$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: vObhlweooF2ninHdl5Y4iDUUfZZdiC+g4xu+OakEXHI= Subject key identifier: AE:66:A7:E0:D9:33:E4:14:6B:FA:DD:1A:89:C6:43:CB:EF:75:33:8D Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 85 Signing time: Sun 19 May 2024 07:06:43 +0000 Manifest this update: Sun 19 May 2024 07:06:43 +0000 Manifest next update: Sun 26 May 2024 07:06:43 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: VwRyBBJMkJzJ6fpTpeGLPNYaBxG7GktYnto65Lmv/nU=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 9JU91l412hFsZgA1qAbuRoWUbwnNMVvRlNqSzYYXfQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: May 19 07:06:43 2024 GMT Not After : May 26 07:06:43 2024 GMT Subject: CN=6649a503-871c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:9b:3a:70:95:3e:ff:bc:81:0a:35:c4:f7: f3:93:07:46:cd:3b:bf:25:c8:d8:0f:9d:da:92:b9: 4a:af:57:01:9e:dc:59:c6:57:a7:0c:7b:67:2d:85: f0:81:72:6f:47:51:e9:b5:9a:c6:4f:1a:e5:46:10: c8:0a:5c:2c:9a:ea:49:1b:b4:be:3f:a7:ec:95:b3: 80:36:61:a6:85:10:29:b4:13:a3:d3:b8:d1:19:9c: fd:76:9a:14:4d:72:cf:79:e8:15:c2:db:b7:9e:d4: 3a:7b:84:f8:7a:15:00:26:ad:c4:8b:7f:1d:68:79: bb:95:06:a3:db:38:aa:3c:df:d2:60:27:00:20:4f: d3:ea:06:42:47:a6:31:9c:cf:f5:52:ac:e0:46:07: 99:6c:7d:86:aa:e8:67:ad:1f:f8:3c:d0:f6:f6:a7: 36:13:f6:da:82:03:d8:ba:28:1c:fc:6b:9a:e1:53: c4:ee:d1:1e:6a:0a:32:37:c7:e9:06:b4:7d:b0:b9: ab:69:51:9c:2f:6a:56:a0:aa:04:36:e3:10:43:a1: 72:49:74:cd:05:f5:89:97:46:2a:db:ea:e2:69:f3: 44:54:41:66:69:b6:03:51:ee:b8:ea:98:21:8e:5f: 42:58:e2:64:fc:68:02:44:05:66:fa:46:47:5e:43: 5f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:66:A7:E0:D9:33:E4:14:6B:FA:DD:1A:89:C6:43:CB:EF:75:33:8D X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:77:50:69:16:ed:17:c1:93:f8:a9:ef:d0:ea:d7:79:f8:15: 10:47:1a:fd:03:6e:1b:35:a6:e8:12:83:90:7a:13:08:18:fd: 11:bd:ac:d7:69:42:ec:55:fe:92:db:41:28:01:09:dd:53:77: 39:53:96:11:b6:d4:cd:99:dc:82:03:d4:89:e5:8b:ee:cb:14: 52:80:2c:3d:88:ca:f5:f3:26:1e:15:63:82:83:e3:23:80:98: d4:aa:02:16:01:a5:7c:38:19:7a:f1:f3:d0:b4:96:92:08:05: e6:78:b0:e6:c3:af:a8:25:26:0b:2c:27:5d:7b:39:79:89:f1: a3:ae:d3:ce:f8:d8:e5:f1:d7:61:22:e1:23:73:cc:6b:4c:15: 27:b0:05:3f:47:47:e0:b8:32:52:cf:fb:a3:86:f3:23:d6:21: 9b:f6:0c:d3:c8:80:c6:98:4f:c4:cb:99:02:1b:9c:30:dd:30: ce:98:1d:fa:84:29:8d:b0:f1:2c:40:a1:16:46:42:d5:c1:28: fd:52:b2:2c:63:42:47:4a:cc:ba:89:31:45:e2:22:92:12:99: 99:94:4b:1c:58:6a:a0:7c:67:83:d7:26:5a:b4:7d:bc:2d:94: 85:b3:ab:fe:77:bc:40:09:33:a1:3d:c0:cf:3d:9e:42:2f:68: d4:fc:ae:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjQwNTE5MDcwNjQzWhcNMjQwNTI2MDcwNjQzWjAYMRYwFAYD VQQDEw02NjQ5YTUwMy04NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL2bOnCVPv+8gQo1xPfzkwdGzTu/JcjYD53akrlKr1cBntxZxlenDHtnLYXw gXJvR1HptZrGTxrlRhDIClwsmupJG7S+P6fslbOANmGmhRAptBOj07jRGZz9dpoU TXLPeegVwtu3ntQ6e4T4ehUAJq3Ei38daHm7lQaj2ziqPN/SYCcAIE/T6gZCR6Yx nM/1UqzgRgeZbH2GquhnrR/4PND29qc2E/baggPYuigc/Gua4VPE7tEeagoyN8fp BrR9sLmraVGcL2pWoKoENuMQQ6FySXTNBfWJl0Yq2+riafNEVEFmabYDUe646pgh jl9CWOJk/GgCRAVm+kZHXkNfawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5mp+DZ M+QUa/rdGonGQ8vvdTONMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmd1BpFu0XwZP4qe/Q6td5+BUQRxr9A24bNaboEoOQehMIGP0RvazX aULsVf6S20EoAQndU3c5U5YRttTNmdyCA9SJ5YvuyxRSgCw9iMr18yYeFWOCg+Mj gJjUqgIWAaV8OBl68fPQtJaSCAXmeLDmw6+oJSYLLCddezl5ifGjrtPO+Njl8ddh IuEjc8xrTBUnsAU/R0fguDJSz/ujhvMj1iGb9gzTyIDGmE/Ey5kCG5ww3TDOmB36 hCmNsPEsQKEWRkLVwSj9UrIsY0JHSsy6iTFF4iKSEpmZlEscWGqgfGeD1yZatH28 LZSFs6v+d7xACTOhPcDPPZ5CL2jU/K5M -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org