$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: s+VqjwSg5gFnfO/6TIPCKgke9va5KbxW+KurVp2ohCc= Subject key identifier: 6A:88:DE:7C:89:B2:78:03:84:8D:6B:5A:2F:E1:BE:A9:94:5E:DC:44 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 0127 Signing time: Sun 19 May 2024 05:08:32 +0000 Manifest this update: Sun 19 May 2024 05:08:32 +0000 Manifest next update: Sun 26 May 2024 05:08:32 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: eq898/8zh+Lf66acJguiMzGivkCsONWKX/6xfKhkUCM=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 2bOIvfXxT14VfBuLjn2fK1kMoqNHisqc/b7wGNY7+9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: May 19 05:08:32 2024 GMT Not After : May 26 05:08:32 2024 GMT Subject: CN=66498950-0fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:61:39:1c:84:d0:b9:8a:3c:4a:87:f9:b8:9e: f8:9a:0d:7f:2b:63:ca:0d:99:5a:f5:8f:3d:f5:83: 99:16:4c:7f:55:7f:dc:bd:09:12:f7:57:4d:ef:f7: 39:8c:f6:03:67:00:7a:f8:2c:97:68:b4:0b:53:88: ea:9e:a0:f8:8a:0f:80:f2:e0:af:28:2b:fe:03:51: 7a:7b:89:77:df:4d:14:a1:32:91:6d:92:4c:e1:21: c1:aa:c1:98:5b:de:a4:7c:0a:01:5e:40:e6:fd:34: a9:38:f7:b8:48:48:a8:c5:13:eb:f1:cd:97:3e:ec: 45:73:95:83:c3:5c:39:d6:cb:db:f8:19:96:e7:49: 82:20:de:8d:d2:d6:a8:36:ea:b6:af:ff:e0:c4:54: 9d:5c:bd:65:4b:2b:7f:9a:90:75:92:bc:82:d7:6a: 51:53:b4:9c:1b:06:1a:84:66:73:6b:c7:d6:61:85: be:b9:b4:b2:f8:5a:14:08:c5:46:2c:da:2e:0b:c6: ec:72:4f:d9:61:a1:76:b1:81:01:5c:3a:13:6a:00: 11:db:a8:9c:67:6b:dd:15:b9:7f:05:61:d3:b0:e5: bb:f0:49:a5:f8:3a:06:12:bc:f3:65:c4:0e:20:61: a7:45:1f:ff:66:72:8d:ee:14:1d:67:b5:2e:1f:71: c0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:88:DE:7C:89:B2:78:03:84:8D:6B:5A:2F:E1:BE:A9:94:5E:DC:44 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:c6:db:9f:d0:88:21:dd:e6:ef:17:3d:37:f5:a6:de:26:2b: b1:f4:7b:f8:8a:38:95:c4:09:74:72:98:73:0b:89:8d:88:cc: 79:ac:2e:0e:58:41:a8:2b:c0:6f:85:27:fd:5c:60:14:5b:19: 74:69:2b:8d:06:f5:7e:ed:74:d1:da:6c:8f:c9:8e:41:5b:04: 4e:08:1c:3d:23:0a:e8:e1:05:be:3f:bc:fa:0d:6d:10:d5:d6: 83:10:fa:97:e5:d5:07:43:67:4f:b4:75:85:8d:7b:7d:d7:af: 19:74:02:a0:93:d5:7e:bc:4c:5e:51:ef:fe:fb:f3:4d:4a:0b: 69:34:af:b1:0f:76:52:a2:05:29:24:2e:a0:8c:8f:3e:7b:08: 5a:72:05:7c:39:25:1a:35:6d:07:6d:6b:9b:0f:59:bf:e0:44: 8c:4a:d5:7d:7d:f3:c9:9e:48:5a:2c:b0:47:d6:58:18:93:80: 49:d9:51:e0:c4:8e:1b:2c:4a:ff:98:6e:f0:c8:4e:1a:02:b9: 96:7a:80:82:e4:db:4f:4b:2d:aa:a9:46:bc:2e:9c:f6:0d:00: d0:94:98:fc:f5:58:f1:30:22:2d:c7:8a:4f:ff:0d:64:b3:e7: ca:8d:49:77:ef:44:a2:b3:b3:3d:86:21:c0:91:f0:33:c6:8b: e0:79:22:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjQwNTE5MDUwODMyWhcNMjQwNTI2MDUwODMyWjAYMRYwFAYD VQQDEw02NjQ5ODk1MC0wZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2E5HITQuYo8Sof5uJ74mg1/K2PKDZla9Y899YOZFkx/VX/cvQkS91dN7/c5 jPYDZwB6+CyXaLQLU4jqnqD4ig+A8uCvKCv+A1F6e4l3300UoTKRbZJM4SHBqsGY W96kfAoBXkDm/TSpOPe4SEioxRPr8c2XPuxFc5WDw1w51svb+BmW50mCIN6N0tao Nuq2r//gxFSdXL1lSyt/mpB1kryC12pRU7ScGwYahGZza8fWYYW+ubSy+FoUCMVG LNouC8bsck/ZYaF2sYEBXDoTagAR26icZ2vdFbl/BWHTsOW78Eml+DoGErzzZcQO IGGnRR//ZnKN7hQdZ7UuH3HAFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqI3nyJ sngDhI1rWi/hvqmUXtxEMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIxtuf0Igh3ebvFz039abeJiux9Hv4ijiVxAl0cphzC4mNiMx5rC4O WEGoK8BvhSf9XGAUWxl0aSuNBvV+7XTR2myPyY5BWwROCBw9Iwro4QW+P7z6DW0Q 1daDEPqX5dUHQ2dPtHWFjXt9168ZdAKgk9V+vExeUe/++/NNSgtpNK+xD3ZSogUp JC6gjI8+ewhacgV8OSUaNW0HbWubD1m/4ESMStV9ffPJnkhaLLBH1lgYk4BJ2VHg xI4bLEr/mG7wyE4aArmWeoCC5NtPSy2qqUa8Lpz2DQDQlJj89VjxMCItx4pP/w1k s+fKjUl370Sis7M9hiHAkfAzxovgeSLJ -----END CERTIFICATE-----Generated at Sun May 19 06:14:37 2024 by rpki-client on console-ams.rpki-client.org