$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: qlq1BT5KjxWQUnNAsDCGw0NAbCKm4j3Eg5VpAIHpA/8= Subject key identifier: 29:B8:EB:8A:7B:BD:D2:41:78:96:16:E3:A8:3A:06:2B:F7:0D:B1:10 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0E9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0E65 Signing time: Sat 18 May 2024 18:26:38 +0000 Manifest this update: Sat 18 May 2024 18:26:37 +0000 Manifest next update: Sat 25 May 2024 18:26:37 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: nQquftwGpyo8c2hoOpXRF946CY4o0VTcWA0FubvJL/Y=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: fwsN8+X2NyhZzJXRx7yY58ks0WUJR98aQpYJ1O4lV4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3743 (0xe9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: May 18 18:26:37 2024 GMT Not After : May 25 18:26:37 2024 GMT Subject: CN=6648f2dd-e1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:76:73:4f:4e:9a:48:fc:34:63:ad:e7:77:80: e7:62:72:e7:e0:47:91:a4:12:06:c1:af:9f:3c:17: dc:0f:59:00:cb:a2:32:ca:bd:12:a1:54:3d:8d:e3: 76:65:43:27:41:9d:f1:8d:77:97:5d:53:7d:a8:77: da:b8:79:f7:97:9b:bd:16:40:53:e4:d0:f2:53:35: fd:dd:96:f2:b4:0d:ec:49:2a:e7:89:17:7d:59:ac: 1f:d0:ad:3b:2c:25:a3:eb:9c:4d:c0:5e:06:c1:37: 05:eb:2a:09:e5:c5:5b:5a:24:40:01:3b:d6:f3:8d: 24:18:33:e6:94:e8:fa:e0:66:ba:78:33:9b:2b:bb: 14:8b:80:66:c9:7c:5c:29:63:10:06:df:b7:f3:0a: 5c:85:75:4a:1d:27:3f:d8:a2:70:41:4b:30:5b:02: df:1b:e2:56:6b:6a:be:e6:4f:31:b8:ee:56:d1:8c: 43:02:8a:5b:7b:62:fa:77:20:53:f8:81:9d:3c:5e: 28:02:7b:95:02:5f:83:61:44:fe:61:ac:67:f9:b5: 69:06:0e:a8:c7:c5:63:18:89:02:bd:08:3b:c9:7e: 06:01:de:75:9c:f5:be:cf:2d:9c:93:82:7c:f5:97: 4b:95:a1:19:17:77:b0:80:60:e6:25:f3:6a:21:d8: 77:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B8:EB:8A:7B:BD:D2:41:78:96:16:E3:A8:3A:06:2B:F7:0D:B1:10 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e1:da:66:1e:fc:07:e4:a1:9c:7e:75:d8:34:da:24:e0:ad: 22:db:0f:95:fc:d1:99:bc:28:d1:6b:1f:ac:fb:4b:04:f7:ef: 5c:35:ef:80:a9:ea:1a:1a:ef:55:0c:e1:1b:13:20:08:a3:7c: 5b:bc:a8:07:bc:35:5f:17:3f:09:5a:f1:06:f4:cc:ab:19:52: f2:7f:2f:77:98:46:ea:da:12:aa:cb:6b:49:02:49:d3:b4:67: ba:52:76:94:0f:b0:4f:a0:1a:6f:f0:18:34:7a:6a:17:30:47: b3:a8:9e:a2:9f:76:15:f2:94:e7:e6:95:ab:0d:03:82:77:a8: 5b:0a:72:c4:fd:e9:7e:5d:75:5a:0d:fe:08:0f:c3:8e:0e:27: c9:42:b2:7b:4f:ff:7b:20:ad:c9:96:16:f0:cf:35:55:27:07: 9d:5e:83:35:80:7d:6f:32:0f:ce:ec:bf:31:3a:28:1c:0f:a8: db:e4:a6:18:a9:d4:e4:27:8e:91:9f:6c:65:27:d3:2d:45:64: 96:da:a2:c4:c7:d3:6f:35:e8:73:23:41:8f:4f:d8:97:38:75: c9:bf:62:65:9d:b9:22:83:5a:ab:c9:d9:a6:70:ce:93:3e:b8: 04:d8:61:94:72:c5:e4:c6:b5:98:05:4f:bd:91:b8:ee:d1:23: 84:68:4f:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjQwNTE4MTgyNjM3WhcNMjQwNTI1MTgyNjM3WjAYMRYwFAYD VQQDEw02NjQ4ZjJkZC1lMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonZzT06aSPw0Y63nd4DnYnLn4EeRpBIGwa+fPBfcD1kAy6Iyyr0SoVQ9jeN2 ZUMnQZ3xjXeXXVN9qHfauHn3l5u9FkBT5NDyUzX93ZbytA3sSSrniRd9Wawf0K07 LCWj65xNwF4GwTcF6yoJ5cVbWiRAATvW840kGDPmlOj64Ga6eDObK7sUi4BmyXxc KWMQBt+38wpchXVKHSc/2KJwQUswWwLfG+JWa2q+5k8xuO5W0YxDAopbe2L6dyBT +IGdPF4oAnuVAl+DYUT+Yaxn+bVpBg6ox8VjGIkCvQg7yX4GAd51nPW+zy2ck4J8 9ZdLlaEZF3ewgGDmJfNqIdh3pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm464p7 vdJBeJYW46g6Biv3DbEQMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC4dpmHvwH5KGcfnXYNNok4K0i2w+V/NGZvCjRax+s+0sE9+9cNe+A qeoaGu9VDOEbEyAIo3xbvKgHvDVfFz8JWvEG9MyrGVLyfy93mEbq2hKqy2tJAknT tGe6UnaUD7BPoBpv8Bg0emoXMEezqJ6in3YV8pTn5pWrDQOCd6hbCnLE/el+XXVa Df4ID8OODifJQrJ7T/97IK3JlhbwzzVVJwedXoM1gH1vMg/O7L8xOigcD6jb5KYY qdTkJ46Rn2xlJ9MtRWSW2qLEx9NvNehzI0GPT9iXOHXJv2Jlnbkig1qrydmmcM6T PrgE2GGUcsXkxrWYBU+9kbju0SOEaE+w -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org