$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: KwK/oZCHkpYy+JbIN/rJjrUYdaZGY7m5jhrzP6UK5e8= Subject key identifier: 49:59:B5:29:F0:2B:1E:48:C0:70:85:72:DF:31:52:6C:91:3D:B2:4C Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 34 Signing time: Sun 19 May 2024 08:19:36 +0000 Manifest this update: Sun 19 May 2024 08:19:36 +0000 Manifest next update: Sun 26 May 2024 08:19:36 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: Cwexkl9KthNmkXdysce7/567ipeBdEVjMjNy0+cQpOY=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: jp89TTV8B+141e9uQTYuaE2J8FxHwbPZjEdj0Ee+U6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: May 19 08:19:36 2024 GMT Not After : May 26 08:19:36 2024 GMT Subject: CN=6649b618-892f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:eb:9d:75:59:00:1c:92:eb:30:08:e8:6b: 28:d5:e5:d1:f4:2b:1e:92:d3:0a:b4:c4:9c:c2:86: 22:ea:b4:3d:45:81:3c:9d:0d:5a:c0:9e:d2:62:d0: 32:1d:42:e1:be:6f:a1:b4:bc:72:4c:e6:6b:98:00: f9:44:b4:3b:44:f4:c9:8b:ee:8d:3f:1f:92:73:74: 8f:57:42:71:8e:35:a1:aa:75:5b:62:08:66:b7:27: 89:fb:6f:f1:51:b0:a0:f8:30:79:71:7a:6a:8e:48: 0c:7b:fd:b9:eb:8c:97:34:40:99:9b:11:2f:c5:1a: 62:e7:d7:0a:3e:ff:27:af:01:6f:57:00:fc:e6:6c: 3f:e4:fa:c2:97:1c:b8:ac:24:b6:c6:be:96:7e:9a: 91:15:96:75:6e:32:a5:20:b8:fe:c9:be:58:e2:9f: cd:00:06:88:5b:86:73:86:0b:fd:a0:89:fb:3a:87: c4:ca:2d:73:3a:34:58:a9:3c:9d:ed:cc:e0:bf:2d: d8:3f:f2:f8:bc:04:a2:d5:e1:4c:a3:17:07:ff:e9: e3:8d:ca:86:9c:f3:5b:5c:bd:b3:6f:ec:cd:c4:f1: a2:b0:65:6c:28:6d:97:90:c0:84:2a:bd:d2:12:67: 6d:1c:fa:98:28:6f:ac:00:5e:3f:44:dc:e1:34:14: da:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:59:B5:29:F0:2B:1E:48:C0:70:85:72:DF:31:52:6C:91:3D:B2:4C X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:90:21:f1:22:42:0b:2a:67:4b:2c:3c:4b:49:b6:0f:dd:41: 58:fe:6b:29:1f:ed:f4:31:56:65:c4:ce:5f:a2:91:68:68:63: 6d:9d:90:63:8f:fd:9e:22:6c:de:32:94:26:3d:fa:ea:32:7a: fb:9d:25:98:e1:11:b3:e3:92:23:59:a4:22:6b:71:98:7b:a2: 68:16:64:34:27:b3:84:5a:49:30:aa:a9:e7:ab:2d:f4:a0:c9: 31:c8:95:49:bd:f0:90:28:4a:98:f6:24:3e:d7:4b:3c:d9:5d: 37:2c:af:60:34:21:41:d7:f2:01:83:60:9c:2d:ac:56:33:a1: cd:80:1a:7b:84:dd:c4:9d:96:6f:ba:14:7e:19:a1:63:68:68: 2c:a5:5b:56:cd:bf:95:30:2d:37:5b:f1:7f:10:e9:47:14:b3: 70:30:85:51:fa:45:c4:7e:bc:35:a6:f9:dc:74:6b:e6:e9:12: d9:9d:d1:e6:a3:5f:98:47:97:8d:c2:9c:a8:25:a0:0f:78:7f: 74:fe:35:07:d7:cd:dc:a9:d7:bb:99:27:0d:04:fe:c7:4a:85: 67:76:7f:b4:74:2f:e3:55:75:98:a6:95:69:2b:2c:b3:7e:39: e4:16:e9:0a:76:43:4b:0e:27:25:54:8d:04:16:d0:14:2b:85: 93:3d:fc:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjRFMTExMC8GA1UEBRMoNzBFODg1NTdCMEMwODJDOUIwNkVDRjU5QjhGMjhBNzcw M0E2MzgwMTAeFw0yNDA1MTkwODE5MzZaFw0yNDA1MjYwODE5MzZaMBgxFjAUBgNV BAMTDTY2NDliNjE4LTg5MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOdOuddVkAHJLrMAjoayjV5dH0Kx6S0wq0xJzChiLqtD1FgTydDVrAntJi0DId QuG+b6G0vHJM5muYAPlEtDtE9MmL7o0/H5JzdI9XQnGONaGqdVtiCGa3J4n7b/FR sKD4MHlxemqOSAx7/bnrjJc0QJmbES/FGmLn1wo+/yevAW9XAPzmbD/k+sKXHLis JLbGvpZ+mpEVlnVuMqUguP7Jvljin80ABohbhnOGC/2gifs6h8TKLXM6NFipPJ3t zOC/Ldg/8vi8BKLV4UyjFwf/6eONyoac81tcvbNv7M3E8aKwZWwobZeQwIQqvdIS Z20c+pgob6wAXj9E3OE0FNrtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSVm1KfAr HkjAcIVy3zFSbJE9skwwHwYDVR0jBBgwFoAUcOiFV7DAgsmwbs9ZuPKKdwOmOAEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NEUxLzYyMzFBMDJFQzY3 RDExRUU4NzAyN0IzQUM0RjlBRTAyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9B RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY09pRlY3REFnc213YnM5WnVQS0tkd09tT0FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NEUxLzYyMzFBMDJFQzY3RDExRUU4NzAyN0IzQUM0RjlBRTAyL2NPaUZWN0RBZ3Nt d2JzOVp1UEtLZHdPbU9BRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGeQIfEiQgsqZ0ssPEtJtg/dQVj+aykf7fQxVmXEzl+ikWhoY22dkGOP /Z4ibN4ylCY9+uoyevudJZjhEbPjkiNZpCJrcZh7omgWZDQns4RaSTCqqeerLfSg yTHIlUm98JAoSpj2JD7XSzzZXTcsr2A0IUHX8gGDYJwtrFYzoc2AGnuE3cSdlm+6 FH4ZoWNoaCylW1bNv5UwLTdb8X8Q6UcUs3AwhVH6RcR+vDWm+dx0a+bpEtmd0eaj X5hHl43CnKgloA94f3T+NQfXzdyp17uZJw0E/sdKhWd2f7R0L+NVdZimlWkrLLN+ OeQW6Qp2Q0sOJyVUjQQW0BQrhZM9/H4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org