$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: ts+ZaR4WEUnZlCChWf+AsO/HvlVAurj0foO6yY9dkvE= Subject key identifier: 06:E4:2D:5B:1D:BB:5F:5F:D1:26:2E:F5:40:FA:43:7B:87:C0:81:80 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 09E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 09D7 Signing time: Sat 18 May 2024 20:46:39 +0000 Manifest this update: Sat 18 May 2024 20:46:38 +0000 Manifest next update: Sat 25 May 2024 20:46:38 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: BwHcJ1Vl1/Feh46cinZ1e6x6E9Kp0UanwXRnPnEHIvI=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: wEPT/JxoXR8vXmErciWYLyiDrtNHIrJoWWSk93OARbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2528 (0x9e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: May 18 20:46:38 2024 GMT Not After : May 25 20:46:38 2024 GMT Subject: CN=664913ae-34f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:2d:d2:d7:f7:8b:67:20:a5:c4:2e:d0:fc: db:fb:2e:fb:da:cb:67:37:df:27:49:5a:ba:ec:7c: 2b:55:f3:f4:b1:3a:03:10:0f:df:bb:2a:14:79:7e: 25:cc:17:25:e4:7f:9a:21:b1:75:b8:ee:85:e4:0f: 09:6e:05:9b:f7:64:bb:80:2d:a9:c2:f8:7e:03:cd: 70:fc:79:58:ad:fb:b6:7d:d4:ae:db:8a:1a:81:3e: b8:b8:41:c8:38:79:09:89:fd:74:40:95:6a:d7:2c: 2e:97:b8:8f:8c:e7:d3:f7:c8:26:8b:df:74:a1:a9: 0d:71:81:d3:7c:db:14:fd:22:20:8d:4a:af:bd:51: 24:c8:fd:f2:bc:49:42:4f:71:0a:1b:0f:7d:52:44: 84:5b:de:90:86:56:c1:d0:c4:00:49:e4:ed:4c:30: 40:33:40:55:52:34:a4:7a:75:99:d8:b8:96:a5:81: e5:79:c1:ec:5c:0f:d1:1d:62:15:0b:c5:4a:a3:5b: 64:b6:6b:77:34:14:d3:8d:24:34:bf:da:39:7f:26: 89:9c:36:8c:1e:6a:98:7a:3d:e8:da:51:5c:17:ad: e9:ce:f6:f4:a6:40:e8:7f:9a:cb:44:2c:69:7d:23: 86:05:79:63:c5:7f:5f:fb:b9:65:2f:e4:db:4b:c9: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E4:2D:5B:1D:BB:5F:5F:D1:26:2E:F5:40:FA:43:7B:87:C0:81:80 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:a7:9a:20:5f:54:b7:3c:9b:ca:35:0c:55:c5:9e:f1:e9:60: 48:84:7f:8a:da:e0:ba:27:fe:5c:4d:5a:ae:7b:5c:7a:a6:0f: fe:25:9e:6e:7d:8f:c0:0f:18:b8:e7:57:c4:30:28:a3:83:d7: 25:5d:aa:2f:6d:e0:91:60:91:fb:3f:ef:37:c1:c4:0f:10:a5: d3:01:89:f6:9a:e4:84:c3:1c:2e:72:93:ce:43:07:1c:a2:dd: 1c:87:5c:48:a3:19:de:f0:70:4b:78:cf:52:39:44:cc:a9:33: 25:8e:2e:f8:dd:32:80:e5:2f:f2:93:17:c3:a1:26:ff:72:6d: a3:57:c8:37:d2:0b:7b:bb:d7:8e:f2:df:d9:8a:1c:e8:6c:80: c9:cb:46:be:11:3f:0d:f5:81:3c:27:f6:1a:d0:c5:b5:d4:88: 26:8a:4c:3e:9f:b5:bf:72:3b:02:ab:6d:f3:f1:e6:13:8e:7a: 3d:c2:cf:9a:5e:41:6a:0f:97:c3:0f:8d:5e:da:35:b9:ec:9f: 69:65:c8:95:41:a8:cc:76:98:e6:d0:bd:72:f1:38:4e:17:08: 65:d2:37:3c:2a:bc:4f:b1:77:84:9b:0f:ce:61:ec:e0:69:c7: 1d:23:85:6e:d7:9b:ca:f0:2d:50:e3:7f:04:68:4c:1a:03:d4: 63:7a:2a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjQwNTE4MjA0NjM4WhcNMjQwNTI1MjA0NjM4WjAYMRYwFAYD VQQDEw02NjQ5MTNhZS0zNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdUt0tf3i2cgpcQu0Pzb+y772stnN98nSVq67HwrVfP0sToDEA/fuyoUeX4l zBcl5H+aIbF1uO6F5A8JbgWb92S7gC2pwvh+A81w/HlYrfu2fdSu24oagT64uEHI OHkJif10QJVq1ywul7iPjOfT98gmi990oakNcYHTfNsU/SIgjUqvvVEkyP3yvElC T3EKGw99UkSEW96QhlbB0MQASeTtTDBAM0BVUjSkenWZ2LiWpYHlecHsXA/RHWIV C8VKo1tktmt3NBTTjSQ0v9o5fyaJnDaMHmqYej3o2lFcF63pzvb0pkDof5rLRCxp fSOGBXljxX9f+7llL+TbS8lE1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbkLVsd u19f0SYu9UD6Q3uHwIGAMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEp5ogX1S3PJvKNQxVxZ7x6WBIhH+K2uC6J/5cTVque1x6pg/+JZ5u fY/ADxi451fEMCijg9clXaovbeCRYJH7P+83wcQPEKXTAYn2muSEwxwucpPOQwcc ot0ch1xIoxne8HBLeM9SOUTMqTMlji743TKA5S/ykxfDoSb/cm2jV8g30gt7u9eO 8t/ZihzobIDJy0a+ET8N9YE8J/Ya0MW11Igmikw+n7W/cjsCq23z8eYTjno9ws+a XkFqD5fDD41e2jW57J9pZciVQajMdpjm0L1y8ThOFwhl0jc8KrxPsXeEmw/OYezg accdI4Vu15vK8C1Q438EaEwaA9Rjeirt -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org