$ rpki-client -vvf rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft File: OochbBWSc79Rk0f8H-5wYZXMKuY.mft (raw, json) Hash identifier: UuSDJYjEl/TcqzdeU0WTsaURKDNpf6WbAA3VlVSL/6M= Subject key identifier: 74:A0:2A:75:5A:4C:8E:B6:EF:A3:DB:78:79:AE:8A:0C:31:BA:D2:95 Authority key identifier: 3A:87:21:6C:15:92:73:BF:51:93:47:FC:1F:EE:70:61:95:CC:2A:E6 Certificate issuer: /CN=A91C661C/serialNumber=3A87216C159273BF519347FC1FEE706195CC2AE6 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft Manifest number: 05CE Signing time: Sun 19 May 2024 00:07:08 +0000 Manifest this update: Sun 19 May 2024 00:07:08 +0000 Manifest next update: Sun 26 May 2024 00:07:08 +0000 Files and hashes: 1: OochbBWSc79Rk0f8H-5wYZXMKuY.crl (hash: kKzEwPwOUGNQ2SkMBDwnKMg0u7rwqjntOuvdOHH+E+s=) 2: AABC79100EC411EF858B5255C4F9AE02.roa (hash: MUCKJC1eEkiDBkXfHtwGOGKtI8gVRWmZupEXEbDJtuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.crl rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C661C/serialNumber=3A87216C159273BF519347FC1FEE706195CC2AE6 Validity Not Before: May 19 00:07:08 2024 GMT Not After : May 26 00:07:08 2024 GMT Subject: CN=664942ac-14f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:df:37:55:2b:2d:42:25:da:ba:a0:41:26:da: 46:96:62:85:42:55:e5:fb:42:e0:20:06:77:52:85: 9b:37:73:8e:00:4f:60:64:39:e5:b6:f7:d4:99:4a: 90:72:48:3f:08:98:88:ea:f6:76:36:a9:25:e0:08: 1b:25:fb:a0:25:03:70:5e:c8:6a:cd:ca:15:b2:d7: 4e:37:8a:08:e3:03:d2:ba:72:3c:87:41:ab:4d:67: 47:7f:b8:0d:2a:b0:b1:6b:c3:57:4d:8f:b1:8c:b3: d0:5f:bf:e7:27:ad:a1:9f:04:95:3e:e2:45:71:90: 64:db:5f:25:bd:87:6c:55:90:a2:ca:c6:6e:ba:83: ce:28:b1:fb:02:46:c4:d3:a9:53:c4:bc:23:f2:01: eb:bd:e6:c4:77:f5:de:a9:8c:0a:da:57:4c:b8:f7: cb:41:89:8e:63:78:b4:8f:c5:2b:5c:d5:c6:8d:bc: 7b:4d:a1:c3:3c:5d:a1:96:a6:a9:08:89:23:0f:82: 41:15:38:8b:09:40:1b:cb:f5:1e:d3:e7:ce:e5:71: 71:10:1e:26:5a:d2:ec:df:9e:57:9e:62:e3:ef:0d: e9:4d:47:ee:ed:29:86:0b:e9:fd:1d:20:50:40:d3: 20:3f:ed:0e:f7:06:42:2d:4b:3e:3c:02:d2:a6:fc: b1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A0:2A:75:5A:4C:8E:B6:EF:A3:DB:78:79:AE:8A:0C:31:BA:D2:95 X509v3 Authority Key Identifier: keyid:3A:87:21:6C:15:92:73:BF:51:93:47:FC:1F:EE:70:61:95:CC:2A:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:51:82:37:6d:36:1b:81:7f:7f:c3:3c:ae:b8:74:84:8f:0a: 