$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: Bc+6Q1wKlFEr+MSf9vlbu39hsBpkRWV77qfbuvTuWgQ= Subject key identifier: 22:A8:9B:0D:B2:9C:F8:6A:8D:F2:01:CA:37:06:C4:51:D8:A8:26:7E Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 90 Signing time: Fri 31 May 2024 19:04:51 +0000 Manifest this update: Fri 31 May 2024 19:04:50 +0000 Manifest next update: Fri 07 Jun 2024 19:04:50 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: p9upV+OmSup8b9M7o5n817LNv/bIM18M4VJIwkiyVww=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: y7aSqlVu+M8dRxaQ0D1h2oyjB9Hff+DvjcZ1U7cch9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: May 31 19:04:50 2024 GMT Not After : Jun 7 19:04:50 2024 GMT Subject: CN=665a1f52-25de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:95:7a:e0:00:c4:40:fa:d0:f6:2f:ab:a3: 8d:6d:ad:32:0c:2c:58:7e:59:dc:71:9f:eb:e2:3d: ca:38:ac:f6:a5:a9:2b:9a:b9:fa:8d:f9:79:ed:d4: ee:9e:e3:d7:10:11:25:e6:76:de:ea:d2:fd:99:30: 9d:96:7e:f0:72:8d:3b:41:39:58:d9:5f:1d:63:93: a2:a0:4f:bc:d3:0e:da:2c:c0:29:e6:9b:57:82:65: da:0a:a2:64:0c:ec:3a:f5:56:11:b0:82:a5:82:aa: 4c:3c:50:46:7c:85:5e:8a:5b:57:fc:24:9e:00:6f: 2f:26:03:52:51:24:bc:d9:59:41:99:f4:dd:a9:9b: 09:39:76:6b:5c:67:58:0d:77:5c:6d:23:a9:a9:a4: b1:6a:46:17:5f:75:e9:37:11:d9:71:84:77:a3:8c: 1d:b3:21:7b:be:48:15:89:d5:1a:90:15:5d:82:fa: 0a:37:80:bc:c2:56:9e:5c:c4:81:fc:61:62:11:e0: a5:81:f8:8a:81:24:fa:15:b4:5d:59:02:25:e4:0a: 25:5d:c3:7f:97:bc:c0:1b:08:dc:39:ff:aa:e2:7e: 2f:85:3f:71:72:9c:35:b7:8e:b3:16:65:99:bd:c5: 01:98:54:fc:2a:d7:15:8f:f1:b5:d6:3f:51:29:26: 88:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A8:9B:0D:B2:9C:F8:6A:8D:F2:01:CA:37:06:C4:51:D8:A8:26:7E X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:57:dc:28:d9:1f:c9:e0:fb:cf:df:8e:a1:51:00:ad:a2:8e: 8b:4c:03:23:01:ba:6d:98:f6:7c:08:ec:e8:5a:8b:ca:34:14: f3:5f:54:9b:fa:f1:7c:36:93:8a:ca:fd:f5:22:07:a2:83:b7: b9:d8:7d:50:69:6e:87:65:58:da:86:1a:d6:3b:77:5d:9a:93: 18:e3:22:36:07:8f:39:1c:1d:3c:d4:8b:09:e4:29:a4:4c:93: b4:e2:33:8a:e3:37:a6:0e:1d:9f:a6:60:78:7f:97:ec:cb:9e: 5f:22:d8:28:50:10:31:88:de:f9:ec:47:5e:c9:b3:36:af:f4: 41:56:89:2f:40:bc:fb:14:29:0a:cc:5a:6d:26:b0:7e:32:cb: ae:da:ce:84:2c:e8:09:ea:81:0e:90:5b:41:2d:61:38:9e:64: c9:04:f4:1c:f3:8c:2d:f2:37:e5:e0:be:05:62:46:c0:cf:3d: 99:20:e8:b4:0a:f7:0e:ae:b2:b0:06:c6:58:dd:54:b6:83:7e: bc:61:9a:db:f0:95:45:10:01:1b:bc:44:ec:c8:ab:ce:ed:b7: 1c:75:fa:3b:2f:e4:e7:6c:18:21:f7:a1:12:f7:95:fb:e3:7e: f2:22:82:e8:8e:88:ed:cd:50:d9:5b:c5:b7:62:7d:51:8c:94: 67:76:8b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjQwNTMxMTkwNDUwWhcNMjQwNjA3MTkwNDUwWjAYMRYwFAYD VQQDEw02NjVhMWY1Mi0yNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYyVeuAAxED60PYvq6ONba0yDCxYflnccZ/r4j3KOKz2pakrmrn6jfl57dTu nuPXEBEl5nbe6tL9mTCdln7wco07QTlY2V8dY5OioE+80w7aLMAp5ptXgmXaCqJk DOw69VYRsIKlgqpMPFBGfIVeiltX/CSeAG8vJgNSUSS82VlBmfTdqZsJOXZrXGdY DXdcbSOpqaSxakYXX3XpNxHZcYR3o4wdsyF7vkgVidUakBVdgvoKN4C8wlaeXMSB /GFiEeClgfiKgST6FbRdWQIl5AolXcN/l7zAGwjcOf+q4n4vhT9xcpw1t46zFmWZ vcUBmFT8KtcVj/G11j9RKSaIQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKomw2y nPhqjfIByjcGxFHYqCZ+MB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeV9wo2R/J4PvP346hUQCtoo6LTAMjAbptmPZ8COzoWovKNBTzX1Sb +vF8NpOKyv31Igeig7e52H1QaW6HZVjahhrWO3ddmpMY4yI2B485HB081IsJ5Cmk TJO04jOK4zemDh2fpmB4f5fsy55fItgoUBAxiN757EdeybM2r/RBVokvQLz7FCkK zFptJrB+Msuu2s6ELOgJ6oEOkFtBLWE4nmTJBPQc84wt8jfl4L4FYkbAzz2ZIOi0 CvcOrrKwBsZY3VS2g368YZrb8JVFEAEbvETsyKvO7bccdfo7L+TnbBgh96ES95X7 437yIoLojojtzVDZW8W3Yn1RjJRndos1 -----END CERTIFICATE-----Generated at Fri May 31 20:34:19 2024 by rpki-client on console-ams.rpki-client.org