$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: tPCWRxkiRD+hJ6btdHpkFAKHjyuisuQrb746Qb7pNc0= Subject key identifier: BC:EE:E3:DC:B4:2F:B5:CB:72:FE:C8:58:A6:66:05:53:51:2D:C3:BE Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 56 Signing time: Sun 19 May 2024 07:50:41 +0000 Manifest this update: Sun 19 May 2024 07:50:41 +0000 Manifest next update: Sun 26 May 2024 07:50:41 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: m0mRQ1mfP8VAYkt3eUMZzBWC7Xv3zIL1fYSrb0Ta+3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 19 07:50:41 2024 GMT Not After : May 26 07:50:41 2024 GMT Subject: CN=6649af51-c90c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:08:d9:76:33:db:2a:60:d2:fd:40:ee:7e:fb: fb:6f:ea:01:31:28:cd:a4:68:3b:b8:31:55:78:4e: 31:71:87:89:e6:28:95:70:c8:f4:b3:9d:f0:a8:4a: 37:ce:a7:ee:5d:e2:eb:c8:9f:02:cd:bb:b5:4c:62: f4:95:8c:ec:0b:a1:04:56:57:e2:4d:f3:01:06:7a: 5a:7d:df:af:8a:46:5a:d8:81:aa:22:79:d1:89:32: 1c:69:8d:ba:31:eb:4b:5a:2f:9c:23:dc:ea:eb:c4: 01:6c:fe:9e:52:99:39:e7:70:84:d2:00:85:b2:c7: 93:fd:c0:8c:13:d8:99:73:49:1b:e2:31:d0:fd:8f: 3d:cc:fb:31:a0:43:e6:0f:63:0a:65:9b:77:0d:68: 2c:e7:57:31:da:dc:7f:61:fe:00:7d:0f:d3:d6:85: 98:5f:0f:ad:67:ea:11:0b:42:70:55:cd:13:ba:5b: 2c:7a:7c:b3:bb:a2:54:37:35:d4:f6:27:5b:f2:05: 03:78:ba:c5:46:e9:28:d8:c2:41:ac:14:88:7e:50: a3:37:18:f3:ff:93:52:39:f6:88:41:22:c0:ff:3b: 91:10:93:65:c9:dc:28:37:50:de:08:71:c6:98:bf: 91:c1:1d:e0:34:08:63:b1:cc:b5:d3:65:61:d6:52: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EE:E3:DC:B4:2F:B5:CB:72:FE:C8:58:A6:66:05:53:51:2D:C3:BE X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:ce:be:63:5c:be:00:1a:5e:32:b8:2a:10:fd:47:6f:b9:a9: e2:59:fe:81:26:c6:2d:13:22:6b:47:81:d4:32:05:20:0d:4f: de:5b:7d:cc:8a:5f:77:92:d7:30:d7:57:ac:64:a2:f3:60:07: 1d:26:f7:6a:8e:5b:0a:e1:ca:21:a9:ba:73:63:5c:fb:5c:87: 32:71:f2:9d:c0:5e:08:a9:dc:13:47:9f:6e:10:c9:dc:69:f5: 54:3c:02:82:e4:07:a9:8f:10:55:92:ea:d5:a2:b9:7e:b9:90: 74:da:5f:24:ac:62:8a:b0:49:b4:d3:ce:20:eb:31:aa:4b:81: 36:7d:86:61:ce:25:6e:75:7c:16:02:77:1a:9b:1e:70:d2:80: 77:e7:55:cf:75:8e:27:1f:4a:d7:55:d1:6c:e3:68:db:cd:80: bc:6a:3a:4a:59:ce:eb:27:4a:f5:8b:0a:23:e8:6a:f4:b6:76: 4c:f2:38:5b:18:7f:85:2a:20:99:f2:28:0a:2a:c5:36:dd:f1: be:5c:18:6f:e4:1e:38:8d:95:6f:05:e6:24:71:63:23:29:2c: 0a:b6:f9:9a:16:ed:ab:69:4e:8d:41:37:7a:97:a8:e7:77:8b: cc:df:86:1d:83:de:e9:ab:cd:2a:2f:6c:1a:34:94:e5:1b:14: 85:fb:36:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzNCNzExMC8GA1UEBRMoMzk4MzdDQjRCRUNBRjZBNjI2QzkxNkFFOTYwMjQxQjYw OUU2QjIwQTAeFw0yNDA1MTkwNzUwNDFaFw0yNDA1MjYwNzUwNDFaMBgxFjAUBgNV BAMTDTY2NDlhZjUxLWM5MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+CNl2M9sqYNL9QO5++/tv6gExKM2kaDu4MVV4TjFxh4nmKJVwyPSznfCoSjfO p+5d4uvInwLNu7VMYvSVjOwLoQRWV+JN8wEGelp936+KRlrYgaoiedGJMhxpjbox 60taL5wj3OrrxAFs/p5SmTnncITSAIWyx5P9wIwT2JlzSRviMdD9jz3M+zGgQ+YP Ywplm3cNaCznVzHa3H9h/gB9D9PWhZhfD61n6hELQnBVzRO6Wyx6fLO7olQ3NdT2 J1vyBQN4usVG6SjYwkGsFIh+UKM3GPP/k1I59ohBIsD/O5EQk2XJ3Cg3UN4IccaY v5HBHeA0CGOxzLXTZWHWUk05AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvO7j3LQv tcty/shYpmYFU1Etw74wHwYDVR0jBBgwFoAUOYN8tL7K9qYmyRaulgJBtgnmsgow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDM0I3LzE1OUE0QUQwOTMy NTExRUVCRTk4N0Y2MEM0RjlBRTAyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNn by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1lOOHRMN0s5cVlteVJhdWxnSkJ0Z25tc2dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD M0I3LzE1OUE0QUQwOTMyNTExRUVCRTk4N0Y2MEM0RjlBRTAyL09ZTjh0TDdLOXFZ bXlSYXVsZ0pCdGdubXNnby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMnOvmNcvgAaXjK4KhD9R2+5qeJZ/oEmxi0TImtHgdQyBSANT95bfcyK X3eS1zDXV6xkovNgBx0m92qOWwrhyiGpunNjXPtchzJx8p3AXgip3BNHn24Qydxp 9VQ8AoLkB6mPEFWS6tWiuX65kHTaXySsYoqwSbTTziDrMapLgTZ9hmHOJW51fBYC dxqbHnDSgHfnVc91jicfStdV0WzjaNvNgLxqOkpZzusnSvWLCiPoavS2dkzyOFsY f4UqIJnyKAoqxTbd8b5cGG/kHjiNlW8F5iRxYyMpLAq2+ZoW7atpTo1BN3qXqOd3 i8zfhh2D3umrzSovbBo0lOUbFIX7Nls= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org