9a:83:c2:0f:53:77:56:61:27:11:b5:15:26:4d:c7:81:03:b7: dd:7e:5d:73:78:32:e2:7d:b0:5e:ec:45:d8:0f:b3:f8:98:70: 4f:40:1f:0c:21:f0:d2:a4:49:8a:4b:4b:96:40:14:88:29:22: 6d:8e:b6:a1:ab:0a:c0:df:fd:a9:3a:cf:fd:71:dd:ea:54:ed: 28:ce:2c:60:54:a5:52:67:8d:6a:8e:fc:1d:57:6a:bb:2e:9d: dc:6e:20:63:55:29:6b:0e:f1:32:5a:39:31:19:2d:a9:b4:81: 06:40:4f:4e:63:3f:03:ed:42:80:d5:23:bf:99:20:69:97:d3: b8:01:b6:fd:c1:1a:3e:4a:f1:77:f6:6d:8a:71:e6:25:d1:71: bf:ba:98:1c:97:c1:50:78:31:c7:57:20:42:d9:fc:b6:41:b5: b8:fc:06:87:52:a0:93:6b:8c:bf:32:40:15:d3:10:70:6c:17: ec:77:2d:ff:16:20:29:8b:8e:d1:d1:fa:1d:04:d1:86:7c:e1: 4e:c9:c4:03:98:71:90:10:c6:95:68:d8:5a:83:24:19:00:4c: cf:b8:2e:ac:36:19:7a:cb:f3:ec:68:14:18:35:b8:55:d0:2c: 51:de:6e:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2MUMxMTAvBgNVBAUTKDNBODcyMTZDMTU5MjczQkY1MTkzNDdGQzFGRUU3MDYx OTVDQzJBRTYwHhcNMjQwNTE5MDAwNzA4WhcNMjQwNTI2MDAwNzA4WjAYMRYwFAYD VQQDEw02NjQ5NDJhYy0xNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnN83VSstQiXauqBBJtpGlmKFQlXl+0LgIAZ3UoWbN3OOAE9gZDnltvfUmUqQ ckg/CJiI6vZ2Nqkl4AgbJfugJQNwXshqzcoVstdON4oI4wPSunI8h0GrTWdHf7gN KrCxa8NXTY+xjLPQX7/nJ62hnwSVPuJFcZBk218lvYdsVZCiysZuuoPOKLH7AkbE 06lTxLwj8gHrvebEd/XeqYwK2ldMuPfLQYmOY3i0j8UrXNXGjbx7TaHDPF2hlqap CIkjD4JBFTiLCUAby/Ue0+fO5XFxEB4mWtLs355XnmLj7w3pTUfu7SmGC+n9HSBQ QNMgP+0O9wZCLUs+PALSpvyxBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSgKnVa TI6276PbeHmuigwxutKVMB8GA1UdIwQYMBaAFDqHIWwVknO/UZNH/B/ucGGVzCrm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjYxQy9GNDU5Mjk5Mjcz NzIxMUVCOTQ3NUNBNURDNEY5QUUwMi9Pb2NoYkJXU2M3OVJrMGY4SC01d1laWE1L dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09vY2hiQldTYzc5UmswZjhILTV3WVpYTUt1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjYxQy9GNDU5Mjk5MjczNzIxMUVCOTQ3NUNBNURDNEY5QUUwMi9Pb2NoYkJXU2M3 OVJrMGY4SC01d1laWE1LdVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUUYI3bTYbgX9/wzyuuHSEjwqag8IPU3dWYScRtRUmTceBA7fdfl1z eDLifbBe7EXYD7P4mHBPQB8MIfDSpEmKS0uWQBSIKSJtjrahqwrA3/2pOs/9cd3q VO0ozixgVKVSZ41qjvwdV2q7Lp3cbiBjVSlrDvEyWjkxGS2ptIEGQE9OYz8D7UKA 1SO/mSBpl9O4Abb9wRo+SvF39m2KceYl0XG/upgcl8FQeDHHVyBC2fy2QbW4/AaH UqCTa4y/MkAV0xBwbBfsdy3/FiApi47R0fodBNGGfOFOycQDmHGQEMaVaNhagyQZ AEzPuC6sNhl6y/PsaBQYNbhV0CxR3m7I -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org