$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: /m6ENGAtoHYJC1hP5AN6jICAIY0F5jHUYb3v+Y5jJSs= Subject key identifier: DA:A4:80:F4:2C:DA:B4:A5:38:F3:5A:C6:45:36:69:54:6F:D1:FA:D5 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0385 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0381 Signing time: Fri 31 May 2024 03:20:41 +0000 Manifest this update: Fri 31 May 2024 03:20:41 +0000 Manifest next update: Fri 07 Jun 2024 03:20:40 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: gUZ4Nzhnf87NNVe1E3DshJVkH+Xnq28Cwc7fSV/ivYA=) 2: 0B80B7885D7511ECB1D03353C4F9AE02.roa (hash: TY5wK3sITN+OKgt/XJL0req3LEPsgcIED4VdaLYdaoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: May 31 03:20:41 2024 GMT Not After : Jun 7 03:20:40 2024 GMT Subject: CN=66594209-7fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:c2:17:3b:31:5f:fb:22:27:6e:5f:64:98: ab:3f:7c:aa:d3:a6:90:e7:cc:07:84:be:13:21:cd: d8:ec:59:30:de:25:a1:ad:7f:df:4d:d3:9a:2b:d5: d7:f9:ec:16:0a:78:0c:fc:11:3f:1d:75:37:46:4f: dc:8a:ea:a9:6b:ee:6c:a8:b4:c6:0d:b9:d4:02:5f: a4:02:cd:9b:c6:d7:d7:2a:9e:54:c9:ca:f3:2f:ae: bc:84:1c:52:0b:f4:8e:75:a9:5f:f7:d0:87:5f:e7: a2:df:19:62:77:df:4e:7f:db:78:a6:6a:02:96:42: c5:d3:df:48:c6:0d:c8:c5:1a:c6:2d:e9:df:5f:73: cb:f1:8b:42:ca:40:2b:32:3d:0e:35:aa:10:c8:a6: 8c:d1:d9:36:78:57:de:b9:44:9d:9e:a0:cb:ed:24: 5f:14:30:26:1d:54:b1:cd:76:2e:96:7e:4d:63:0d: 4c:72:ec:db:06:5e:ba:30:4b:bb:de:c2:b0:80:97: d1:4b:c7:83:80:76:98:21:4f:21:67:b7:33:b9:fa: 60:fc:2b:f8:1e:65:4a:81:de:41:d7:46:29:f9:1e: d1:33:39:2b:30:7d:e1:2c:bd:94:6d:46:0b:15:96: 4b:a3:f7:aa:7f:78:c2:96:a2:0f:9a:e0:09:7d:08: 03:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A4:80:F4:2C:DA:B4:A5:38:F3:5A:C6:45:36:69:54:6F:D1:FA:D5 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:36:b7:23:a5:7a:ea:c3:6a:b6:0f:e1:1f:21:9f:0c:b5:90: f0:52:37:6e:3e:18:d2:6d:83:96:7d:69:28:1a:af:67:7d:9c: 89:a0:c2:04:d4:3e:19:21:f4:8d:61:e5:ef:75:f5:e9:ce:09: 83:fe:fb:6d:1e:58:9d:79:f1:96:f5:4d:1f:30:c5:a8:89:65: 1b:35:f4:bd:3a:8e:a5:2d:83:84:0c:c3:12:7c:3a:5c:c6:82: ab:45:da:a9:7b:0e:71:4b:c3:26:7d:1d:57:7e:9c:4b:96:2e: ef:20:3d:3d:a5:56:7a:e7:b5:0d:0c:f3:42:e7:e8:b4:bd:71: 57:16:46:e9:ca:02:4c:27:29:b9:70:9a:50:48:e3:32:c6:66: dd:bb:ab:a7:f7:0a:a5:51:14:da:b3:b2:56:16:d3:11:3e:48: 29:4e:54:72:63:ac:80:e5:36:91:5b:f4:25:5e:f0:1f:71:47: ee:71:c4:05:db:7d:25:5a:a5:b9:cd:f1:4b:7a:03:d3:a3:e4: 68:b2:10:e6:fe:76:08:73:e5:6e:ad:dd:77:94:8f:85:fa:e8: 7a:7f:01:0a:63:f8:fa:dd:16:a7:df:dc:0e:3e:4e:34:9a:08: 5e:11:92:ff:dc:03:60:d8:5f:07:4b:dd:7b:66:ed:67:25:af: 03:00:ac:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjQwNTMxMDMyMDQxWhcNMjQwNjA3MDMyMDQwWjAYMRYwFAYD VQQDEw02NjU5NDIwOS03ZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrbCFzsxX/siJ25fZJirP3yq06aQ58wHhL4TIc3Y7Fkw3iWhrX/fTdOaK9XX +ewWCngM/BE/HXU3Rk/ciuqpa+5sqLTGDbnUAl+kAs2bxtfXKp5UycrzL668hBxS C/SOdalf99CHX+ei3xlid99Of9t4pmoClkLF099Ixg3IxRrGLenfX3PL8YtCykAr Mj0ONaoQyKaM0dk2eFfeuUSdnqDL7SRfFDAmHVSxzXYuln5NYw1McuzbBl66MEu7 3sKwgJfRS8eDgHaYIU8hZ7czufpg/Cv4HmVKgd5B10Yp+R7RMzkrMH3hLL2UbUYL FZZLo/eqf3jClqIPmuAJfQgDIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqkgPQs 2rSlOPNaxkU2aVRv0frVMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6NrcjpXrqw2q2D+EfIZ8MtZDwUjduPhjSbYOWfWkoGq9nfZyJoMIE 1D4ZIfSNYeXvdfXpzgmD/vttHlidefGW9U0fMMWoiWUbNfS9Oo6lLYOEDMMSfDpc xoKrRdqpew5xS8MmfR1XfpxLli7vID09pVZ657UNDPNC5+i0vXFXFkbpygJMJym5 cJpQSOMyxmbdu6un9wqlURTas7JWFtMRPkgpTlRyY6yA5TaRW/QlXvAfcUfuccQF 230lWqW5zfFLegPTo+RoshDm/nYIc+Vurd13lI+F+uh6fwEKY/j63Ran39wOPk40 mgheEZL/3ANg2F8HS917Zu1nJa8DAKws -----END CERTIFICATE-----Generated at Fri May 31 04:54:03 2024 by rpki-client on console-fra.rpki-client.org