$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: JLua+loNlQpRmqm4noa1JpsfIBQFwVs/Jl0u8t1qO4Y= Subject key identifier: C3:2D:A3:87:18:ED:C0:87:28:1F:6B:33:73:44:10:3D:C7:B6:2D:42 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 014D Signing time: Sat 01 Jun 2024 06:08:58 +0000 Manifest this update: Sat 01 Jun 2024 06:08:58 +0000 Manifest next update: Sat 08 Jun 2024 06:08:58 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: dBr3kcUybY35dp/b//oPLpWMmpBMV8FCImXHx6DzHmk=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: a66eqXBUZfLZkKRWsJcJh3a05RUfhoQl9hv5mdKW/B8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Jun 1 06:08:58 2024 GMT Not After : Jun 8 06:08:58 2024 GMT Subject: CN=665abafa-0b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:6d:31:d5:25:4a:45:66:c6:67:c6:62:e9: bf:fc:11:ec:d2:d5:b1:24:ee:39:bd:57:64:6c:7f: f7:6a:75:a1:c1:aa:ee:76:31:8b:40:2a:e7:17:55: cd:7f:e8:19:54:2e:a3:ac:3f:9a:bb:87:69:ce:b0: 6e:8f:07:38:18:1a:ee:4a:e1:04:64:c8:c6:6b:56: 71:8e:74:cd:e7:18:13:f8:c4:5f:37:8f:14:3a:bb: 67:40:be:07:4b:f8:b0:9d:9d:1e:7a:a3:20:a4:e7: 51:ef:ea:77:e7:31:62:cc:b3:aa:d0:34:9f:61:a6: 2b:74:4b:a5:03:23:be:0e:42:7c:32:6d:d5:0f:d9: 34:81:b7:e8:e2:cf:6a:42:30:b5:09:93:b3:b4:55: a8:00:79:09:90:38:0e:14:ce:76:53:13:b8:0f:3f: 6d:12:c6:9f:76:8c:76:ed:f7:f7:d1:a9:89:56:59: 10:b8:fa:23:4e:d0:26:64:c5:62:45:d2:84:90:fb: e0:7a:6a:d8:b6:0f:11:25:f8:fc:a3:ed:71:2d:80: 10:30:79:96:12:e1:38:ab:4b:70:87:ef:be:2a:9e: cc:62:b0:c8:7a:6f:0f:b7:52:52:bd:16:1e:f3:50: 42:d0:19:46:3f:a4:43:18:a6:33:95:a8:9a:48:ec: f3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2D:A3:87:18:ED:C0:87:28:1F:6B:33:73:44:10:3D:C7:B6:2D:42 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:68:1f:c6:4c:a6:c6:17:25:61:f0:c3:b2:ba:9d:fb:a4:38: a9:3e:d7:b0:d5:95:4a:ef:b4:dc:63:09:9c:f0:a6:51:6d:89: 24:f0:03:ff:b8:14:d5:71:12:7f:4f:cc:77:4f:17:5c:6f:9f: 85:43:5f:fe:90:07:08:d5:17:95:e2:73:0e:17:17:b8:9f:7d: 7f:ff:0d:ff:e0:e0:0f:a0:e3:21:c0:c1:9f:ff:ae:a0:a0:b2: 5e:b5:6b:1b:57:7d:9e:fb:ff:a9:1a:43:c6:de:b1:b3:43:c0: 45:04:03:5e:0e:01:d0:46:00:9a:b2:94:9e:88:43:4c:0c:57: a9:96:dc:8d:f7:8e:28:dc:af:fb:92:db:e5:8d:19:fa:fb:6f: 22:1d:97:64:1e:ab:70:a5:e9:12:7c:07:94:d2:5d:7b:14:80: 18:f5:c9:02:ae:07:7c:27:e8:95:b1:49:38:b7:67:9e:01:d7: a2:7b:45:48:be:2c:a5:41:89:8f:e5:46:f7:d6:65:50:6d:7b: 76:0b:d7:ea:c4:64:8a:90:00:49:2c:b7:14:0a:69:f7:31:e5: 6a:11:4f:91:a3:35:7e:b2:3a:a6:e2:75:92:c9:3f:b6:91:cf: 62:e4:b5:b5:b0:67:14:dd:60:eb:67:c3:06:39:1e:ea:46:cc: 07:92:6c:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjQwNjAxMDYwODU4WhcNMjQwNjA4MDYwODU4WjAYMRYwFAYD VQQDEw02NjVhYmFmYS0wYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbxtMdUlSkVmxmfGYum//BHs0tWxJO45vVdkbH/3anWhwarudjGLQCrnF1XN f+gZVC6jrD+au4dpzrBujwc4GBruSuEEZMjGa1ZxjnTN5xgT+MRfN48UOrtnQL4H S/iwnZ0eeqMgpOdR7+p35zFizLOq0DSfYaYrdEulAyO+DkJ8Mm3VD9k0gbfo4s9q QjC1CZOztFWoAHkJkDgOFM52UxO4Dz9tEsafdox27ff30amJVlkQuPojTtAmZMVi RdKEkPvgemrYtg8RJfj8o+1xLYAQMHmWEuE4q0twh+++Kp7MYrDIem8Pt1JSvRYe 81BC0BlGP6RDGKYzlaiaSOzzIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMto4cY 7cCHKB9rM3NEED3Hti1CMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXaB/GTKbGFyVh8MOyup37pDipPtew1ZVK77TcYwmc8KZRbYkk8AP/ uBTVcRJ/T8x3Txdcb5+FQ1/+kAcI1ReV4nMOFxe4n31//w3/4OAPoOMhwMGf/66g oLJetWsbV32e+/+pGkPG3rGzQ8BFBANeDgHQRgCaspSeiENMDFepltyN944o3K/7 ktvljRn6+28iHZdkHqtwpekSfAeU0l17FIAY9ckCrgd8J+iVsUk4t2eeAdeie0VI viylQYmP5Ub31mVQbXt2C9fqxGSKkABJLLcUCmn3MeVqEU+RozV+sjqm4nWSyT+2 kc9i5LW1sGcU3WDrZ8MGOR7qRswHkmwA -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:26 2024 by rpki-client on console-ams.rpki-client.org