$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: 4ZESkk+dyG08oIcw4oxaAMu1rR7wptPSEdAf/QVtU8g= Subject key identifier: 8E:11:4E:8F:44:29:44:FE:7E:59:FB:14:EE:1F:40:BE:A0:1A:BF:86 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 5D Signing time: Sun 19 May 2024 07:57:53 +0000 Manifest this update: Sun 19 May 2024 07:57:53 +0000 Manifest next update: Sun 26 May 2024 07:57:53 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: QcFqLy+rrztBwpdZCg63v8rLkOcpOnGS5V/QaJrPtIY=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: c/0/yt3FRS1cH9Px4YMFXU1xo31vgchf5DTkjF585Rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: May 19 07:57:53 2024 GMT Not After : May 26 07:57:53 2024 GMT Subject: CN=6649b101-73f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a4:c5:75:ec:71:60:a8:90:e7:31:6d:2d:46: 54:8b:7f:6b:77:47:40:2e:a3:ef:a8:9e:0d:09:40: dd:b4:16:57:59:2a:5e:3e:e0:b2:4e:2d:79:5c:c8: 0b:4b:e4:3a:32:ef:33:27:34:ae:09:77:20:e0:b9: 57:59:e9:31:5d:8c:b4:63:15:79:ab:69:50:d6:eb: be:32:d0:54:81:ae:8e:85:0b:9e:2d:8b:06:65:73: a1:ff:9b:29:e9:8c:70:69:dc:ae:e7:12:af:f8:64: 5c:69:41:65:69:c2:8e:a9:08:bb:cd:3b:30:ec:82: 04:e7:11:40:00:d0:d7:ec:49:9a:19:80:dd:89:81: 14:a3:82:f2:35:fe:cf:7c:0a:cc:d7:58:e9:f2:42: aa:6c:79:07:d7:aa:b3:3c:6f:a7:b2:2a:4c:df:13: 71:17:2f:54:54:ea:9f:81:58:ff:c5:32:3b:65:e3: c8:02:68:a6:32:7d:26:bf:14:f0:af:9a:42:e5:9d: 1e:3f:8b:83:0b:9e:37:62:9f:47:fa:b8:46:c6:5f: 36:2e:37:28:37:a6:58:f8:4c:64:db:90:2c:48:3e: 5f:bf:81:84:b8:be:df:fe:dc:e5:c5:33:26:77:b0: 63:c1:e7:4b:c9:a2:c9:80:22:5d:f8:ee:6a:a6:66: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:11:4E:8F:44:29:44:FE:7E:59:FB:14:EE:1F:40:BE:A0:1A:BF:86 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f2:14:5f:64:f2:36:c7:4d:23:36:e1:6a:c4:6e:ea:ce:53: 1a:1d:b4:53:b9:0d:7c:0a:0d:15:1a:b1:ea:d8:be:fd:f2:a8: 79:2b:8d:a0:e4:b0:11:af:4e:46:9f:0e:45:35:90:87:1a:31: 66:b2:38:a1:6d:0a:d1:fa:46:81:c4:92:59:29:0a:20:83:9b: cc:9f:39:0a:f5:3f:5d:e5:9d:e3:62:7e:09:7e:18:38:c1:76: b6:54:c4:e5:04:ef:2c:c6:1a:01:b6:31:19:80:8a:5e:7f:ae: 2c:52:54:bf:f8:ac:47:ed:da:83:bb:f0:b2:dd:93:14:75:a3: 93:79:7b:e3:63:d6:6f:55:45:cb:87:0b:84:ce:85:bb:2c:85: f9:32:00:9d:da:50:6f:75:f9:37:55:69:9d:8b:27:cc:56:10: ae:d7:d9:5c:0d:b4:0e:54:64:45:7d:4c:5f:0d:56:77:f0:de: cd:f9:b5:cb:25:cd:f0:9b:86:93:c9:e6:69:bd:83:48:5b:22: d7:c3:60:ba:83:13:4c:31:29:33:ae:52:bd:68:f6:0f:fa:2f: ae:a3:21:1e:af:b7:62:dd:52:72:8f:ef:8a:e4:7e:2a:45:cf: 0f:b6:55:3d:43:2f:b9:d9:62:17:e7:44:6b:74:42:b5:bd:d2: 36:c7:06:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjlCMDExMC8GA1UEBRMoQTJBMjE3RDRBNDEyRkI1MzhGNUM5MUEzNEIzNkNFNzE4 NzlEREI2NTAeFw0yNDA1MTkwNzU3NTNaFw0yNDA1MjYwNzU3NTNaMBgxFjAUBgNV BAMTDTY2NDliMTAxLTczZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPpMV17HFgqJDnMW0tRlSLf2t3R0Auo++ong0JQN20FldZKl4+4LJOLXlcyAtL 5Doy7zMnNK4JdyDguVdZ6TFdjLRjFXmraVDW674y0FSBro6FC54tiwZlc6H/mynp jHBp3K7nEq/4ZFxpQWVpwo6pCLvNOzDsggTnEUAA0NfsSZoZgN2JgRSjgvI1/s98 CszXWOnyQqpseQfXqrM8b6eyKkzfE3EXL1RU6p+BWP/FMjtl48gCaKYyfSa/FPCv mkLlnR4/i4MLnjdin0f6uEbGXzYuNyg3plj4TGTbkCxIPl+/gYS4vt/+3OXFMyZ3 sGPB50vJosmAIl347mqmZhNHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjhFOj0Qp RP5+WfsU7h9AvqAav4YwHwYDVR0jBBgwFoAUoqIX1KQS+1OPXJGjSzbOcYed22Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGOUIwLzE0Qzk0OTZFOUYz RjExRUU4MDFCMUQ2MkM0RjlBRTAyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIy VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3FJWDFLUVMtMU9QWEpHalN6Yk9jWWVkMjJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG OUIwLzE0Qzk0OTZFOUYzRjExRUU4MDFCMUQ2MkM0RjlBRTAyL29xSVgxS1FTLTFP UFhKR2pTemJPY1llZDIyVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHbyFF9k8jbHTSM24WrEburOUxodtFO5DXwKDRUaserYvv3yqHkrjaDk sBGvTkafDkU1kIcaMWayOKFtCtH6RoHEklkpCiCDm8yfOQr1P13lneNifgl+GDjB drZUxOUE7yzGGgG2MRmAil5/rixSVL/4rEft2oO78LLdkxR1o5N5e+Nj1m9VRcuH C4TOhbsshfkyAJ3aUG91+TdVaZ2LJ8xWEK7X2VwNtA5UZEV9TF8NVnfw3s35tcsl zfCbhpPJ5mm9g0hbItfDYLqDE0wxKTOuUr1o9g/6L66jIR6vt2LdUnKP74rkfipF zw+2VT1DL7nZYhfnRGt0QrW90jbHBtc= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org