$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: ytX/QKlISxsXwNq/olA8zldRIt7fxaS8/jagDkTn3XI= Subject key identifier: FF:B3:E9:0D:81:FB:BE:AC:6B:2E:BB:55:6E:D5:C0:56:B1:DC:58:08 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 12A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 129E Signing time: Thu 30 May 2024 17:56:45 +0000 Manifest this update: Thu 30 May 2024 17:56:45 +0000 Manifest next update: Thu 06 Jun 2024 17:56:45 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: IngfceI4I1BuqsxelbZKgNjyisL0ZJ5BU0WT/PKDm2k=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: CayamNnE7wETFTDD/NCIu0mz4XuwsUDXz4NCIpKnHG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 16:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4777 (0x12a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: May 30 17:56:45 2024 GMT Not After : Jun 6 17:56:45 2024 GMT Subject: CN=6658bddd-91ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c0:18:1d:dc:9d:d0:1b:ff:d3:a5:9e:32:ae: 01:30:81:45:ff:d4:c7:be:5c:e9:22:65:e9:20:c9: ab:65:03:f9:88:6e:24:a3:0f:fa:bd:16:73:90:81: 30:d9:71:c3:7e:7c:c6:f3:86:db:88:de:93:5a:a1: fa:64:47:23:40:92:99:12:a4:7e:b5:13:40:a5:12: 9e:1e:95:6c:75:61:63:46:bc:a8:e9:13:7e:f9:05: 5a:8c:ad:f5:b3:1a:d9:ce:a8:ec:a4:8e:51:2f:bb: a5:1f:42:a5:bb:93:8e:8d:be:3b:1d:8f:44:bd:2a: 7a:db:ab:97:c0:d4:6f:00:0e:57:56:8f:40:3b:85: 20:ee:c2:b7:09:57:69:e7:bb:3e:09:f5:10:d4:c5: 99:e0:1a:22:3c:6a:2d:e0:19:6c:15:d7:91:3d:bd: 1e:b2:ac:c8:2b:a3:d7:00:8a:26:3b:49:59:8b:d4: 1e:17:1f:5b:ea:8a:17:52:f3:62:ae:2f:ef:8b:68: 3b:d9:f8:cb:0c:f1:ce:f4:9a:e3:cf:af:bb:2c:0f: a5:c5:47:e6:82:69:53:f8:15:43:7a:ca:66:25:8a: fe:8c:e4:dd:e0:1b:59:7f:d6:14:0b:83:57:28:ed: 9a:f4:c0:53:6e:26:ee:6c:f1:ba:bb:79:ee:d6:c2: e2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B3:E9:0D:81:FB:BE:AC:6B:2E:BB:55:6E:D5:C0:56:B1:DC:58:08 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:00:dc:49:3d:f6:32:b7:71:ff:25:44:cf:01:7a:23:82:ef: c9:be:15:19:c9:42:4f:3d:7c:3c:69:92:41:3a:63:7c:87:ea: c3:ce:69:92:4e:49:eb:cf:45:14:99:5b:39:fd:d4:95:df:9b: d2:04:b1:02:b5:d5:2d:a2:b2:03:7b:17:96:d0:ea:ff:60:49: c2:cf:2b:07:5d:ed:7c:2b:4c:16:eb:96:c3:b2:0c:4d:fc:3f: 1f:85:49:c9:ba:27:b6:09:c2:3b:85:02:cf:23:40:be:6b:1e: 50:5d:09:80:3b:ad:41:14:cc:ae:2e:53:2e:24:b9:0c:14:50: 82:aa:29:b6:ef:43:ec:29:73:b1:71:70:19:13:4e:99:ae:1b: ca:f5:5a:68:49:42:be:d5:81:79:b9:60:7f:ff:0d:ce:a7:74: ca:39:5f:95:2f:5e:ee:6b:8e:63:13:09:42:28:6f:c9:51:85: bc:2a:c8:c1:b4:9b:e4:6a:d3:db:84:09:3e:6e:ab:10:ec:f4: 8c:d9:64:33:6d:51:4b:ac:ea:d6:13:8e:3d:ef:e1:89:8b:9e: 2e:df:0d:32:61:25:9a:14:a3:7f:5e:b6:80:ed:d7:c7:67:65: 72:12:4f:53:25:d8:66:44:cc:18:ac:c0:f7:c6:fe:eb:51:42: 2d:d9:d6:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjQwNTMwMTc1NjQ1WhcNMjQwNjA2MTc1NjQ1WjAYMRYwFAYD VQQDEw02NjU4YmRkZC05MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8AYHdyd0Bv/06WeMq4BMIFF/9THvlzpImXpIMmrZQP5iG4kow/6vRZzkIEw 2XHDfnzG84bbiN6TWqH6ZEcjQJKZEqR+tRNApRKeHpVsdWFjRryo6RN++QVajK31 sxrZzqjspI5RL7ulH0Klu5OOjb47HY9EvSp626uXwNRvAA5XVo9AO4Ug7sK3CVdp 57s+CfUQ1MWZ4BoiPGot4BlsFdeRPb0esqzIK6PXAIomO0lZi9QeFx9b6ooXUvNi ri/vi2g72fjLDPHO9Jrjz6+7LA+lxUfmgmlT+BVDespmJYr+jOTd4BtZf9YUC4NX KO2a9MBTbibubPG6u3nu1sLiVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+z6Q2B +76say67VW7VwFax3FgIMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsANxJPfYyt3H/JUTPAXojgu/JvhUZyUJPPXw8aZJBOmN8h+rDzmmS Tknrz0UUmVs5/dSV35vSBLECtdUtorIDexeW0Or/YEnCzysHXe18K0wW65bDsgxN /D8fhUnJuie2CcI7hQLPI0C+ax5QXQmAO61BFMyuLlMuJLkMFFCCqim270PsKXOx cXAZE06ZrhvK9VpoSUK+1YF5uWB//w3Op3TKOV+VL17ua45jEwlCKG/JUYW8KsjB tJvkatPbhAk+bqsQ7PSM2WQzbVFLrOrWE4497+GJi54u3w0yYSWaFKN/XraA7dfH Z2VyEk9TJdhmRMwYrMD3xv7rUUIt2dZv -----END CERTIFICATE-----Generated at Thu May 30 18:46:45 2024 by rpki-client on console-ams.rpki-client.org