$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: ivDBCIehRKqEoE10Z3HLnyLq7xUqQTymcv/37j9evyY= Subject key identifier: E0:B6:D6:89:27:AB:DA:0D:EB:D3:31:8F:00:F0:92:71:48:32:A2:B5 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 41 Signing time: Sun 19 May 2024 08:08:32 +0000 Manifest this update: Sun 19 May 2024 08:08:31 +0000 Manifest next update: Sun 26 May 2024 08:08:31 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: tuIPBcX4vtLeMZ3WZIqtq3eooKTSwUf6Redl7Nln15c=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: fjYAPHA4s/Rf2LjSo+4Fy76ef5b2vC7umeVPpDja6ao=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: QgH9UbyFxRgfxwPE8R8dTFa1nTcHpK3nSt5bOKTmsyI=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: TWqB5CF8LOgfdVjG4hHbcMMRd1nBgFaH7sRD6WMoI/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: May 19 08:08:31 2024 GMT Not After : May 26 08:08:31 2024 GMT Subject: CN=6649b380-1564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:66:08:7f:71:3b:27:cf:56:8c:39:c0:87: e9:74:91:90:2f:b8:cd:71:8c:69:0b:fb:36:74:b3: 4f:2f:b6:e8:5e:58:ac:bf:ec:b4:bb:0e:01:7f:ff: 66:6f:0f:9c:df:35:55:f1:5a:39:6a:26:bd:3b:a8: 2f:8d:c6:dd:53:8b:c1:e3:03:c2:22:cc:46:e6:12: d4:36:49:c4:b0:e0:ad:74:92:33:ef:e3:b3:72:25: 96:60:ff:43:74:f2:27:92:44:45:64:31:07:cc:f6: ca:91:23:9c:5f:a8:70:2f:54:a4:b4:45:d4:0e:d8: a9:62:d3:5d:0b:4a:e6:6e:9d:19:d0:0f:03:6f:b5: 81:67:5a:8b:08:04:94:c4:2a:73:b6:a2:68:9f:35: 71:af:09:ac:80:a0:ae:0d:af:60:a6:dd:31:fe:51: 85:43:34:50:6f:f6:a9:c9:84:19:27:c5:b4:62:cf: 0b:15:53:b7:2c:f1:af:13:2f:6f:8c:b0:b5:02:d9: 56:0a:e8:91:0f:a5:06:e0:c3:80:15:21:f7:4f:25: 84:c7:f7:4d:d8:f7:e2:59:fe:f0:a2:7c:02:fe:8c: 17:d5:dd:7e:8f:bd:a3:8c:d5:cf:ca:7b:f0:be:38: 55:77:d5:68:5f:83:cc:a5:fb:fd:73:9a:0a:6e:5a: ab:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B6:D6:89:27:AB:DA:0D:EB:D3:31:8F:00:F0:92:71:48:32:A2:B5 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:5b:93:fb:3b:8f:ed:10:eb:98:16:15:c8:5d:bc:51:3c:90: bb:93:b4:66:27:67:83:89:f0:cd:19:37:58:ab:03:d1:28:f4: fd:7a:24:53:94:60:d0:df:f7:ea:f3:96:50:82:44:88:d1:b9: 1e:ef:20:93:80:e7:ca:24:2d:64:32:01:01:87:ab:d3:f8:b6: 48:70:77:2a:22:27:86:eb:fa:d4:9e:c2:c9:37:16:40:ca:19: 84:ef:4f:48:fe:fb:3b:dd:f1:0f:4e:de:49:41:f3:50:e5:d9: 7a:f6:da:04:c0:72:71:73:38:36:d6:26:3b:02:9c:fc:36:dd: 78:6d:53:16:59:ca:28:d5:02:96:fb:d2:72:72:09:71:b8:97: cb:e3:f3:27:f7:38:61:60:ff:3c:08:7c:50:3b:4b:59:0c:52: 0d:f2:ba:fa:d6:f3:c2:b4:60:d0:21:79:6f:cd:07:6e:42:7f: e3:a3:08:89:f2:53:66:0c:b7:82:8e:de:53:56:2d:40:bc:b8: aa:52:7f:7b:8b:2e:37:4c:a4:d7:90:0f:84:0f:e2:8e:13:69: 14:db:d8:52:c5:6d:22:c1:52:86:5c:5e:22:ca:42:62:ad:e3: 03:c1:01:e6:b8:1c:1e:7e:d0:ec:e5:a4:05:cd:05:fe:db:27: da:47:02:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzI3NzExMC8GA1UEBRMoRDgzQjkzRTMxRTkzOTkzN0Q4Q0IxNUZFMzlDQTVFNkU4 RkVBRkE5QjAeFw0yNDA1MTkwODA4MzFaFw0yNDA1MjYwODA4MzFaMBgxFjAUBgNV BAMTDTY2NDliMzgwLTE1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8mGYIf3E7J89WjDnAh+l0kZAvuM1xjGkL+zZ0s08vtuheWKy/7LS7DgF//2Zv D5zfNVXxWjlqJr07qC+Nxt1Ti8HjA8IizEbmEtQ2ScSw4K10kjPv47NyJZZg/0N0 8ieSREVkMQfM9sqRI5xfqHAvVKS0RdQO2Kli010LSuZunRnQDwNvtYFnWosIBJTE KnO2omifNXGvCayAoK4Nr2Cm3TH+UYVDNFBv9qnJhBknxbRizwsVU7cs8a8TL2+M sLUC2VYK6JEPpQbgw4AVIfdPJYTH903Y9+JZ/vCifAL+jBfV3X6PvaOM1c/Ke/C+ OFV31Whfg8yl+/1zmgpuWqtpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4LbWiSer 2g3r0zGPAPCScUgyorUwHwYDVR0jBBgwFoAU2DuT4x6TmTfYyxX+Ocpebo/q+psw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Mjc3LzQzQTdFODk0QjU2 MDExRUU5MTFDNUQ0RkM0RjlBRTAyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1w cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkR1VDR4NlRtVGZZeXhYLU9jcGVib19xLXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 Mjc3LzQzQTdFODk0QjU2MDExRUU5MTFDNUQ0RkM0RjlBRTAyLzJEdVQ0eDZUbVRm WXl4WC1PY3BlYm9fcS1wcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEpbk/s7j+0Q65gWFchdvFE8kLuTtGYnZ4OJ8M0ZN1irA9Eo9P16JFOU YNDf9+rzllCCRIjRuR7vIJOA58okLWQyAQGHq9P4tkhwdyoiJ4br+tSewsk3FkDK GYTvT0j++zvd8Q9O3klB81Dl2Xr22gTAcnFzODbWJjsCnPw23XhtUxZZyijVApb7 0nJyCXG4l8vj8yf3OGFg/zwIfFA7S1kMUg3yuvrW88K0YNAheW/NB25Cf+OjCIny U2YMt4KO3lNWLUC8uKpSf3uLLjdMpNeQD4QP4o4TaRTb2FLFbSLBUoZcXiLKQmKt 4wPBAea4HB5+0OzlpAXNBf7bJ9pHAlI= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org