$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 1mFNdqBuVqRXVysXb983xVB7PnECpwBqHVo8CyEoJ5Q= Subject key identifier: CD:A9:1A:92:18:CA:2E:1B:93:7B:7C:44:71:A0:D2:21:0D:43:08:0E Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 010E Signing time: Fri 31 May 2024 06:10:40 +0000 Manifest this update: Fri 31 May 2024 06:10:39 +0000 Manifest next update: Fri 07 Jun 2024 06:10:39 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: nldfIWjezSf8eaMELSH62ZOkKQj+4u3h+1t42QRLNqQ=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: tJt+79667Wr9dXwlzSf6K30jIUocSu9oo3nmE+lxR9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: May 31 06:10:39 2024 GMT Not After : Jun 7 06:10:39 2024 GMT Subject: CN=665969df-385a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d6:4e:82:c9:c9:93:31:23:4a:91:66:95:b5: c7:fe:07:7b:24:26:c1:7d:04:f0:ca:cf:b6:07:49: 5e:47:bd:db:87:07:2a:fe:df:c3:90:4f:18:61:c3: 85:be:2f:29:e1:73:f2:72:66:8d:3a:3c:0a:28:f7: 2e:85:36:4f:ec:54:ac:dd:8d:e8:ab:ca:63:18:bb: 0c:c9:2f:44:da:35:1c:76:1f:ea:67:de:cc:9e:4f: 6a:28:38:f2:74:44:4e:70:1b:a9:28:54:07:50:6d: 2b:f3:92:ba:34:99:fc:45:c5:4b:54:94:aa:a7:b2: a6:10:84:5e:49:c4:48:c7:3f:b2:22:a0:bb:b2:ac: 72:ec:ca:23:c0:09:5b:cc:7d:91:53:32:1a:b8:bb: 80:88:29:2f:76:2e:64:e5:d5:f3:5b:b1:a4:be:88: 24:3d:c4:79:c8:63:4e:f5:f6:25:10:54:a3:b5:a4: d0:48:12:f2:93:fb:93:f6:1a:dc:02:1c:4d:ea:d3: 60:15:7d:44:f5:47:d1:00:c0:ec:19:65:0a:fe:11: 9a:3c:f2:b1:1a:56:f3:93:0e:3b:06:2a:f4:76:ca: 64:6a:41:f7:2c:86:7b:5b:0f:11:db:4c:4f:81:ff: 71:10:0a:b4:23:0c:b5:a6:ed:3f:61:a1:07:9d:4b: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A9:1A:92:18:CA:2E:1B:93:7B:7C:44:71:A0:D2:21:0D:43:08:0E X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:96:e2:7a:a7:f9:da:c3:c6:a3:5a:f7:e3:ea:67:39:0d:82: ea:23:82:89:3a:77:dc:50:e2:da:72:c5:95:37:c6:36:e7:97: ad:81:56:f3:2f:9d:44:1c:51:ec:a6:36:81:be:79:bb:86:38: c3:d7:32:5a:74:57:6f:e5:41:5e:e2:d0:81:8c:97:32:dd:dc: 99:4d:e1:fe:74:ed:de:13:31:19:ca:72:14:f1:35:32:84:e4: 27:b8:63:bf:95:28:c8:54:ad:9b:6a:0f:4d:0f:4e:ef:9d:e2: c4:c9:5d:de:3d:49:69:bd:55:21:2c:6d:3d:91:29:91:16:2f: 30:38:4e:1f:d2:4a:28:c3:d9:44:7c:7c:cd:4d:3b:2b:b3:42: 7b:05:96:2e:97:20:5f:fe:ca:4e:ab:7b:65:07:a8:7e:28:9e: 89:89:5a:73:b6:a1:db:17:12:74:69:e8:94:56:0e:7a:50:95: 44:f8:03:56:59:8a:93:e1:f5:50:d6:9d:68:94:d3:d8:fe:60: f5:93:8a:a1:2a:30:45:d4:09:7f:29:97:df:20:8a:2b:2d:b6: 7e:cc:91:7e:06:57:8c:2e:0c:cf:b4:5a:99:b7:b7:a3:1f:cc: ad:d2:8a:52:59:2c:8e:74:0d:81:0f:f0:a3:62:db:68:46:63: 10:33:50:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjQwNTMxMDYxMDM5WhcNMjQwNjA3MDYxMDM5WjAYMRYwFAYD VQQDEw02NjU5NjlkZi0zODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdZOgsnJkzEjSpFmlbXH/gd7JCbBfQTwys+2B0leR73bhwcq/t/DkE8YYcOF vi8p4XPycmaNOjwKKPcuhTZP7FSs3Y3oq8pjGLsMyS9E2jUcdh/qZ97Mnk9qKDjy dEROcBupKFQHUG0r85K6NJn8RcVLVJSqp7KmEIReScRIxz+yIqC7sqxy7MojwAlb zH2RUzIauLuAiCkvdi5k5dXzW7GkvogkPcR5yGNO9fYlEFSjtaTQSBLyk/uT9hrc AhxN6tNgFX1E9UfRAMDsGWUK/hGaPPKxGlbzkw47Bir0dspkakH3LIZ7Ww8R20xP gf9xEAq0Iwy1pu0/YaEHnUsxSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2pGpIY yi4bk3t8RHGg0iENQwgOMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeluJ6p/naw8ajWvfj6mc5DYLqI4KJOnfcUOLacsWVN8Y255etgVbz L51EHFHspjaBvnm7hjjD1zJadFdv5UFe4tCBjJcy3dyZTeH+dO3eEzEZynIU8TUy hOQnuGO/lSjIVK2bag9ND07vneLEyV3ePUlpvVUhLG09kSmRFi8wOE4f0koow9lE fHzNTTsrs0J7BZYulyBf/spOq3tlB6h+KJ6JiVpztqHbFxJ0aeiUVg56UJVE+ANW WYqT4fVQ1p1olNPY/mD1k4qhKjBF1Al/KZffIIorLbZ+zJF+BleMLgzPtFqZt7ej H8yt0opSWSyOdA2BD/CjYttoRmMQM1Aq -----END CERTIFICATE-----Generated at Fri May 31 06:49:27 2024 by rpki-client on console-ams.rpki-client.org