$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: Jye3r4CC+0oepAZpEyAErbjnBxpOgjSjgtRD3CRT9FU= Subject key identifier: C9:99:54:26:02:D7:06:2D:89:D7:F1:7D:49:66:BA:3E:89:A6:E8:E6 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0328 Signing time: Sun 19 May 2024 03:01:59 +0000 Manifest this update: Sun 19 May 2024 03:01:59 +0000 Manifest next update: Sun 26 May 2024 03:01:59 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: u3aF5OyKG33uIQaZLSg2RQLNl2C3ndc5ztLsPGoHTZM=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: oPYfSqxkN8npABudY2l+Ic8/CeJazaNkfy3rG5MWBXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: May 19 03:01:59 2024 GMT Not After : May 26 03:01:59 2024 GMT Subject: CN=66496ba7-e88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3d:94:50:4d:43:0f:d7:05:47:ee:73:7a:e8: 4f:97:65:e0:24:3a:85:19:48:9d:1f:fb:64:5a:3f: 6c:0e:1f:58:9e:24:9b:60:cc:67:93:cd:f3:b6:5b: eb:c7:af:44:28:40:b1:a9:75:bd:0e:82:e3:40:21: 87:7b:35:5c:5f:ef:c0:a4:7a:76:7f:f3:a6:60:8e: 01:6f:4d:c9:82:11:99:ba:7b:60:6c:42:8d:90:78: 7f:4a:66:57:94:91:46:eb:2d:02:01:52:55:6d:80: 31:59:a6:78:b3:20:27:cc:ae:ce:eb:cd:32:01:6d: 35:c9:4e:80:25:02:27:40:54:9c:44:b4:59:a0:4e: 4b:1b:9c:7b:f0:ec:9c:37:59:4e:2a:e2:1d:3b:94: d1:7e:fc:1e:fc:6b:2f:88:7b:37:ef:a9:4a:dd:ca: 66:94:d8:ff:bf:5b:ec:2d:e6:8d:ea:29:d0:f1:fe: 79:c5:ba:9c:2e:84:97:d4:ec:0a:1e:de:c7:7e:5f: e5:1a:07:63:01:51:4c:19:98:43:f0:69:c7:a8:32: 06:5f:02:10:d8:66:9e:1b:96:53:70:7a:f8:49:40: 83:00:37:0e:ab:96:4a:19:ae:d6:a1:0e:8a:f8:24: 93:e8:75:e9:51:71:ac:cb:24:00:2a:a8:ed:25:eb: ab:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:99:54:26:02:D7:06:2D:89:D7:F1:7D:49:66:BA:3E:89:A6:E8:E6 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ba:0c:2c:31:83:84:d2:41:ec:7d:3f:ea:c8:12:85:d7:5b: a5:24:f3:a5:97:e6:02:f3:ac:41:e1:98:bf:26:fd:f8:f9:9e: 53:27:85:ca:df:20:fa:d5:15:dd:03:4b:04:99:23:10:4a:7d: 31:f4:9d:2d:04:97:14:16:74:d9:de:7e:02:26:70:8a:69:30: a7:87:e4:49:bb:6d:7b:9d:01:57:ee:b4:43:ef:64:90:21:ac: c1:2f:09:4c:44:d0:77:c6:57:d9:fd:22:78:c8:33:86:29:c4: 89:c5:db:21:ef:9d:38:13:cf:40:71:9c:e4:a2:ab:90:60:fa: d5:83:94:b5:e6:39:da:8a:fe:6b:d9:85:22:64:27:03:c6:74: 83:ad:bf:60:6f:da:d3:e5:f4:65:03:a5:64:d7:c1:cb:5c:05: c0:d7:af:b3:eb:79:f5:b2:78:1b:dc:37:7f:04:88:38:81:72: 48:38:27:59:16:2b:3d:91:65:78:da:66:60:5f:ab:b9:b6:96: a1:62:cc:d4:02:80:42:0c:b8:1c:1a:e8:c0:a8:e3:a3:13:10: 7d:e0:49:a4:f2:04:67:a0:0a:fb:ca:2e:7d:6e:e5:35:5b:f0: 68:d1:c7:65:3c:95:79:76:72:dc:56:b6:c0:1b:33:a8:e6:e7: 0a:01:a5:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjQwNTE5MDMwMTU5WhcNMjQwNTI2MDMwMTU5WjAYMRYwFAYD VQQDEw02NjQ5NmJhNy1lODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0j2UUE1DD9cFR+5zeuhPl2XgJDqFGUidH/tkWj9sDh9YniSbYMxnk83ztlvr x69EKECxqXW9DoLjQCGHezVcX+/ApHp2f/OmYI4Bb03JghGZuntgbEKNkHh/SmZX lJFG6y0CAVJVbYAxWaZ4syAnzK7O680yAW01yU6AJQInQFScRLRZoE5LG5x78Oyc N1lOKuIdO5TRfvwe/GsviHs376lK3cpmlNj/v1vsLeaN6inQ8f55xbqcLoSX1OwK Ht7Hfl/lGgdjAVFMGZhD8GnHqDIGXwIQ2GaeG5ZTcHr4SUCDADcOq5ZKGa7WoQ6K +CST6HXpUXGsyyQAKqjtJeurKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmZVCYC 1wYtidfxfUlmuj6JpujmMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzugwsMYOE0kHsfT/qyBKF11ulJPOll+YC86xB4Zi/Jv34+Z5TJ4XK 3yD61RXdA0sEmSMQSn0x9J0tBJcUFnTZ3n4CJnCKaTCnh+RJu217nQFX7rRD72SQ IazBLwlMRNB3xlfZ/SJ4yDOGKcSJxdsh7504E89AcZzkoquQYPrVg5S15jnaiv5r 2YUiZCcDxnSDrb9gb9rT5fRlA6Vk18HLXAXA16+z63n1sngb3Dd/BIg4gXJIOCdZ Fis9kWV42mZgX6u5tpahYszUAoBCDLgcGujAqOOjExB94Emk8gRnoAr7yi59buU1 W/Bo0cdlPJV5dnLcVrbAGzOo5ucKAaWN -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org