$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: 1YMHaIzP2vyhlq2AdXFZ2dLmvJxhs7dzl8u/yc/U7zs= Subject key identifier: C8:CB:D3:A1:1C:4D:E5:48:6D:CB:7C:10:B7:54:03:FA:8E:D4:9E:E3 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 58 Signing time: Sun 19 May 2024 07:53:59 +0000 Manifest this update: Sun 19 May 2024 07:53:58 +0000 Manifest next update: Sun 26 May 2024 07:53:58 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: 1oJUD0ZfdAHghp0uUR+R+CdlJsEJBFqA7WaFCy76za0=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: yAMy5FB24dlRlytngKwHIjnmCoA+51iB9Qs1Onhhgps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: May 19 07:53:58 2024 GMT Not After : May 26 07:53:58 2024 GMT Subject: CN=6649b016-4ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:36:20:ac:70:8b:73:d0:c0:0b:56:69:4b: 41:8c:d6:56:0c:5e:a0:02:23:ea:aa:fe:91:cc:b5: ee:6f:30:63:3b:da:1e:ba:9d:bf:2e:87:19:03:fc: fd:9f:5e:97:28:09:4c:6c:05:02:93:d2:e6:aa:32: de:a8:78:68:dc:90:de:c6:b0:4e:98:e2:8b:a1:fe: 99:20:79:d2:e5:af:69:ab:8e:2a:33:e2:8a:b7:8e: d8:6a:29:b3:db:95:b5:af:f6:0a:7c:ef:fa:20:6c: e4:8c:e5:dd:d9:a8:1d:52:89:69:a6:a3:5b:ed:93: e3:1a:f6:98:c4:fc:5d:37:59:a0:11:5b:16:66:fe: 76:7a:f4:67:e1:1f:8d:5d:d4:6e:22:d0:7f:79:c4: cf:58:65:e4:9c:7e:a2:c4:66:6b:0b:98:e3:74:ee: e6:4e:8b:f3:21:78:bc:9e:a1:55:3b:83:98:5e:9a: 90:f3:d9:2b:7a:62:75:f8:5e:b4:39:f9:b9:6c:47: b6:f0:98:4a:a7:25:dc:86:bc:e6:9c:2b:23:dd:87: b7:4b:d5:0a:91:1b:8a:51:d8:8f:b0:36:4e:dd:c9: fb:14:37:7e:34:32:59:f2:4a:ff:11:eb:c7:c4:c2: 5f:cd:87:6d:c2:ec:73:4b:ba:1f:8d:06:cd:f6:bc: 9b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CB:D3:A1:1C:4D:E5:48:6D:CB:7C:10:B7:54:03:FA:8E:D4:9E:E3 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:04:77:58:74:41:a5:e9:d5:59:a2:dd:05:d4:23:f2:cd:37: 19:d5:0b:40:63:76:6e:16:fe:87:5d:a1:4f:ae:bb:e3:2b:5d: c0:05:57:02:51:c7:ce:47:b5:af:a6:06:9c:07:2e:5f:dc:57: 48:62:c5:e9:d2:61:b1:96:08:59:10:b7:3a:13:71:f9:d9:79: b5:79:11:24:aa:9b:8c:dc:be:57:ac:dc:49:d1:77:0e:0d:7b: 2e:0a:43:51:fd:2b:fe:a2:6b:be:19:c2:c8:12:28:96:e8:63: 57:41:1c:29:6c:fc:07:5d:d2:5c:43:ea:4e:15:28:0a:fe:45: 37:55:4e:87:45:99:58:7a:0f:92:3b:92:02:e9:2d:ab:5a:e1: 2d:fa:3a:40:8a:b5:e9:a7:90:6d:1a:0c:a8:ce:de:cb:1e:13: e4:b8:ca:0d:f8:90:7a:3f:6a:64:bf:70:fa:f9:39:b6:2a:16: 3b:a2:e3:ed:52:5d:a7:8e:b1:2b:b1:12:78:d3:fb:5b:f8:34: 70:37:d9:8e:41:9e:73:90:72:ed:1e:10:29:16:53:c0:a6:0e: 69:4e:d2:ae:e1:c5:7a:6c:e5:08:79:e0:50:a2:a3:b8:9a:ea: 56:17:c8:32:07:27:b9:46:7e:e7:b8:02:1a:ef:54:e4:eb:65: 6b:67:4d:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0IyMzExMC8GA1UEBRMoM0ExQTQwNzQ3MUQxQkYxQ0ExNTI1RjIxRjdERUNGNUE2 QTJBNjREODAeFw0yNDA1MTkwNzUzNThaFw0yNDA1MjYwNzUzNThaMBgxFjAUBgNV BAMTDTY2NDliMDE2LTRjZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYHDYgrHCLc9DAC1ZpS0GM1lYMXqACI+qq/pHMte5vMGM72h66nb8uhxkD/P2f XpcoCUxsBQKT0uaqMt6oeGjckN7GsE6Y4ouh/pkgedLlr2mrjioz4oq3jthqKbPb lbWv9gp87/ogbOSM5d3ZqB1SiWmmo1vtk+Ma9pjE/F03WaARWxZm/nZ69GfhH41d 1G4i0H95xM9YZeScfqLEZmsLmON07uZOi/MheLyeoVU7g5hempDz2St6YnX4XrQ5 +blsR7bwmEqnJdyGvOacKyPdh7dL1QqRG4pR2I+wNk7dyfsUN340MlnySv8R68fE wl/Nh23C7HNLuh+NBs32vJs/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyMvToRxN 5Uhty3wQt1QD+o7UnuMwHwYDVR0jBBgwFoAUOhpAdHHRvxyhUl8h997PWmoqZNgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3QjIzLzc1NDVGMDNBOTdE MzExRUVBMjNDNjYwQkM0RjlBRTAyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpO Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2hwQWRISFJ2eHloVWw4aDk5N1BXbW9xWk5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 QjIzLzc1NDVGMDNBOTdEMzExRUVBMjNDNjYwQkM0RjlBRTAyL09ocEFkSEhSdnh5 aFVsOGg5OTdQV21vcVpOZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEQEd1h0QaXp1Vmi3QXUI/LNNxnVC0Bjdm4W/oddoU+uu+MrXcAFVwJR x85Hta+mBpwHLl/cV0hixenSYbGWCFkQtzoTcfnZebV5ESSqm4zcvles3EnRdw4N ey4KQ1H9K/6ia74ZwsgSKJboY1dBHCls/Add0lxD6k4VKAr+RTdVTodFmVh6D5I7 kgLpLata4S36OkCKtemnkG0aDKjO3sseE+S4yg34kHo/amS/cPr5ObYqFjui4+1S XaeOsSuxEnjT+1v4NHA32Y5BnnOQcu0eECkWU8CmDmlO0q7hxXps5Qh54FCio7ia 6lYXyDIHJ7lGfue4AhrvVOTrZWtnTcg= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org