$ rpki-client -vvf rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft File: oAONXyzMSsJeuvdxJC50MA_PeCw.mft (raw, json) Hash identifier: QllXjMza/vCo2plr153IfGAfZ4fa0mezl5rqEClYbcs= Subject key identifier: 57:0B:E3:95:70:63:3C:F9:9D:5C:53:88:1E:BE:96:B0:60:CF:5F:6C Authority key identifier: A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C Certificate issuer: /CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Certificate serial: 090C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft Manifest number: 0903 Signing time: Sat 18 May 2024 21:15:33 +0000 Manifest this update: Sat 18 May 2024 21:15:33 +0000 Manifest next update: Sat 25 May 2024 21:15:33 +0000 Files and hashes: 1: oAONXyzMSsJeuvdxJC50MA_PeCw.crl (hash: pQ2LGxkqqcfJR1mJ/z8vAl4CJEBtaux0Ma4QHnuF8zs=) 2: 1D86F90A988D11EABE02F23DC4F9AE02.roa (hash: 2i5tzweDlq0zwqxpJQEjncKMamsUL98S0QrfMuLBr/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Validity Not Before: May 18 21:15:33 2024 GMT Not After : May 25 21:15:33 2024 GMT Subject: CN=66491a75-d021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:61:b2:63:c3:ad:1e:a0:06:16:fc:e3:0d: 01:5c:a7:30:ff:82:ab:95:d9:d2:e1:88:c3:8b:d6: 7c:e6:bf:a8:dd:de:42:17:f5:91:e1:9b:68:e0:55: ea:49:6a:db:3c:2c:31:5f:3a:2a:67:18:ca:f3:fe: b8:13:d8:8b:9f:18:a7:85:f0:39:21:19:99:b5:70: 34:1e:77:ce:76:45:19:25:8d:89:f0:f2:6e:d1:e7: 5d:cf:a1:02:1c:28:93:71:40:11:04:79:99:06:ee: cb:ba:00:16:61:e3:ba:ed:21:18:67:50:9f:ba:13: d4:23:53:0a:61:07:c8:ba:c0:c2:ea:28:43:08:ab: 56:bc:db:5d:5f:cf:00:27:5b:e3:55:e5:3b:a4:77: 19:23:88:63:1d:d6:4f:17:8e:35:c5:ff:d4:ff:2d: 10:1f:46:f5:6d:0b:96:6c:90:10:93:a8:65:40:b6: 33:ae:f9:2a:64:88:bb:05:75:2c:c8:3c:29:f3:27: 0b:96:4d:82:d4:ee:21:9c:98:b5:80:69:9f:49:66: 75:72:d3:1a:af:d8:4b:c4:5c:7b:23:a0:bf:1d:f2: 88:f2:0b:53:ec:5d:09:ec:48:44:c5:5e:c2:97:34: 34:72:68:2e:2c:3c:d5:5e:37:70:13:54:38:cf:23: db:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0B:E3:95:70:63:3C:F9:9D:5C:53:88:1E:BE:96:B0:60:CF:5F:6C X509v3 Authority Key Identifier: keyid:A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:db:4c:25:2e:b4:d2:de:9a:d1:cd:32:d3:1c:64:2c:6f:6d: 6b:14:71:ee:b3:26:c0:86:57:04:dc:85:b3:da:88:fa:e5:9f: 93:89:09:a7:ea:19:69:25:eb:75:09:8e:cf:bf:80:a8:b4:f7: 55:d9:7b:0a:95:5d:b9:5b:18:90:8b:12:96:21:36:7c:28:33: 3f:31:e8:c6:ea:bd:21:99:70:10:bc:2b:0e:36:f1:bc:9d:fe: 9e:0c:cb:7b:c0:e3:7f:05:3a:7b:fb:83:6a:ff:43:d9:f8:be: a8:f9:85:99:c5:2b:91:4d:33:9a:d2:8e:4b:b9:38:d2:2c:95: 40:ce:0b:a5:52:c2:ec:7e:07:0c:91:52:30:92:3e:94:e2:47: 6c:84:06:77:9d:28:b6:1b:16:ba:34:32:d4:f1:ad:90:6c:26: ee:44:1f:ce:25:ae:b4:51:da:8b:6a:69:01:8f:5d:46:d1:dd: 34:c4:4a:d4:7c:04:f9:f6:6e:f0:0f:f8:9d:f9:25:d3:6a:76: 7c:86:6d:ab:f3:c7:ab:48:ef:2b:ba:7c:b1:b4:cb:09:77:13: 84:76:4e:97:6c:d7:21:d8:db:89:27:89:58:e7:6c:53:f3:e8: 1f:60:d8:64:ed:a5:b8:65:94:32:4d:f8:d6:f3:9e:33:0f:7e: a4:13:e5:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwQTQxMTAvBgNVBAUTKEEwMDM4RDVGMkNDQzRBQzI1RUJBRjc3MTI0MkU3NDMw MEZDRjc4MkMwHhcNMjQwNTE4MjExNTMzWhcNMjQwNTI1MjExNTMzWjAYMRYwFAYD VQQDEw02NjQ5MWE3NS1kMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW9hsmPDrR6gBhb84w0BXKcw/4KrldnS4YjDi9Z85r+o3d5CF/WR4Zto4FXq SWrbPCwxXzoqZxjK8/64E9iLnxinhfA5IRmZtXA0HnfOdkUZJY2J8PJu0eddz6EC HCiTcUARBHmZBu7LugAWYeO67SEYZ1CfuhPUI1MKYQfIusDC6ihDCKtWvNtdX88A J1vjVeU7pHcZI4hjHdZPF441xf/U/y0QH0b1bQuWbJAQk6hlQLYzrvkqZIi7BXUs yDwp8ycLlk2C1O4hnJi1gGmfSWZ1ctMar9hLxFx7I6C/HfKI8gtT7F0J7EhExV7C lzQ0cmguLDzVXjdwE1Q4zyPbDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcL45Vw Yzz5nVxTiB6+lrBgz19sMB8GA1UdIwQYMBaAFKADjV8szErCXrr3cSQudDAPz3gs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjBBNC82QzcxNDBFRTgy OUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNzSmV1dmR4SkM1ME1BX1Bl Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BT05YeXpNU3NKZXV2ZHhKQzUwTUFfUGVDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjBBNC82QzcxNDBFRTgyOUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNz SmV1dmR4SkM1ME1BX1BlQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW20wlLrTS3prRzTLTHGQsb21rFHHusybAhlcE3IWz2oj65Z+TiQmn 6hlpJet1CY7Pv4CotPdV2XsKlV25WxiQixKWITZ8KDM/MejG6r0hmXAQvCsONvG8 nf6eDMt7wON/BTp7+4Nq/0PZ+L6o+YWZxSuRTTOa0o5LuTjSLJVAzgulUsLsfgcM kVIwkj6U4kdshAZ3nSi2Gxa6NDLU8a2QbCbuRB/OJa60UdqLamkBj11G0d00xErU fAT59m7wD/id+SXTanZ8hm2r88erSO8runyxtMsJdxOEdk6XbNch2NuJJ4lY52xT 8+gfYNhk7aW4ZZQyTfjW854zD36kE+WN -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org