DMqan9GF9niucT7IIVo 1p3iV/BR/WPdF039D13le2PNL+dnLkTG8kyb/TexWzKe3hcqZvMb73oHtjR/7nr2 rFTXnOw7vT7L5/Av2zFWAGsF7XdGyRBlWVFPohV6ye7deKBMp+agSzHBduepqkza Jyx8MnQfyA+LK28Cz6ZUiPd4PHFVlQB4H9XRxDK39KVGoc02z2rK4X8AZTu5vo2V JxKDOLcmdDYc9xDIi/YTC0tUsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7kfsPC NpzvsBFYuYRC6rpH9FMUMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp6sdppHz1EYohE8vvZaC8ycW3kYiBYy1L7p1OMJSgZeTYt0oO1bKm 54u1VPxcJk+yQL+3WB+KEWnb059gLA44tpUfPX+RjmgZCptQtLM57StiVFTK5StM QgDPMgxlbvjvp4+5cpfIISecgDsTXSkEa3eTK5YuCMjW3JEObGp8ZsGSBBubHDmY aZlMO9o/bGFkHtdC7K3jcSQHBGR3ysQj0DcaWOFNgQPNhAH3jvexXXNCgjS5Xob0 hSoQNfk03Rgg14uPeu/SdU0CcfDKxzLtWqVcm1HsJzOfFf8ygmKAAqh8Fyv2i+5C gtG1Z3a9LebrULqBExBOiMmz/oDp6ZNm -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org