$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: i7txTelZ7FyneUQRCaInkRhN2SrCyDGpm1wM6k9hjIw= Subject key identifier: 48:28:F9:66:C7:9D:55:AE:DE:6D:FE:D4:34:AC:8D:1D:DA:EB:45:08 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 6E Signing time: Sun 19 May 2024 07:28:29 +0000 Manifest this update: Sun 19 May 2024 07:28:28 +0000 Manifest next update: Sun 26 May 2024 07:28:28 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: 36t00B8R0FwSoV8t/2V/Z9avg1BV3lTV0FpeId5ZX/Q=) 2: 8CB011646DAE11EE809B1717C4F9AE02.roa (hash: rgSFqdLyx15HASP0FdZAWkfSNryT0iBC4HGltEel0XI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: May 19 07:28:28 2024 GMT Not After : May 26 07:28:28 2024 GMT Subject: CN=6649aa1c-2f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:88:ee:b5:74:e1:61:45:38:e8:42:92:5a:ac: 4e:48:d8:19:5c:80:63:04:f9:a9:99:3f:ab:6f:c6: 9d:90:d3:45:bf:12:36:91:aa:fd:ef:5d:ab:e3:15: bf:0d:c5:51:db:ee:bd:85:eb:66:76:be:ad:0d:d4: 24:97:38:41:4e:0f:7e:3d:74:04:8a:f9:99:37:e2: 39:2a:42:01:ac:77:70:ef:99:ca:d1:d1:f4:4a:d1: 22:45:15:08:29:2e:8c:1b:2d:7f:ea:9e:f0:95:51: f4:76:e1:d0:32:e7:76:a9:8e:89:74:8b:2e:e7:1e: 12:6f:b1:8d:3c:30:98:33:4f:01:14:c1:1c:32:0d: 94:e8:b9:9b:09:95:b2:91:21:46:96:7d:f7:9c:7a: d0:7b:66:cc:86:c4:cc:a7:a0:33:32:44:6b:05:ec: 36:e8:12:12:f1:49:9f:46:75:e9:11:51:aa:50:ad: af:a3:b9:f1:5b:b9:c7:20:c9:1d:87:ac:f2:89:a2: 73:f2:8d:c5:0a:56:ce:9e:a0:92:21:5a:e8:62:27: 3d:7d:b7:6c:48:9c:05:31:32:48:3e:5a:83:df:c4: e4:b4:76:45:5f:fe:58:f0:9b:08:0b:86:a2:33:f3: 33:95:a8:fb:57:8d:ca:95:f7:d9:17:8c:0b:45:03: 24:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:28:F9:66:C7:9D:55:AE:DE:6D:FE:D4:34:AC:8D:1D:DA:EB:45:08 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:19:fa:a2:86:6b:d9:02:c9:9a:f0:61:cd:7c:4b:0f:84:b5: 87:c2:fa:aa:4a:85:cf:d6:cb:2f:1b:2d:35:d6:76:da:21:bf: 91:83:c2:a2:30:37:91:aa:de:91:0c:a9:c3:a7:cf:05:ea:7e: 1e:12:0e:7b:bf:ea:f8:58:c9:80:7f:bf:b0:34:91:ad:0e:51: ac:5f:b2:a5:d5:15:d5:06:78:16:95:ca:34:32:bd:34:92:da: c3:68:84:72:c7:01:f3:c8:e9:9b:c8:43:a7:14:81:fd:fe:9e: f8:6e:77:f3:40:f1:99:59:13:10:78:ba:72:ce:8f:05:0f:29: d1:d1:b0:8f:0b:fc:f3:e9:4e:6d:95:a6:d1:7e:cb:b5:40:21: 8c:37:e1:69:02:c1:96:56:e8:54:d8:65:6a:da:a9:48:15:89: 1b:be:db:4c:58:34:da:7f:b1:d9:cd:19:17:61:9b:6b:98:0b: d4:a9:50:07:fa:b7:af:4f:9b:9a:69:1c:8c:ff:e4:47:bb:d5: be:dd:c5:fc:b3:fd:c4:13:b4:90:29:8d:5b:b3:28:6f:86:9f: 5b:01:21:da:e5:44:da:45:ab:e1:a5:cc:2c:42:77:6f:75:9a: 94:1a:a4:b6:65:b4:d7:f9:56:0a:dc:e8:3e:dc:2b:9e:3c:15: 3c:e5:fe:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjA0QjExMC8GA1UEBRMoQTE0QkRBQTMxNTc2QTYzNjdBMEI1QzNBQ0FCOTFDNEU5 RjMxMThFRjAeFw0yNDA1MTkwNzI4MjhaFw0yNDA1MjYwNzI4MjhaMBgxFjAUBgNV BAMTDTY2NDlhYTFjLTJmMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOiO61dOFhRTjoQpJarE5I2BlcgGME+amZP6tvxp2Q00W/EjaRqv3vXavjFb8N xVHb7r2F62Z2vq0N1CSXOEFOD349dASK+Zk34jkqQgGsd3DvmcrR0fRK0SJFFQgp LowbLX/qnvCVUfR24dAy53apjol0iy7nHhJvsY08MJgzTwEUwRwyDZTouZsJlbKR IUaWffecetB7ZsyGxMynoDMyRGsF7DboEhLxSZ9GdekRUapQra+jufFbuccgyR2H rPKJonPyjcUKVs6eoJIhWuhiJz19t2xInAUxMkg+WoPfxOS0dkVf/ljwmwgLhqIz 8zOVqPtXjcqV99kXjAtFAyTrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSCj5Zsed Va7ebf7UNKyNHdrrRQgwHwYDVR0jBBgwFoAUoUvaoxV2pjZ6C1w6yrkcTp8xGO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2MDRCLzQxQzAxMzVDNkRB RTExRUVBODBEMDU3NEM0RjlBRTAyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1V2YW94VjJwalo2QzF3Nnlya2NUcDh4R084LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 MDRCLzQxQzAxMzVDNkRBRTExRUVBODBEMDU3NEM0RjlBRTAyL29VdmFveFYycGpa NkMxdzZ5cmtjVHA4eEdPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHIZ+qKGa9kCyZrwYc18Sw+EtYfC+qpKhc/Wyy8bLTXWdtohv5GDwqIw N5Gq3pEMqcOnzwXqfh4SDnu/6vhYyYB/v7A0ka0OUaxfsqXVFdUGeBaVyjQyvTSS 2sNohHLHAfPI6ZvIQ6cUgf3+nvhud/NA8ZlZExB4unLOjwUPKdHRsI8L/PPpTm2V ptF+y7VAIYw34WkCwZZW6FTYZWraqUgViRu+20xYNNp/sdnNGRdhm2uYC9SpUAf6 t69Pm5ppHIz/5Ee71b7dxfyz/cQTtJApjVuzKG+Gn1sBIdrlRNpFq+GlzCxCd291 mpQapLZltNf5Vgrc6D7cK548FTzl/sk= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org