$ rpki-client -vvf rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft File: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft (raw, json) Hash identifier: 51hv9gzbkmVzFmyF5RysB0ZzrMdy/Wwn4nzCAq8DYh8= Subject key identifier: 87:35:99:4E:54:BD:D4:F5:DF:83:AA:D7:AC:E0:B6:47:8E:A3:70:26 Authority key identifier: A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 Certificate issuer: /CN=A91C77BD/serialNumber=A3EB7C435063BC54D3573D81DBDC1873987663E0 Certificate serial: 20AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft Manifest number: 20A4 Signing time: Sat 18 May 2024 16:16:45 +0000 Manifest this update: Sat 18 May 2024 16:16:45 +0000 Manifest next update: Sat 25 May 2024 16:16:45 +0000 Files and hashes: 1: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl (hash: iA+nhvDlXRLjYxcFM9WqPj1tTTrJLztDSp6wc2x04w4=) 2: A257A95EA9DC11E9AA03780DC4F9AE02.roa (hash: gnzYE1UPF0infgIE4GAAJVFt04czSCksQg2paK1f/KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8362 (0x20aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C77BD/serialNumber=A3EB7C435063BC54D3573D81DBDC1873987663E0 Validity Not Before: May 18 16:16:45 2024 GMT Not After : May 25 16:16:45 2024 GMT Subject: CN=6648d46d-93af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:b7:0a:5e:5a:e9:3e:14:35:f0:88:dc:f6: 2d:ab:fd:0f:9a:f1:c4:77:d4:a9:c9:2d:4a:24:92: 62:bd:d8:ab:63:94:56:0e:23:a3:76:64:45:1d:6c: 6e:45:45:0d:42:06:28:78:59:e5:82:cd:de:6c:f7: 7d:43:2d:5d:aa:f2:6f:9f:df:0a:21:41:a8:56:77: 72:b6:a6:0c:74:f3:78:44:ad:e1:84:c6:be:58:f8: 68:72:63:b4:3c:73:22:3d:14:d5:cb:26:fe:75:40: ac:b5:9e:ef:db:a3:ea:92:17:c6:1e:15:d2:53:33: 3e:1d:20:78:0c:77:43:65:86:04:c9:cb:3e:34:b4: df:dd:b0:b4:d1:85:da:a4:30:8d:f8:08:12:17:ad: d4:19:7a:d5:47:2f:53:a1:a5:67:fc:b9:6a:1d:cb: 7d:55:c4:95:63:13:81:06:97:4f:b5:fc:df:cf:0c: a2:aa:44:ab:6a:e2:07:73:39:33:54:f9:5a:eb:63: 89:86:2e:ce:34:5b:cd:47:41:44:16:d4:c4:9b:56: 45:19:5b:c9:fa:a5:3d:61:92:25:e7:e5:8e:fd:7a: 96:4c:ce:2d:47:35:7f:06:da:1d:24:ea:8b:06:dd: 7c:b0:05:d8:c6:c6:bf:3f:51:d6:e5:69:de:b9:92: 8a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:35:99:4E:54:BD:D4:F5:DF:83:AA:D7:AC:E0:B6:47:8E:A3:70:26 X509v3 Authority Key Identifier: keyid:A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:31:05:2e:ec:f7:89:ab:1e:e2:51:30:a3:0e:5a:b4:f3:cd: 68:74:be:e0:bb:93:fb:d8:63:24:8f:8a:a2:45:7f:d2:e6:ff: e3:18:40:7d:23:99:29:00:fb:1e:1e:af:7e:22:ee:ff:29:7c: 55:98:d4:78:dd:ec:77:d5:4a:8b:57:4f:6d:48:5d:f5:c8:e1: 03:e4:02:99:21:22:5b:fa:31:90:84:19:35:56:23:6e:46:aa: 16:cc:72:46:67:9b:07:8e:5d:22:27:a1:41:14:c2:57:1a:46: 41:ae:29:86:de:0f:cd:c8:41:17:16:17:3d:41:c6:c5:67:38: b4:d5:d1:7f:3f:0f:aa:cc:e2:ec:5f:b3:e2:21:04:c5:bb:c0: 1b:8f:aa:8f:07:f7:82:66:ab:92:53:95:0f:09:b1:6c:c5:4c: 50:6f:0d:53:5e:aa:98:6f:28:af:2a:3d:a9:c0:82:d3:af:d0: 09:2a:ec:07:53:a4:8f:49:8e:bc:4b:79:eb:02:1d:65:c2:50: 47:eb:38:4c:bb:c9:72:cd:b1:5f:fa:8f:f0:06:fa:09:66:7a: cb:8f:c6:3b:c1:38:57:6a:3e:76:e5:fe:1f:73:6d:29:8c:3f: 07:e9:a3:8f:51:13:15:25:7b:55:7d:06:cd:ab:c7:47:06:d9: 0b:de:bf:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3QkQxMTAvBgNVBAUTKEEzRUI3QzQzNTA2M0JDNTREMzU3M0Q4MURCREMxODcz OTg3NjYzRTAwHhcNMjQwNTE4MTYxNjQ1WhcNMjQwNTI1MTYxNjQ1WjAYMRYwFAYD VQQDEw02NjQ4ZDQ2ZC05M2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs623Cl5a6T4UNfCI3PYtq/0PmvHEd9SpyS1KJJJivdirY5RWDiOjdmRFHWxu RUUNQgYoeFnlgs3ebPd9Qy1dqvJvn98KIUGoVndytqYMdPN4RK3hhMa+WPhocmO0 PHMiPRTVyyb+dUCstZ7v26PqkhfGHhXSUzM+HSB4DHdDZYYEycs+NLTf3bC00YXa pDCN+AgSF63UGXrVRy9ToaVn/LlqHct9VcSVYxOBBpdPtfzfzwyiqkSrauIHczkz VPla62OJhi7ONFvNR0FEFtTEm1ZFGVvJ+qU9YZIl5+WO/XqWTM4tRzV/BtodJOqL Bt18sAXYxsa/P1HW5WneuZKKpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIc1mU5U vdT134Oq16zgtkeOo3AmMB8GA1UdIwQYMBaAFKPrfENQY7xU01c9gdvcGHOYdmPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzdCRC8zODkzNzE5OERG NDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZGVFRWejJCMjl3WWM1aDJZ LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdDhRMUJqdkZUVFZ6MkIyOXdZYzVoMlktQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzdCRC8zODkzNzE5OERGNDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZG VFRWejJCMjl3WWM1aDJZLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtMQUu7PeJqx7iUTCjDlq0881odL7gu5P72GMkj4qiRX/S5v/jGEB9 I5kpAPseHq9+Iu7/KXxVmNR43ex31UqLV09tSF31yOED5AKZISJb+jGQhBk1ViNu RqoWzHJGZ5sHjl0iJ6FBFMJXGkZBrimG3g/NyEEXFhc9QcbFZzi01dF/Pw+qzOLs X7PiIQTFu8Abj6qPB/eCZquSU5UPCbFsxUxQbw1TXqqYbyivKj2pwILTr9AJKuwH U6SPSY68S3nrAh1lwlBH6zhMu8lyzbFf+o/wBvoJZnrLj8Y7wThXaj525f4fc20p jD8H6aOPURMVJXtVfQbNq8dHBtkL3r+h -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org