$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft File: Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft (raw, json) Hash identifier: uK8dzWZrW9A+muALDR7mUzI0Jh2Sv2PlRSQxxGk4zlU= Subject key identifier: ED:BE:63:F4:BA:AF:F3:5D:C5:C8:B4:ED:BD:33:85:6C:E9:EA:D6:86 Authority key identifier: 3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C Certificate issuer: /CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft Manifest number: 43 Signing time: Sun 19 May 2024 08:07:41 +0000 Manifest this update: Sun 19 May 2024 08:07:41 +0000 Manifest next update: Sun 26 May 2024 08:07:41 +0000 Files and hashes: 1: Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl (hash: W8bDlXKKWesr803KlaHDXWT/PiFmkpoMo6L/3S+ywXU=) 2: BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa (hash: tDzRS9D9LYakwWnsKRwiJRr0iEVNxo6X/cCE3yfKlJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Validity Not Before: May 19 08:07:41 2024 GMT Not After : May 26 08:07:41 2024 GMT Subject: CN=6649b34d-efc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:f0:3f:f3:f7:a4:8f:69:96:73:b6:1b:f0: bb:b5:ab:9f:69:50:fe:c3:0e:cd:44:ff:7d:e8:f8: 99:f8:91:9b:82:b9:6b:5b:e1:51:99:37:6d:1b:cc: 0b:11:09:88:21:85:68:f0:b5:99:07:d3:e5:f8:0f: 49:68:63:85:f6:26:a0:c9:ad:63:53:f5:e8:c6:ce: d2:58:80:8c:23:3a:e1:29:6e:be:cd:54:55:3f:53: 67:78:69:a8:ae:45:a9:aa:75:90:00:23:f2:40:b4: ed:18:81:a2:4b:0d:62:fc:94:76:59:c6:07:7b:ee: 22:69:81:da:b0:52:29:07:9d:c3:92:e9:da:ac:cb: 84:89:8a:38:b6:6f:a2:58:dd:5a:8e:09:8b:8c:aa: 53:31:13:65:ca:68:6e:19:ea:5f:d5:a0:ae:c4:c0: 3b:f7:5a:49:40:f3:0e:3f:18:10:79:88:70:84:ef: 63:23:2e:56:24:4f:c8:90:43:7d:d4:9a:ba:82:6a: c5:55:fc:97:72:88:dc:0f:14:5e:6f:33:22:33:29: 00:e1:68:49:1d:47:48:33:9a:cc:03:15:66:ee:27: a1:39:e8:23:97:c9:48:ca:11:94:28:31:ba:35:f0: d4:96:54:c3:9c:0f:76:c1:52:16:af:45:a1:be:98: ba:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BE:63:F4:BA:AF:F3:5D:C5:C8:B4:ED:BD:33:85:6C:E9:EA:D6:86 X509v3 Authority Key Identifier: keyid:3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:72:c5:74:8b:c8:69:dc:f8:62:53:eb:fa:23:ed:4d:da:23: a2:e2:13:b7:a7:29:e3:67:b4:d6:93:02:5c:d2:70:09:8c:41: 03:15:26:ac:7e:76:9d:52:60:83:f5:19:45:2f:9d:94:82:21: e1:8e:fb:50:e3:a5:8c:f6:2f:77:a0:5b:72:ee:e9:d9:e9:e8: ee:97:d0:4e:1b:4a:15:b3:53:b4:15:2a:96:25:44:11:ae:0d: b3:63:d1:cc:9f:62:39:80:8b:56:8b:63:2b:3f:b0:c0:6a:60: f9:a3:17:8b:ad:18:91:62:28:60:09:5e:58:f8:f3:70:08:56: e6:df:b0:88:0a:4f:8e:c0:04:15:f1:c1:69:e2:03:94:5b:91: 3d:9b:fc:db:cc:1d:36:5e:d7:b8:bd:02:35:fa:af:3e:65:04: 09:af:6b:9f:d9:bc:c4:15:72:79:e5:9b:74:17:22:ad:e7:af: 03:d4:90:89:2f:4f:75:36:80:66:b4:f8:20:7e:d1:24:55:8f: db:8f:f5:3c:9d:75:be:e9:a5:f4:9c:a2:5e:04:e4:d1:40:e8: 32:f2:57:fe:bf:d5:94:fe:e5:9f:e8:dd:bb:2a:ca:ea:75:e7: cc:7b:00:80:fd:e3:d8:27:dd:53:63:0f:d6:b9:50:b3:9e:85: 25:43:14:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTZDQTExMC8GA1UEBRMoM0IxREIzMTZDMDhEMjkzNkM3NEEzNTZBMjc3RUVBQzQz Q0I3NTI0QzAeFw0yNDA1MTkwODA3NDFaFw0yNDA1MjYwODA3NDFaMBgxFjAUBgNV BAMTDTY2NDliMzRkLWVmYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7jfA/8/ekj2mWc7Yb8Lu1q59pUP7DDs1E/33o+Jn4kZuCuWtb4VGZN20bzAsR CYghhWjwtZkH0+X4D0loY4X2JqDJrWNT9ejGztJYgIwjOuEpbr7NVFU/U2d4aaiu RamqdZAAI/JAtO0YgaJLDWL8lHZZxgd77iJpgdqwUikHncOS6dqsy4SJiji2b6JY 3VqOCYuMqlMxE2XKaG4Z6l/VoK7EwDv3WklA8w4/GBB5iHCE72MjLlYkT8iQQ33U mrqCasVV/JdyiNwPFF5vMyIzKQDhaEkdR0gzmswDFWbuJ6E56COXyUjKEZQoMbo1 8NSWVMOcD3bBUhavRaG+mLpXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7b5j9Lqv 813FyLTtvTOFbOnq1oYwHwYDVR0jBBgwFoAUOx2zFsCNKTbHSjVqJ37qxDy3Ukww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNkNBL0RFMEE2RDMyQjQ4 NzExRUU5OURDMEExM0M0RjlBRTAyL094MnpGc0NOS1RiSFNqVnFKMzdxeER5M1Vr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT3gyekZzQ05LVGJIU2pWcUozN3F4RHkzVWt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZB NkNBL0RFMEE2RDMyQjQ4NzExRUU5OURDMEExM0M0RjlBRTAyL094MnpGc0NOS1Ri SFNqVnFKMzdxeER5M1Vrdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFByxXSLyGnc+GJT6/oj7U3aI6LiE7enKeNntNaTAlzScAmMQQMVJqx+ dp1SYIP1GUUvnZSCIeGO+1DjpYz2L3egW3Lu6dnp6O6X0E4bShWzU7QVKpYlRBGu DbNj0cyfYjmAi1aLYys/sMBqYPmjF4utGJFiKGAJXlj483AIVubfsIgKT47ABBXx wWniA5RbkT2b/NvMHTZe17i9AjX6rz5lBAmva5/ZvMQVcnnlm3QXIq3nrwPUkIkv T3U2gGa0+CB+0SRVj9uP9Tyddb7ppfScol4E5NFA6DLyV/6/1ZT+5Z/o3bsqyup1 58x7AID949gn3VNjD9a5ULOehSVDFLM= -----END CERTIFICATE-----Generated at Sun May 19 09:04:15 2024 by rpki-client on console-fra.rpki-client.org