$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: v9Dnyfnbw+ynJzXl/3KbCJv3BX//es3GVr92wtqWzEM= Subject key identifier: 2A:5C:22:0D:88:EC:B6:E1:1F:B2:11:D9:81:84:9E:B2:0C:A7:EE:E6 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3435 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 33F3 Signing time: Sat 18 May 2024 14:27:51 +0000 Manifest this update: Sat 18 May 2024 14:27:51 +0000 Manifest next update: Sat 25 May 2024 14:27:51 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: iisfZbGlRhdH4qYmyWVXZeZ7kP+J4U5/TzSYoSa+yu4=) 2: 913288EE1C1711EA8B048E84C4F9AE02.roa (hash: fE99kbP8klBflhCG2sv15esicVbgarP5pF0zxYygq+k=) 3: 190AC86A33FF11EDB747A054C4F9AE02.roa (hash: V/ZK9abZhv1DDg/8AcYcL8nf+YshLfES9DN9TUeFvoo=) 4: 203B2B7A1C9811EE995E057EC4F9AE02.roa (hash: AqTDwBCtegvr6nD7WVbs9do0Ik1wCiqRfvjh1I3pi8Q=) 5: E63F3CA2E39E11EAAAE0622CC4F9AE02.roa (hash: RgBGdfHwU/1xzkv+q5ZJIeAMYoOF9aNROEMmy+nAD/E=) 6: 19FC767E33FF11EDB747A054C4F9AE02.roa (hash: VEHIwaTJOXdH0dS1VED7m8GNR+0upJRphZ7uU6TVShI=) 7: E52789DCE39E11EAAAE0622CC4F9AE02.roa (hash: FLQlq+/xB5YusH3j2LsK1cqPSb+5Tw6zYrX7zZnE/ak=) 8: 9A31551A007911EFB9E2570FC4F9AE02.roa (hash: /WkI9P2YYh4Vg+ygrnYMsFRJwTBS5KbFAzWLwGmGka8=) 9: 1901CC2A972211ED876D8452C4F9AE02.roa (hash: n2Ck1CIYhU/Zj79OnSM6zA+joLItAmPk6euia1aGJNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13365 (0x3435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: May 18 14:27:51 2024 GMT Not After : May 25 14:27:51 2024 GMT Subject: CN=6648bae7-bdad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5e:87:2a:4c:25:a0:ff:a1:ab:29:fd:87:aa: de:fe:05:4a:d3:ed:a7:bb:d4:f2:0e:4d:09:db:76: 4c:e0:eb:d8:c8:c2:8e:37:36:d6:ad:f2:20:68:dc: c8:d8:3e:7e:49:0e:3e:cc:f9:36:a8:a4:5c:11:f4: 1a:6e:45:45:bf:66:70:cd:28:0b:cb:08:2b:36:d7: b8:21:dd:eb:40:4c:0a:ba:f5:0e:d9:21:fe:f0:e0: 7a:66:a9:c5:2e:1c:24:ee:a4:ea:48:85:c3:35:94: e7:b5:cb:2e:34:b9:db:71:69:b0:7e:3a:9c:91:f7: e4:e1:01:e1:53:da:d4:bb:28:59:b0:09:83:aa:09: e5:07:9b:f0:10:27:51:23:a3:4a:29:64:3c:98:df: a2:95:e6:63:c6:6c:cd:e0:af:69:20:72:1c:0a:7d: a0:31:30:3e:7d:2a:6f:59:94:0b:0f:5e:fe:35:75: 35:05:f6:77:2f:3c:a4:c3:c9:3a:f3:c8:2d:6b:a5: 47:2f:f7:e6:94:27:60:02:2c:c5:69:01:2f:3c:4c: 15:4a:2b:5f:6e:93:ed:b7:ec:5f:9a:3c:a5:55:6b: 26:4b:04:11:b6:bc:0a:8d:99:c0:37:ae:ac:a9:ab: dc:f6:8d:ed:c2:db:5f:30:8c:51:de:81:01:61:0e: 32:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5C:22:0D:88:EC:B6:E1:1F:B2:11:D9:81:84:9E:B2:0C:A7:EE:E6 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5b:90:e8:98:d3:a3:39:40:13:65:93:4c:e1:a0:25:72:3a: dd:b5:b4:98:59:66:9d:1e:b9:5b:88:21:3e:24:5f:94:f7:4d: 86:10:a1:7f:0b:33:d7:6b:d5:02:ee:5c:b2:a9:2a:de:8f:aa: e5:b9:e4:7f:a6:b4:fa:29:22:63:43:00:9d:09:4e:2f:12:13: 8e:e9:b7:d2:7c:94:c5:23:a7:de:38:93:a6:b4:f2:3a:07:d0: 59:44:9d:3f:a6:73:6f:07:de:7e:7c:a4:ed:16:c6:7c:16:b7: 0b:a4:ef:15:51:0f:4f:10:4f:ad:09:16:91:ae:e3:cf:1b:85: c7:10:84:22:1b:4b:d8:75:3b:43:a4:01:32:70:80:62:aa:94: 4b:85:39:78:36:83:a1:c3:7c:52:74:70:07:dc:00:41:ce:47: c3:3e:4f:f7:29:3f:50:0c:3e:74:f8:f7:88:37:7a:71:3f:85: 3b:0a:72:d5:f8:af:51:1a:bb:38:14:ea:e3:ce:b6:e5:19:68: 0c:8b:a6:6b:8c:18:60:23:db:4e:8d:44:52:64:06:79:0d:a8: bc:26:34:aa:cc:99:c3:7d:a2:85:11:91:28:d3:61:db:79:4d: 5e:c4:e9:ee:98:8f:49:44:57:50:46:92:81:3d:32:bb:63:00: 0f:d8:aa:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjQwNTE4MTQyNzUxWhcNMjQwNTI1MTQyNzUxWjAYMRYwFAYD VQQDEw02NjQ4YmFlNy1iZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF6HKkwloP+hqyn9h6re/gVK0+2nu9TyDk0J23ZM4OvYyMKONzbWrfIgaNzI 2D5+SQ4+zPk2qKRcEfQabkVFv2ZwzSgLywgrNte4Id3rQEwKuvUO2SH+8OB6ZqnF Lhwk7qTqSIXDNZTntcsuNLnbcWmwfjqckffk4QHhU9rUuyhZsAmDqgnlB5vwECdR I6NKKWQ8mN+ileZjxmzN4K9pIHIcCn2gMTA+fSpvWZQLD17+NXU1BfZ3Lzykw8k6 88gta6VHL/fmlCdgAizFaQEvPEwVSitfbpPtt+xfmjylVWsmSwQRtrwKjZnAN66s qavc9o3twttfMIxR3oEBYQ4yVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpcIg2I 7LbhH7IR2YGEnrIMp+7mMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqW5DomNOjOUATZZNM4aAlcjrdtbSYWWadHrlbiCE+JF+U902GEKF/ CzPXa9UC7lyyqSrej6rlueR/prT6KSJjQwCdCU4vEhOO6bfSfJTFI6feOJOmtPI6 B9BZRJ0/pnNvB95+fKTtFsZ8FrcLpO8VUQ9PEE+tCRaRruPPG4XHEIQiG0vYdTtD pAEycIBiqpRLhTl4NoOhw3xSdHAH3ABBzkfDPk/3KT9QDD50+PeIN3pxP4U7CnLV +K9RGrs4FOrjzrblGWgMi6ZrjBhgI9tOjURSZAZ5Dai8JjSqzJnDfaKFEZEo02Hb eU1exOnumI9JRFdQRpKBPTK7YwAP2Kq2 -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org