$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: VO/+qXSb7/bctCZHprs7maICD6LxySrqMxNjX8f+DF4= Subject key identifier: 57:35:F4:32:AF:A6:F6:31:1E:DA:1E:32:8D:CB:6F:7B:CF:AA:21:6B Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 24 Signing time: Sun 19 May 2024 08:33:38 +0000 Manifest this update: Sun 19 May 2024 08:33:37 +0000 Manifest next update: Sun 26 May 2024 08:33:37 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: uFvahXYVfRTAfTyTfnvZmgfjoQVMDEYQn+99fr3UHfk=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: gkDhVsMy2wpjgH+HYZGfejjLuVLx5h/KbFkHjnnS0sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: May 19 08:33:37 2024 GMT Not After : May 26 08:33:37 2024 GMT Subject: CN=6649b962-76d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:61:70:6d:e9:ca:f0:ac:e5:20:2b:6e:36:e1: 8b:90:a7:c3:8f:ca:a9:8a:c8:df:10:15:92:8b:74: 1b:e5:74:df:f2:e0:35:34:e7:c8:c4:d4:82:5e:2b: 4e:4e:c9:bd:5b:1f:e4:a9:c5:d0:c6:e2:cc:ea:a9: 9a:2b:e9:1b:38:43:34:95:e6:29:7f:02:6a:ed:b2: f0:c9:2b:e7:86:40:a7:79:0c:04:5e:4e:8b:82:f7: dc:d9:96:8b:f2:fb:2a:01:10:f8:16:58:91:b9:c9: 40:b7:d9:f4:ac:02:69:f0:0d:53:20:ab:42:eb:e7: e1:f2:46:a9:1d:b5:eb:0f:f5:97:ee:2b:53:7c:ed: ce:a6:dc:89:48:c7:7d:7d:11:2d:4c:9f:22:cc:33: 53:22:21:1d:78:bd:45:36:65:ad:1e:3a:ca:83:4b: d7:84:b8:2f:29:93:a7:3d:67:71:8b:0a:da:1b:be: e4:94:e2:f1:3e:35:d6:e2:05:d0:ae:96:8d:cf:29: 82:f1:bc:63:0a:ff:a6:84:c0:71:e4:61:41:21:4a: f8:ca:86:24:6b:5f:8b:09:1c:a5:04:c2:f9:f1:a5: ce:ba:1d:21:dd:4e:d9:f0:a9:00:fa:f6:53:94:ad: 95:f4:f9:19:b8:ba:1d:6d:1a:24:51:2d:c2:51:e6: 62:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:35:F4:32:AF:A6:F6:31:1E:DA:1E:32:8D:CB:6F:7B:CF:AA:21:6B X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:57:6b:fb:f8:0f:11:b8:47:88:8a:e6:a4:ba:75:87:a5:f3: c8:1c:f2:6c:c2:e6:05:e5:79:96:ab:3a:21:32:f4:6f:15:75: 60:d6:86:70:a0:63:9f:eb:ba:56:73:51:df:58:fe:b1:a6:54: 00:c6:17:9e:91:c1:67:ef:ed:ba:20:3f:95:5a:09:45:7c:be: e2:b5:3d:54:7c:29:62:74:d5:f7:ba:15:32:3d:9e:3a:92:2e: 88:f9:43:31:9c:6f:be:24:c1:2a:4d:3d:c9:c4:9c:54:d1:f3: cf:cf:ef:84:23:57:94:ff:67:30:e6:3d:fb:37:8e:34:e4:08: e2:f7:3b:3b:41:42:34:65:63:f7:d3:06:b4:f7:82:15:99:33: 87:be:4c:ba:32:01:bd:71:a0:ba:4a:d5:5c:30:eb:79:9c:0b: a7:4c:61:f1:1b:2f:31:9b:4a:c9:f9:b2:8a:09:c5:1b:8c:ea: 55:38:15:d9:07:93:46:a2:b0:a6:2c:e5:6c:fc:e8:fe:19:fa: 6e:e3:00:61:e9:12:af:e1:18:fb:38:2b:2b:e7:3c:21:c0:80: bb:5b:7f:85:8a:d7:0d:33:68:53:ca:2a:30:54:8e:a0:bb:5d: cb:04:c9:18:86:da:66:8f:90:ab:fe:25:58:7d:9f:a3:11:e6: 51:0a:22:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjVBQzExMC8GA1UEBRMoQTEwRjU3ODNDOEY5QTZEOTREMjlCNEFBOTBDNTZFMDE2 QkI1MTQ1NjAeFw0yNDA1MTkwODMzMzdaFw0yNDA1MjYwODMzMzdaMBgxFjAUBgNV BAMTDTY2NDliOTYyLTc2ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYYXBt6crwrOUgK2424YuQp8OPyqmKyN8QFZKLdBvldN/y4DU058jE1IJeK05O yb1bH+SpxdDG4szqqZor6Rs4QzSV5il/AmrtsvDJK+eGQKd5DAReTouC99zZlovy +yoBEPgWWJG5yUC32fSsAmnwDVMgq0Lr5+HyRqkdtesP9ZfuK1N87c6m3IlIx319 ES1MnyLMM1MiIR14vUU2Za0eOsqDS9eEuC8pk6c9Z3GLCtobvuSU4vE+NdbiBdCu lo3PKYLxvGMK/6aEwHHkYUEhSvjKhiRrX4sJHKUEwvnxpc66HSHdTtnwqQD69lOU rZX0+Rm4uh1tGiRRLcJR5mK5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVzX0Mq+m 9jEe2h4yjctve8+qIWswHwYDVR0jBBgwFoAUoQ9Xg8j5ptlNKbSqkMVuAWu1FFYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2NUFDL0NCNzRGOEJFRTFF MDExRUVBRjZFMUU2OEM0RjlBRTAyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZG WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1E5WGc4ajVwdGxOS2JTcWtNVnVBV3UxRkZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 NUFDL0NCNzRGOEJFRTFFMDExRUVBRjZFMUU2OEM0RjlBRTAyL29ROVhnOGo1cHRs TktiU3FrTVZ1QVd1MUZGWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKBXa/v4DxG4R4iK5qS6dYel88gc8mzC5gXleZarOiEy9G8VdWDWhnCg Y5/rulZzUd9Y/rGmVADGF56RwWfv7bogP5VaCUV8vuK1PVR8KWJ01fe6FTI9njqS Loj5QzGcb74kwSpNPcnEnFTR88/P74QjV5T/ZzDmPfs3jjTkCOL3OztBQjRlY/fT BrT3ghWZM4e+TLoyAb1xoLpK1Vww63mcC6dMYfEbLzGbSsn5sooJxRuM6lU4FdkH k0aisKYs5Wz86P4Z+m7jAGHpEq/hGPs4KyvnPCHAgLtbf4WK1w0zaFPKKjBUjqC7 XcsEyRiG2maPkKv+JVh9n6MR5lEKIlA= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org