$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: Y+LgkHnJcVy+X6BmHMSsSz1Z+aJaRmXaSLsAy0qY8Os= Subject key identifier: 85:F7:0C:E3:29:C0:5F:C4:71:E6:6E:CC:56:A4:9B:CE:72:D8:49:0F Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0963 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 095D Signing time: Sat 18 May 2024 21:02:45 +0000 Manifest this update: Sat 18 May 2024 21:02:44 +0000 Manifest next update: Sat 25 May 2024 21:02:44 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: KrU4LQ0/KZ2H+h1F6A/s6hhIJ4MfdmwLnY9FLcU2BLM=) 2: 11502BAC719111EAAC505266C4F9AE02.roa (hash: RDM7Lb5HfvMFUtS/P2rwwBWdJyjHtFv0PrhdCwgVU6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2403 (0x963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: May 18 21:02:44 2024 GMT Not After : May 25 21:02:44 2024 GMT Subject: CN=66491774-e395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ad:a3:99:e2:bd:67:39:9d:01:e6:04:86:35: 63:a4:75:f4:13:b0:02:a2:59:ad:7b:80:84:4d:d1: 59:74:11:91:55:a9:43:4b:05:b8:2c:32:e3:50:da: c2:75:6b:26:52:91:b0:91:0c:87:49:f1:70:ab:9b: 62:fb:c6:2d:36:61:71:9b:a2:8c:c3:fd:b8:01:cb: d3:7b:cd:11:24:3e:3f:a0:dd:19:39:96:cc:32:85: fd:c5:d4:dc:d5:0f:79:91:08:13:72:19:5a:5c:6f: 99:ea:d4:05:ec:20:1f:ce:5a:73:30:ee:aa:af:51: 7e:53:fc:46:1b:f5:9c:31:36:e3:a0:5d:64:bf:2d: 39:11:90:61:70:9c:87:0c:2a:cc:85:14:4c:07:4c: 4b:0b:c8:eb:53:3d:7e:22:7f:24:65:b8:7d:fa:b7: eb:e5:5d:29:e3:01:6b:66:c5:19:57:21:bb:92:c3: f0:ca:b3:0d:44:1e:99:e9:f2:a3:cc:e6:b0:d2:08: 2a:53:93:11:8c:3f:cd:f5:d3:53:fc:e4:c1:6d:44: c9:78:86:3b:e9:db:7b:a5:50:ff:7d:69:41:6b:8a: 30:bd:62:a4:75:d8:b9:2a:35:d4:00:e0:3e:2b:6a: 9d:b6:a6:97:78:ca:a0:b4:82:80:2c:a0:fb:59:cb: d8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F7:0C:E3:29:C0:5F:C4:71:E6:6E:CC:56:A4:9B:CE:72:D8:49:0F X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:89:b8:e3:7d:94:60:ed:94:f5:d6:07:95:d7:0b:82:44:e5: 9b:e4:40:b0:15:77:cc:15:75:20:61:87:d1:c6:a7:5d:73:3c: 9d:3e:b7:4c:76:3d:96:47:17:31:eb:71:4c:d8:11:a0:af:b5: 3f:28:1b:06:c1:57:aa:03:cc:12:44:3d:8d:9c:5f:9f:33:03: b7:c0:f5:8d:41:79:a0:a5:a0:c8:d8:b9:fc:90:24:00:cf:54: 98:fc:a3:59:ac:ba:a3:1b:87:fa:7a:a1:4d:ec:ce:26:54:a0: fd:e9:26:48:83:20:0d:54:c6:09:3e:9c:15:da:8e:42:a7:bb: 51:07:0a:10:b3:a6:ed:55:66:69:9b:3b:b9:ba:ec:9d:b6:14: 0b:bf:4e:d0:51:e8:e9:02:58:af:9d:78:66:5f:01:20:fa:fe: c9:2c:7f:06:0f:52:a9:83:32:36:b0:b5:dc:76:a3:0a:60:be: 6f:4b:98:56:17:ef:53:45:bf:7a:52:ee:dc:2d:f2:1c:8d:62: 90:f7:cc:47:e8:16:55:d6:28:ac:df:6b:59:ea:73:0c:40:51: 8c:26:83:b7:90:52:ee:5f:4b:db:38:0d:43:4e:76:20:cb:37: d4:25:bf:c9:73:33:59:82:ce:ab:37:a2:28:31:6d:d7:df:87: 3e:4e:01:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjQwNTE4MjEwMjQ0WhcNMjQwNTI1MjEwMjQ0WjAYMRYwFAYD VQQDEw02NjQ5MTc3NC1lMzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt62jmeK9ZzmdAeYEhjVjpHX0E7AColmte4CETdFZdBGRValDSwW4LDLjUNrC dWsmUpGwkQyHSfFwq5ti+8YtNmFxm6KMw/24AcvTe80RJD4/oN0ZOZbMMoX9xdTc 1Q95kQgTchlaXG+Z6tQF7CAfzlpzMO6qr1F+U/xGG/WcMTbjoF1kvy05EZBhcJyH DCrMhRRMB0xLC8jrUz1+In8kZbh9+rfr5V0p4wFrZsUZVyG7ksPwyrMNRB6Z6fKj zOaw0ggqU5MRjD/N9dNT/OTBbUTJeIY76dt7pVD/fWlBa4owvWKkddi5KjXUAOA+ K2qdtqaXeMqgtIKALKD7WcvY/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIX3DOMp wF/EceZuzFakm85y2EkPMB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQibjjfZRg7ZT11geV1wuCROWb5ECwFXfMFXUgYYfRxqddczydPrdM dj2WRxcx63FM2BGgr7U/KBsGwVeqA8wSRD2NnF+fMwO3wPWNQXmgpaDI2Ln8kCQA z1SY/KNZrLqjG4f6eqFN7M4mVKD96SZIgyANVMYJPpwV2o5Cp7tRBwoQs6btVWZp mzu5uuydthQLv07QUejpAlivnXhmXwEg+v7JLH8GD1KpgzI2sLXcdqMKYL5vS5hW F+9TRb96Uu7cLfIcjWKQ98xH6BZV1iis32tZ6nMMQFGMJoO3kFLuX0vbOA1DTnYg yzfUJb/JczNZgs6rN6IoMW3X34c+TgHz -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org