$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 5Q6Roa9of2nHHptbAargFH8vF+HVcs4Vn5lh98PIcGA= Subject key identifier: B8:90:0D:DE:A8:F7:C7:10:22:77:99:95:68:7C:1D:2E:2F:AE:79:19 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 2F90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 2F65 Signing time: Sat 18 May 2024 15:42:35 +0000 Manifest this update: Sat 18 May 2024 15:42:35 +0000 Manifest next update: Sat 25 May 2024 15:42:35 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: ane1qjl8uH+LvZnItGIcIQz3i2y4pkj8kfmrp0rC770=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 6UbrYY1iOXlWNOTnAyeI6DSi94F29mJWVqlHyN0+RUM=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: TAgKYwPTkZ8hageKk+NKlzSupCsbw37DUDkQUCl6j34=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: sLQaLINOzLfbXUZhRFMU7vIj6ivulr5I3EWoRvanWh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12176 (0x2f90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: May 18 15:42:35 2024 GMT Not After : May 25 15:42:35 2024 GMT Subject: CN=6648cc6b-99aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:32:f9:9d:76:aa:ec:2b:34:07:22:46:d3: 37:d1:2b:64:a1:bc:da:9f:03:97:bf:80:45:8f:e2: 69:96:5e:4c:95:9b:51:07:be:cd:9c:bf:a6:b6:62: f8:79:47:3d:d0:ca:38:23:0e:53:d3:61:82:e0:94: 4e:ac:b7:92:e0:a1:03:8b:5e:48:2a:d7:e1:ad:d7: 37:72:db:ad:41:7b:5d:c3:a2:01:fc:07:31:4b:aa: 43:03:c7:0d:ff:56:6b:b0:5e:57:18:73:a9:45:c1: c0:a5:23:4d:cd:d3:a9:90:a1:7a:55:a3:4f:a6:e7: 56:57:03:17:ea:26:62:95:bb:23:6d:12:f3:13:13: d0:fe:44:7b:b5:51:c0:e6:bd:4e:42:e9:6e:f2:16: a5:71:b0:1a:ff:2c:79:66:e3:ef:51:4a:84:a9:2e: 0e:e6:36:99:91:76:85:be:40:8c:d7:f3:cb:13:04: f6:6d:a6:dd:10:f3:d3:73:91:fd:2b:40:39:bf:b1: 78:3a:fa:a5:07:54:11:d0:59:e4:2c:46:55:2f:76: d3:74:37:31:16:c1:fd:d5:c7:0a:91:14:fe:f7:98: 56:87:f8:ce:38:c4:a2:e2:01:2c:52:8b:ed:36:54: 9f:35:b5:d0:e3:e8:8f:a4:78:c8:e7:27:ef:56:44: a3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:0D:DE:A8:F7:C7:10:22:77:99:95:68:7C:1D:2E:2F:AE:79:19 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:98:00:f0:9e:71:8a:eb:c1:73:81:ce:d2:62:69:6e:2e:90: da:05:0a:0f:c7:89:2f:41:94:45:bb:54:9d:1f:ce:dc:54:aa: 14:34:a9:03:16:0e:98:6c:18:2c:cc:87:11:fd:13:77:cf:96: 88:13:47:d3:2b:eb:9d:0c:0d:a5:6f:c6:72:2e:83:40:fa:4f: bf:83:7c:f8:f5:a4:29:d5:34:cc:46:ba:b3:86:df:17:79:a8: 13:ba:ac:99:60:6f:0f:e5:21:b4:7f:f2:8b:ed:92:7a:0f:8d: 65:bb:ed:23:ac:ad:96:f6:bc:f8:ea:ad:98:26:06:a6:f5:ce: 35:07:95:ca:0f:c6:58:d4:72:e9:9b:56:5e:ff:e5:56:20:9d: dc:81:61:79:36:4b:41:82:5e:51:33:38:7c:49:a3:20:5f:08: 68:0b:65:df:b0:f6:a3:60:1d:0d:b0:0c:f7:2f:1e:51:3a:04: 09:07:5d:77:1b:c8:2e:99:b5:2a:e0:29:65:63:39:ea:9a:93: c7:04:93:04:0a:c0:ba:6f:78:74:92:c7:21:91:cc:ec:fa:03: 31:85:83:30:de:ea:ae:3b:08:d0:32:23:a5:30:9d:a5:a1:19: 71:99:2a:4e:c4:7c:b4:dc:fb:dd:85:8b:f7:01:dc:78:41:af: 69:1a:bd:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjQwNTE4MTU0MjM1WhcNMjQwNTI1MTU0MjM1WjAYMRYwFAYD VQQDEw02NjQ4Y2M2Yi05OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAud4y+Z12quwrNAciRtM30StkobzanwOXv4BFj+Jpll5MlZtRB77NnL+mtmL4 eUc90Mo4Iw5T02GC4JROrLeS4KEDi15IKtfhrdc3ctutQXtdw6IB/AcxS6pDA8cN /1ZrsF5XGHOpRcHApSNNzdOpkKF6VaNPpudWVwMX6iZilbsjbRLzExPQ/kR7tVHA 5r1OQulu8halcbAa/yx5ZuPvUUqEqS4O5jaZkXaFvkCM1/PLEwT2babdEPPTc5H9 K0A5v7F4OvqlB1QR0FnkLEZVL3bTdDcxFsH91ccKkRT+95hWh/jOOMSi4gEsUovt NlSfNbXQ4+iPpHjI5yfvVkSjXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiQDd6o 98cQIneZlWh8HS4vrnkZMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLmADwnnGK68Fzgc7SYmluLpDaBQoPx4kvQZRFu1SdH87cVKoUNKkD Fg6YbBgszIcR/RN3z5aIE0fTK+udDA2lb8ZyLoNA+k+/g3z49aQp1TTMRrqzht8X eagTuqyZYG8P5SG0f/KL7ZJ6D41lu+0jrK2W9rz46q2YJgam9c41B5XKD8ZY1HLp m1Ze/+VWIJ3cgWF5NktBgl5RMzh8SaMgXwhoC2XfsPajYB0NsAz3Lx5ROgQJB113 G8gumbUq4CllYznqmpPHBJMECsC6b3h0kschkczs+gMxhYMw3uquOwjQMiOlMJ2l oRlxmSpOxHy03PvdhYv3Adx4Qa9pGr1e -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org