$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: hciUdaApgIfVlIevFpKAifldGyZZ/XCk/+HhTsLAYWc= Subject key identifier: EC:F1:B1:2D:CE:0D:D7:DA:C4:B2:CB:80:38:9A:CA:27:F2:9C:99:F5 Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0B17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0B12 Signing time: Sat 18 May 2024 19:51:28 +0000 Manifest this update: Sat 18 May 2024 19:51:27 +0000 Manifest next update: Sat 25 May 2024 19:51:27 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: fUHSJnaNDm3p+LDwtREbiVeS6eGkVt9MYUDP58z9JtY=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: 66LgwR/IO0VDy2UoaFY/y7+7LLQbd/9JqRxVDsCxA1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: May 18 19:51:27 2024 GMT Not After : May 25 19:51:27 2024 GMT Subject: CN=664906c0-c439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5a:21:37:72:cc:35:51:17:d8:a5:27:cf:26: a4:dd:c1:8d:97:34:15:56:bf:48:5b:3c:12:5a:17: f1:ad:c8:6b:93:d7:3b:22:d9:c7:f4:5a:4d:ee:63: f8:82:72:aa:e7:bc:f8:2e:7f:a5:d4:ac:8f:60:f7: 5c:a9:93:d4:63:59:3f:7e:5d:bf:8f:1e:d7:04:70: 27:66:fb:a6:59:89:e4:62:ab:2f:2d:7e:23:17:42: 3c:10:e4:60:a0:98:ca:9b:c6:1d:a7:1b:3c:1d:a8: 7c:e2:7f:a5:41:3f:38:be:fe:e9:f0:c6:f6:e2:71: 03:f7:6b:86:b0:69:bb:0c:e0:94:88:b0:96:21:eb: ef:60:58:82:68:87:e0:bd:28:98:7c:25:8f:d3:2f: 44:23:40:1e:18:83:6d:80:1a:2d:a2:5d:5d:ad:a3: ba:01:d8:48:b1:ca:25:9b:a9:6f:35:7d:75:c2:ef: 27:05:89:f1:4f:6b:78:7b:fd:cf:87:e6:df:8e:66: 09:f4:e1:45:c8:58:81:6c:ee:07:53:63:29:d9:1e: c4:e3:56:53:b0:c5:c3:d0:f0:89:92:bf:b0:a0:53: 51:d1:1e:68:a0:ac:97:63:3e:b3:d7:7f:39:f1:86: f8:20:22:26:17:79:27:24:9c:2f:f3:8a:99:95:ae: f4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F1:B1:2D:CE:0D:D7:DA:C4:B2:CB:80:38:9A:CA:27:F2:9C:99:F5 X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8e:b1:fc:e0:40:28:a8:13:6b:fd:7a:8e:05:6c:e5:e2:5a: 53:fa:fc:4a:08:05:d5:07:08:15:35:c1:36:c2:f6:15:23:4b: f7:8e:24:81:09:ae:b2:0d:18:6f:2a:5c:43:7f:de:f6:97:11: 94:1d:e6:00:2b:60:4b:5b:04:4b:41:55:e9:09:4f:3d:b3:61: 04:e8:22:e5:c1:bc:b3:70:5d:eb:15:85:c4:27:47:fe:7d:05: c0:6e:97:b3:29:50:ff:a4:5b:9d:c7:3d:8b:c1:5b:ac:3f:bc: 81:89:e1:3b:ed:e5:2d:a1:1f:3b:25:68:04:18:f8:a5:c3:aa: b5:26:5f:aa:0e:1b:ed:6a:33:2e:da:97:b7:37:1b:85:6b:81: 89:45:a0:38:e4:2f:60:dd:66:6a:8b:76:99:df:3e:0a:51:ac: f5:68:a7:20:c2:d5:34:64:e2:1c:92:61:04:f7:05:76:13:f9: 74:c9:7e:72:03:e6:c9:7d:de:a6:85:6a:4a:80:d2:d9:b8:e0: 50:94:a8:a2:9f:23:08:e4:d0:3d:69:4e:54:de:c5:5e:5b:bf: 37:69:4f:47:21:12:0c:24:88:19:40:c2:72:23:64:c4:40:35: a4:a9:d8:dc:c4:b0:d4:4e:8e:e7:f3:11:29:9d:1f:00:79:96: cb:fe:55:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjQwNTE4MTk1MTI3WhcNMjQwNTI1MTk1MTI3WjAYMRYwFAYD VQQDEw02NjQ5MDZjMC1jNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1ohN3LMNVEX2KUnzyak3cGNlzQVVr9IWzwSWhfxrchrk9c7ItnH9FpN7mP4 gnKq57z4Ln+l1KyPYPdcqZPUY1k/fl2/jx7XBHAnZvumWYnkYqsvLX4jF0I8EORg oJjKm8Ydpxs8Hah84n+lQT84vv7p8Mb24nED92uGsGm7DOCUiLCWIevvYFiCaIfg vSiYfCWP0y9EI0AeGINtgBotol1draO6AdhIscolm6lvNX11wu8nBYnxT2t4e/3P h+bfjmYJ9OFFyFiBbO4HU2Mp2R7E41ZTsMXD0PCJkr+woFNR0R5ooKyXYz6z1385 8Yb4ICImF3knJJwv84qZla703wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzxsS3O DdfaxLLLgDiayifynJn1MB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOjrH84EAoqBNr/XqOBWzl4lpT+vxKCAXVBwgVNcE2wvYVI0v3jiSB Ca6yDRhvKlxDf972lxGUHeYAK2BLWwRLQVXpCU89s2EE6CLlwbyzcF3rFYXEJ0f+ fQXAbpezKVD/pFudxz2LwVusP7yBieE77eUtoR87JWgEGPilw6q1Jl+qDhvtajMu 2pe3NxuFa4GJRaA45C9g3WZqi3aZ3z4KUaz1aKcgwtU0ZOIckmEE9wV2E/l0yX5y A+bJfd6mhWpKgNLZuOBQlKiinyMI5NA9aU5U3sVeW783aU9HIRIMJIgZQMJyI2TE QDWkqdjcxLDUTo7n8xEpnR8AeZbL/lWj -----END CERTIFICATE-----Generated at Sat May 18 20:48:20 2024 by rpki-client on console-fra.rpki-client.org