$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: 25spcunID0KevCffbV9FmiCl/VXFVQcIsh7yhG9ervc= Subject key identifier: EE:26:E2:14:02:72:48:FA:F1:CF:0E:A9:16:FF:6E:23:A8:6E:2D:64 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 2F Signing time: Sun 19 May 2024 08:26:29 +0000 Manifest this update: Sun 19 May 2024 08:26:28 +0000 Manifest next update: Sun 26 May 2024 08:26:28 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: AKiRfYTyGj6Et12+xedMaGtq9Aah2t5txf8Sx58d0Po=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: ytZ0mVr7Q5kbOcbcyXXPGqMfnF/2pBGd1W5uYZdomFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: May 19 08:26:28 2024 GMT Not After : May 26 08:26:28 2024 GMT Subject: CN=6649b7b5-8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:92:d2:55:f0:f4:1c:76:a4:5a:a6:b0:29:73: 5c:5e:b8:b6:5e:1b:de:60:33:bc:4d:35:6e:26:9c: f3:1d:46:44:4f:12:1f:4b:5b:14:12:9d:8f:45:3b: 3b:07:20:18:c2:4f:6d:b2:03:bd:90:e5:23:ac:1f: 92:62:16:17:c6:ed:15:7c:6a:28:f1:74:5d:10:a1: 1e:9c:9f:ec:bb:96:68:6d:33:5f:8c:10:8c:90:c3: 4b:c0:9b:83:3a:10:23:18:81:62:c8:e6:81:ce:c3: 63:6b:40:c3:c2:ef:ef:42:89:c2:cb:87:5b:bd:d0: bd:cb:9a:91:51:ef:a2:44:82:c3:e3:6f:d9:c2:d9: 2d:84:2b:c4:c2:e6:fb:20:27:cf:2f:1d:af:5e:69: c0:77:25:6b:7b:5c:3c:b5:bd:8f:d6:78:88:45:ef: b9:db:1a:46:6c:5b:b1:0f:58:96:29:c8:a6:65:a9: 83:15:10:88:34:02:ff:11:f5:f5:cd:ec:3b:19:03: 86:27:75:64:7c:6e:1e:aa:e4:95:c9:d0:4f:65:bf: d8:9b:5f:30:a9:00:02:42:55:de:b1:ce:e6:bc:ec: 08:96:54:cc:69:e8:ab:46:10:d0:52:62:9e:91:42: 5c:6b:dc:c8:9f:22:70:c7:72:4d:3e:f8:4e:c9:88: 48:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:26:E2:14:02:72:48:FA:F1:CF:0E:A9:16:FF:6E:23:A8:6E:2D:64 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:dd:e3:f5:f3:d3:16:0f:d1:2c:5f:81:fd:b4:64:a0:21:1e: d2:5f:12:69:91:1c:06:d4:bd:57:be:91:7a:29:e2:cd:fb:68: 8d:00:0a:ce:85:c6:38:d7:9e:88:30:21:a1:bf:3e:54:a4:76: 8a:b8:de:2c:05:6f:37:87:72:c5:00:6d:e1:3e:a2:a6:11:60: 71:f0:18:bb:e7:53:86:96:da:1e:d7:9f:ed:74:39:63:29:83: b2:3a:56:fa:38:d5:70:72:fb:5d:8b:60:60:b3:5c:45:2e:c7: 3f:5e:a2:2b:23:44:f1:7a:80:7d:29:83:6e:bc:17:50:53:0f: b9:b8:4c:1f:4b:ac:38:92:05:13:cd:64:17:0a:bf:96:c5:32: b6:43:af:c9:24:2f:9b:c9:b0:a0:fc:ce:0c:b5:ae:8f:f2:67: 67:03:ca:9a:dd:de:01:83:27:43:3f:3a:f0:cb:a5:32:f6:8e: 91:00:d3:9d:46:59:e9:81:0a:0f:cc:51:88:71:9c:b1:9e:d0: 23:fb:fa:06:cb:64:de:45:af:15:5a:fc:ea:86:fc:60:71:0d: 00:13:e1:b7:f7:8a:9c:ce:af:7c:4c:79:d1:81:81:2b:ec:6f: 88:75:a1:88:f3:5b:2a:3b:97:48:ff:3d:4a:de:5e:25:40:2e: b0:67:25:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NjI0OTExMC8GA1UEBRMoQUNFMjhEQUJFNTM2NDk2MzdGQTZFNEUzMjFERTFCNjM0 NjNCODNDRjAeFw0yNDA1MTkwODI2MjhaFw0yNDA1MjYwODI2MjhaMBgxFjAUBgNV BAMTDTY2NDliN2I1LTg3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpktJV8PQcdqRaprApc1xeuLZeG95gM7xNNW4mnPMdRkRPEh9LWxQSnY9FOzsH IBjCT22yA72Q5SOsH5JiFhfG7RV8aijxdF0QoR6cn+y7lmhtM1+MEIyQw0vAm4M6 ECMYgWLI5oHOw2NrQMPC7+9CicLLh1u90L3LmpFR76JEgsPjb9nC2S2EK8TC5vsg J88vHa9eacB3JWt7XDy1vY/WeIhF77nbGkZsW7EPWJYpyKZlqYMVEIg0Av8R9fXN 7DsZA4YndWR8bh6q5JXJ0E9lv9ibXzCpAAJCVd6xzua87AiWVMxp6KtGENBSYp6R Qlxr3MifInDHck0++E7JiEhjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7ibiFAJy SPrxzw6pFv9uI6huLWQwHwYDVR0jBBgwFoAUrOKNq+U2SWN/puTjId4bY0Y7g88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2MjQ5L0ExRjIzNDNDRDE3 MDExRUVBNjE1MUM0REM0RjlBRTAyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvck9LTnEtVTJTV05fcHVUaklkNGJZMFk3Zzg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2 MjQ5L0ExRjIzNDNDRDE3MDExRUVBNjE1MUM0REM0RjlBRTAyL3JPS05xLVUyU1dO X3B1VGpJZDRiWTBZN2c4OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB7d4/Xz0xYP0Sxfgf20ZKAhHtJfEmmRHAbUvVe+kXop4s37aI0ACs6F xjjXnogwIaG/PlSkdoq43iwFbzeHcsUAbeE+oqYRYHHwGLvnU4aW2h7Xn+10OWMp g7I6Vvo41XBy+12LYGCzXEUuxz9eoisjRPF6gH0pg268F1BTD7m4TB9LrDiSBRPN ZBcKv5bFMrZDr8kkL5vJsKD8zgy1ro/yZ2cDyprd3gGDJ0M/OvDLpTL2jpEA051G WemBCg/MUYhxnLGe0CP7+gbLZN5FrxVa/OqG/GBxDQAT4bf3ipzOr3xMedGBgSvs b4h1oYjzWyo7l0j/PUreXiVALrBnJRg= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org