$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: bwFMwiHeHV8kCB128laRnE5ntPv/wyuf3UgPsj1y4d8= Subject key identifier: 94:3A:D9:92:CD:93:C2:78:68:96:B7:01:8C:8B:32:DF:7E:A9:38:82 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 099E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0976 Signing time: Sat 18 May 2024 21:02:01 +0000 Manifest this update: Sat 18 May 2024 21:02:00 +0000 Manifest next update: Sat 25 May 2024 21:02:00 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: 2rSD5VPY8HVwinzI3KvmhZEGOpwquk21su2ysTb8vwI=) 2: B379B0346F4711EA81200366C4F9AE02.roa (hash: H2PLmBOhvrMHTol27icyQrzH+hTZJzJR26mieWtMEQw=) 3: 86306ED26F4311EAB6C07F58C4F9AE02.roa (hash: exGfLXSwoo53QSENqvJ4R2NhRqNbc9joAU4nqqb4Pp0=) 4: 4D3D0D4E6F4611EA8B859062C4F9AE02.roa (hash: gVTqZBqwfsZ6r1k68SLCAcPYcE8D3J5aeLhiMq5m454=) 5: 7069C1486FC511EAA442FE7AC4F9AE02.roa (hash: Ckqccm0tXHxsCROTGSUGvuN0LAn/F3Vx+EfOLX8P8ZA=) 6: B911891A6F4011EAAC33B74EC4F9AE02.roa (hash: i/Mnlv4aww/3yOjerQ2ofXKOCYee1zwc/lxEr3AuEJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: May 18 21:02:00 2024 GMT Not After : May 25 21:02:00 2024 GMT Subject: CN=66491749-fe24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:f0:63:6c:5d:e4:5b:36:bf:4e:e3:66:a5: 77:8f:7c:03:ff:18:d2:7f:d7:7d:8b:ef:1b:2d:ec: 2f:ed:c7:49:f3:69:90:ce:1d:e8:af:85:92:e4:5f: 10:9d:82:3b:45:91:1c:6b:9d:3e:dc:95:2e:03:45: cf:f8:95:6d:85:d6:a0:23:57:5b:05:f9:7e:56:d7: dc:32:13:d2:ef:ab:7f:61:3b:06:e3:3a:40:71:ec: 5b:5c:1b:42:62:03:dd:45:d3:1d:64:90:21:c4:e9: 68:28:2c:43:34:71:5d:cb:5b:89:d3:82:a8:2e:b0: e5:83:7f:9a:da:f4:b5:38:08:fa:3c:ad:4d:9e:80: f8:11:00:6f:10:93:2a:d5:77:41:85:40:d8:e1:19: c5:0c:5c:54:d6:c2:0a:a2:40:88:03:3f:96:7d:8b: f1:27:87:5e:49:d2:94:fd:b0:4f:5e:17:3e:71:83: ac:9a:07:4c:81:07:f8:06:c5:3c:48:ff:62:1b:6b: 09:de:76:7d:17:c2:57:85:c0:e2:b5:ea:6f:1d:12: 71:6d:aa:98:f4:a5:e3:3c:a2:6a:4d:8b:75:32:16: 9a:35:39:49:f3:d4:c7:01:be:72:25:ec:bc:c3:60: 4a:83:71:52:4a:42:9c:b0:86:fa:02:54:ec:87:f3: 79:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3A:D9:92:CD:93:C2:78:68:96:B7:01:8C:8B:32:DF:7E:A9:38:82 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:6a:00:e1:20:4f:9c:7f:c3:da:70:dc:f6:ff:6f:5b:b4:64: 26:6e:03:a2:f8:b6:fb:1c:31:64:e0:34:ad:ad:39:a0:34:a3: e8:5c:16:78:57:ea:87:f4:73:07:58:de:1d:2c:97:ed:51:8f: 8f:93:77:c1:45:55:97:a7:c6:5f:04:9d:4c:a5:68:ab:0d:80: 4f:5a:cc:01:1b:0c:61:f2:5c:31:ca:62:b6:0e:e4:e2:02:03: 74:96:38:72:42:af:46:13:be:e9:96:0b:36:6b:d9:a8:11:f2: f2:b6:d3:44:0e:12:4f:85:ff:9c:67:02:68:43:a1:38:f4:9c: 87:91:8f:c9:4b:d6:15:5a:28:3d:da:29:d9:85:d5:ae:d3:dc: 44:8c:fb:92:7b:40:31:b7:93:f3:d9:63:5f:6e:b6:93:a8:14: c4:09:b9:a7:39:b2:ad:9e:66:6c:62:44:ee:b2:4f:e6:c1:73: be:ec:e8:55:90:e9:22:8f:66:fa:be:86:5c:08:a1:75:85:cc: 5e:a4:cd:44:8a:60:d1:05:77:ed:34:ac:8e:2b:88:b6:df:9c: 80:44:e6:db:dc:36:21:53:ad:f4:7d:01:5a:88:13:d0:fd:01: a9:15:e2:20:b1:c0:30:b6:85:a7:1d:85:c7:a0:2e:36:92:f8: 25:ea:9e:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjQwNTE4MjEwMjAwWhcNMjQwNTI1MjEwMjAwWjAYMRYwFAYD VQQDEw02NjQ5MTc0OS1mZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4U3wY2xd5Fs2v07jZqV3j3wD/xjSf9d9i+8bLewv7cdJ82mQzh3or4WS5F8Q nYI7RZEca50+3JUuA0XP+JVthdagI1dbBfl+VtfcMhPS76t/YTsG4zpAcexbXBtC YgPdRdMdZJAhxOloKCxDNHFdy1uJ04KoLrDlg3+a2vS1OAj6PK1NnoD4EQBvEJMq 1XdBhUDY4RnFDFxU1sIKokCIAz+WfYvxJ4deSdKU/bBPXhc+cYOsmgdMgQf4BsU8 SP9iG2sJ3nZ9F8JXhcDitepvHRJxbaqY9KXjPKJqTYt1MhaaNTlJ89THAb5yJey8 w2BKg3FSSkKcsIb6AlTsh/N50QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQ62ZLN k8J4aJa3AYyLMt9+qTiCMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAagDhIE+cf8PacNz2/29btGQmbgOi+Lb7HDFk4DStrTmgNKPoXBZ4 V+qH9HMHWN4dLJftUY+Pk3fBRVWXp8ZfBJ1MpWirDYBPWswBGwxh8lwxymK2DuTi AgN0ljhyQq9GE77plgs2a9moEfLyttNEDhJPhf+cZwJoQ6E49JyHkY/JS9YVWig9 2inZhdWu09xEjPuSe0Axt5Pz2WNfbraTqBTECbmnObKtnmZsYkTusk/mwXO+7OhV kOkij2b6voZcCKF1hcxepM1EimDRBXftNKyOK4i235yARObb3DYhU630fQFaiBPQ /QGpFeIgscAwtoWnHYXHoC42kvgl6p6G -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org