$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: k+mMAKCR+TKGmBzN/3m/gouBanLpDQt94eIl96ITOvw= Subject key identifier: 59:33:4B:E0:DA:85:7E:A3:50:D5:83:8D:3F:59:71:AD:2A:C6:15:2D Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 026A Signing time: Sun 19 May 2024 03:48:33 +0000 Manifest this update: Sun 19 May 2024 03:48:32 +0000 Manifest next update: Sun 26 May 2024 03:48:32 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: 4VNasdU4H8suDZEKBFyI+emzv0ptkX2oFNFacuPvTPw=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: qn3Hd4WEpnWFP0NC57cKVAbwF0DX8ivcyDHg1oU42uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: May 19 03:48:32 2024 GMT Not After : May 26 03:48:32 2024 GMT Subject: CN=66497691-04a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:31:b8:f1:c0:7a:7f:42:38:86:63:75:39: 99:f2:2b:e6:e9:ae:69:f7:14:dc:aa:29:66:75:23: 03:64:bf:a6:c8:ba:e8:3d:de:f0:aa:46:13:35:94: 65:dc:c6:b2:61:c7:51:7a:42:93:ea:3d:a4:c9:12: 53:79:32:b2:59:f0:0a:36:29:12:7e:57:db:da:44: 93:d1:23:09:f5:7a:25:84:d1:26:be:a1:bc:27:23: 25:50:bc:61:18:eb:bf:df:e6:29:56:54:9e:c1:75: 78:f6:d1:dd:85:e4:fb:d2:31:bc:ef:79:4c:7d:a9: 24:25:dc:20:26:5e:96:03:38:d3:6c:f9:ea:e3:d1: a3:f8:20:e8:11:16:4f:97:c5:a1:ee:54:a0:9f:39: c3:1d:0c:e4:69:02:7f:14:01:ef:b7:26:50:fe:a8: f1:79:a8:8a:1c:f7:64:22:17:ea:a8:10:af:b8:da: 29:89:0a:71:0c:1d:c8:0b:91:03:55:58:0b:16:c5: 7e:c6:ad:54:2e:62:9c:25:f5:05:fb:d9:33:ff:af: 24:1e:8c:b5:b7:54:8a:20:bb:23:f4:45:c5:c4:3b: 1d:80:fd:23:58:8c:43:c8:d7:50:33:8f:5a:eb:9c: 1d:d9:e0:f4:22:34:55:4e:20:35:80:f1:d2:3e:fb: d6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:33:4B:E0:DA:85:7E:A3:50:D5:83:8D:3F:59:71:AD:2A:C6:15:2D X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b8:d5:54:3e:b3:72:5f:a0:0b:64:d5:fd:3c:17:00:f8:5f: a2:00:61:63:1b:d0:ba:b6:da:87:e4:07:0f:0b:21:1f:7a:fd: 02:f4:12:2b:2d:0b:78:02:ae:6d:22:40:ef:af:4d:98:d5:ed: 35:93:00:f7:9d:78:6a:23:b5:b9:d4:95:d9:ca:06:5a:58:bc: b8:cd:61:f8:02:44:99:2c:4e:ef:f6:ab:57:d1:bd:5e:42:8a: 7a:0a:4e:93:b2:5d:8e:bb:71:83:6c:e7:e7:4c:7e:40:39:bd: a9:ae:e0:48:87:88:78:21:a8:aa:9b:b8:36:cf:37:4c:dd:8f: b1:1c:74:0a:95:5c:d3:45:69:dc:23:21:9d:ee:ca:ea:07:20: ca:5e:73:ee:e1:3a:d3:45:9d:14:0a:87:35:4b:5e:08:16:ed: bd:f6:92:51:d8:2a:42:2a:f5:19:83:22:47:9f:b9:01:91:15: 09:ac:d5:ef:32:9d:e4:7b:71:3a:fd:98:51:96:8c:b5:82:c3: 9c:69:16:3b:6e:43:be:6f:fa:3c:60:67:fe:fc:28:6d:94:a3: 5c:43:d9:94:c5:7d:e3:19:26:4c:19:64:6f:99:03:3f:ac:56: ce:3d:b4:a9:da:e3:8c:95:bc:29:4d:3e:67:a2:01:2e:95:75: d6:be:ce:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjQwNTE5MDM0ODMyWhcNMjQwNTI2MDM0ODMyWjAYMRYwFAYD VQQDEw02NjQ5NzY5MS0wNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+sxuPHAen9COIZjdTmZ8ivm6a5p9xTcqilmdSMDZL+myLroPd7wqkYTNZRl 3MayYcdRekKT6j2kyRJTeTKyWfAKNikSflfb2kST0SMJ9XolhNEmvqG8JyMlULxh GOu/3+YpVlSewXV49tHdheT70jG873lMfakkJdwgJl6WAzjTbPnq49Gj+CDoERZP l8Wh7lSgnznDHQzkaQJ/FAHvtyZQ/qjxeaiKHPdkIhfqqBCvuNopiQpxDB3IC5ED VVgLFsV+xq1ULmKcJfUF+9kz/68kHoy1t1SKILsj9EXFxDsdgP0jWIxDyNdQM49a 65wd2eD0IjRVTiA1gPHSPvvWWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkzS+Da hX6jUNWDjT9Zca0qxhUtMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCluNVUPrNyX6ALZNX9PBcA+F+iAGFjG9C6ttqH5AcPCyEfev0C9BIr LQt4Aq5tIkDvr02Y1e01kwD3nXhqI7W51JXZygZaWLy4zWH4AkSZLE7v9qtX0b1e Qop6Ck6Tsl2Ou3GDbOfnTH5AOb2pruBIh4h4Iaiqm7g2zzdM3Y+xHHQKlVzTRWnc IyGd7srqByDKXnPu4TrTRZ0UCoc1S14IFu299pJR2CpCKvUZgyJHn7kBkRUJrNXv Mp3ke3E6/ZhRloy1gsOcaRY7bkO+b/o8YGf+/ChtlKNcQ9mUxX3jGSZMGWRvmQM/ rFbOPbSp2uOMlbwpTT5nogEulXXWvs6P -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org