$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft File: O4dpDvQFVnODtvcv3TARYM6CHys.mft (raw, json) Hash identifier: u5SV3qRj4gGql0eK5eI8zpIS9N4/WXoAhPF1/eOXIS0= Subject key identifier: 5B:F9:07:49:8B:8E:AC:C4:3E:53:BD:4B:B1:47:44:03:19:85:FD:27 Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft Manifest number: 016E Signing time: Sat 01 Jun 2024 06:02:19 +0000 Manifest this update: Sat 01 Jun 2024 06:02:18 +0000 Manifest next update: Sat 08 Jun 2024 06:02:18 +0000 Files and hashes: 1: O4dpDvQFVnODtvcv3TARYM6CHys.crl (hash: nleQqq/4SqPdDddJTOi+ArTquJGyEwO9gBROYstLHMo=) 2: F9424C6C80FA11ED9B35954DC4F9AE02.roa (hash: VH7Az1l3/C2rodFNPFK9l0cDE+AV/Y9VchB0X9wxyLY=) 3: F86A2F7680FA11ED9B35954DC4F9AE02.roa (hash: fI24ww+ckWmpN0OtogeTi+6uALeUfFotFhjPlpivn84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Jun 1 06:02:18 2024 GMT Not After : Jun 8 06:02:18 2024 GMT Subject: CN=665ab96a-8877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:19:02:ef:49:f0:81:b6:07:8f:a5:59:dd: bb:fe:96:09:5e:80:7b:71:be:05:c8:c6:a3:d2:11: 8d:22:a0:04:ab:72:57:3d:51:9e:17:8f:0f:9a:de: 64:5b:92:06:4c:f3:d7:a1:1c:32:8e:87:a3:fe:13: d2:8c:0c:4a:95:6a:f2:9d:de:33:2c:34:41:b4:2b: 62:fe:5d:03:50:cc:3a:db:74:88:1e:81:fe:b8:05: 4f:5e:47:a8:e6:bd:cc:c3:77:1f:eb:c9:66:3c:fc: 06:ae:0f:63:1b:c0:a3:ff:c0:9c:54:36:9a:98:e0: 7d:15:69:78:20:1b:fe:8c:d5:51:23:22:99:a5:b1: d2:61:af:ad:9e:1b:4a:81:0a:39:3a:90:0d:57:03: bd:25:69:1a:9a:8b:22:c5:82:84:3e:8c:14:33:6a: b9:f6:3f:ea:17:e0:c5:55:84:b8:fc:8c:0c:99:d9: c0:d8:ef:0f:37:46:41:8e:6e:3c:2e:b7:15:58:7e: 62:1d:e2:73:3c:a1:a6:58:8b:4b:77:ca:6e:d6:1a: 57:8b:5a:39:70:71:01:b0:04:97:0a:68:c4:48:15: 4e:db:b2:64:da:95:19:67:e4:df:85:f8:34:57:f6: 0f:94:87:fc:04:a1:70:74:4e:aa:32:61:ec:4e:a2: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F9:07:49:8B:8E:AC:C4:3E:53:BD:4B:B1:47:44:03:19:85:FD:27 X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:c7:ad:11:f4:f3:a2:f4:2d:5e:c1:2d:4e:ef:c5:04:b9:2b: 67:a3:ec:84:d3:53:c6:ca:65:b4:7d:55:07:8b:eb:de:86:89: 63:15:5f:64:ab:a5:b0:f2:d5:41:c0:13:75:cf:74:9d:35:41: 2f:c1:b2:61:81:05:a3:f8:6e:19:37:e0:2b:87:3d:5b:d9:4f: 1a:d8:2c:6a:af:f7:23:f3:bb:41:55:17:e1:f6:94:61:a3:ac: 28:b5:bb:b1:b2:b1:d3:81:a1:a9:d4:a0:3f:c0:d3:25:a2:3f: 51:4e:ee:1f:50:64:7f:c5:97:1a:71:38:88:93:25:ed:3c:86: d4:86:30:f0:f3:41:3c:82:48:c7:6e:6c:c8:c4:30:93:41:95: c3:e1:8a:f1:cf:cd:ae:03:c1:37:cb:b1:ff:38:4d:1f:ad:b0: bb:5a:9e:47:83:f9:b2:3d:d4:96:49:f5:60:1b:8f:79:3a:b1: f1:88:41:0a:63:af:ef:1b:2b:e3:94:1d:5f:05:c5:3c:5f:70: ce:c1:60:b1:0a:f1:e4:7b:e7:d2:82:2d:c5:40:04:bc:ef:24: 38:82:fb:17:00:f0:ac:4c:7b:b9:da:26:9f:2d:21:98:16:c3: d4:50:90:0c:ce:80:18:d7:a9:ab:ca:c2:2a:25:8c:36:f4:b1: f8:49:04:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjQwNjAxMDYwMjE4WhcNMjQwNjA4MDYwMjE4WjAYMRYwFAYD VQQDEw02NjVhYjk2YS04ODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJoZAu9J8IG2B4+lWd27/pYJXoB7cb4FyMaj0hGNIqAEq3JXPVGeF48Pmt5k W5IGTPPXoRwyjoej/hPSjAxKlWrynd4zLDRBtCti/l0DUMw623SIHoH+uAVPXkeo 5r3Mw3cf68lmPPwGrg9jG8Cj/8CcVDaamOB9FWl4IBv+jNVRIyKZpbHSYa+tnhtK gQo5OpANVwO9JWkamosixYKEPowUM2q59j/qF+DFVYS4/IwMmdnA2O8PN0ZBjm48 LrcVWH5iHeJzPKGmWItLd8pu1hpXi1o5cHEBsASXCmjESBVO27Jk2pUZZ+Tfhfg0 V/YPlIf8BKFwdE6qMmHsTqJb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFv5B0mL jqzEPlO9S7FHRAMZhf0nMB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFBRC80M0E1MTFBRTJDQkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZu T0R0dmN2M1RBUllNNkNIeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1x60R9POi9C1ewS1O78UEuStno+yE01PGymW0fVUHi+veholjFV9k q6Ww8tVBwBN1z3SdNUEvwbJhgQWj+G4ZN+Arhz1b2U8a2Cxqr/cj87tBVRfh9pRh o6wotbuxsrHTgaGp1KA/wNMloj9RTu4fUGR/xZcacTiIkyXtPIbUhjDw80E8gkjH bmzIxDCTQZXD4Yrxz82uA8E3y7H/OE0frbC7Wp5Hg/myPdSWSfVgG495OrHxiEEK Y6/vGyvjlB1fBcU8X3DOwWCxCvHke+fSgi3FQAS87yQ4gvsXAPCsTHu52iafLSGY FsPUUJAMzoAY16mrysIqJYw29LH4SQQK -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:32 2024 by rpki-client on console-ams.rpki-client.org