$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: 3JdtcPjwKD5mlMIBAi3RhQgX/oEUIX5py3+sKbT2BB0= Subject key identifier: 0B:36:94:63:5C:15:6A:67:46:69:56:70:F9:C8:4C:D5:05:F2:8B:8D Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: CE Signing time: Fri 17 May 2024 06:41:38 +0000 Manifest this update: Fri 17 May 2024 06:41:38 +0000 Manifest next update: Fri 24 May 2024 06:41:38 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: zXn5SeT7KdfwvgkIImfCfciM6dtisTVI/zX+aWxcebU=) 2: D0103496FD6611EE9188C568C4F9AE02.roa (hash: zL5GyY22PUxzXPY7su+a9MACm6wFmrlH/cDiceL5VFU=) 3: 7F8A5DCEFE2111EE95DF4819C4F9AE02.roa (hash: By1liJHVxYGQgV4b/cFfOGlWMDw0HY09qCefHuS9+HI=) 4: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: T0MEU9uiqGpjuKW+36eXoeccUUjS7k2e0k37wCmWLMc=) 5: 1D9A36F40C6B11EF95ACFA13C4F9AE02.roa (hash: SQfSNlw1EDeW09L4crLROC7TBXDXyLj3U0dw7Nr364s=) 6: 4316FFB2FCC011EEA517206FC4F9AE02.roa (hash: xzVQa7ltFjf1B7yqSQ1Ep816eoaM0CHgR1jzg2DtZu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: May 17 06:41:38 2024 GMT Not After : May 24 06:41:38 2024 GMT Subject: CN=6646fc22-bca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:1e:f2:76:c8:2a:de:86:38:4a:6d:62:b4: 14:55:ab:ad:82:de:b1:ed:3a:7b:4d:9c:3c:60:b7: 31:c7:c4:d9:f0:b6:c5:27:55:7d:6f:9e:b7:0d:28: 4e:be:14:5a:0c:17:4a:85:5e:61:4c:c4:e5:74:9b: 64:7e:4d:6a:fe:47:8e:9e:32:ce:0d:1d:65:19:32: 38:88:4f:e6:aa:95:6e:5b:46:5b:a5:2a:81:35:37: 70:a4:12:f6:d4:1a:02:2c:ba:ee:1d:16:91:20:8e: a1:7b:44:17:c3:fa:4b:3a:32:92:93:0c:f4:a3:46: 96:0c:eb:38:50:5d:b0:9a:4d:84:e2:d1:b4:37:66: 97:4e:94:7e:b9:52:fd:cb:af:95:28:63:a9:91:35: b0:7c:7b:40:5b:4f:0a:66:d8:f7:cb:3c:b8:12:38: e4:fe:4d:c3:23:6d:fb:d8:0b:a0:65:c5:7c:94:d6: a1:96:1d:34:7b:3c:70:09:4b:03:ca:7c:68:eb:ec: 46:ef:ae:95:ce:36:2d:11:e7:fc:a2:76:90:20:17: b1:0d:88:c6:60:73:e7:11:1c:89:d7:a7:e9:6a:1c: 99:21:a7:06:aa:35:a4:e4:54:a4:ec:2f:ae:79:88: a3:cc:aa:bf:c9:d1:9f:6b:cb:a5:eb:15:b7:e2:1d: ab:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:36:94:63:5C:15:6A:67:46:69:56:70:F9:C8:4C:D5:05:F2:8B:8D X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:34:9e:d1:64:4d:a0:7c:b3:c9:7d:9d:d2:9d:ee:94:2e:9d: fc:a6:c2:2a:44:50:ef:80:d5:42:0f:91:a4:ce:6b:cd:a0:25: dd:fb:09:da:d5:3d:1f:3b:f1:44:14:ee:de:b2:c2:1a:5a:7a: 9a:22:a3:f6:ef:e6:18:ab:bf:e3:2e:fd:0d:46:40:9c:b9:d6: bd:e9:14:c0:2d:cd:04:a1:63:78:0b:6a:0a:44:92:14:5b:c3: f0:dd:8d:6e:36:83:9d:10:67:d8:0e:fb:0e:5f:ce:2d:4c:aa: 5e:f6:90:ac:fb:32:08:9b:66:17:16:68:e4:61:22:e1:39:6a: 0b:26:ef:ff:2d:89:01:ce:7f:3b:3d:5c:77:0f:0d:e7:1a:a9: 38:80:3d:9c:7d:7c:c6:2c:7c:8e:80:d5:0f:6e:73:39:6d:1c: 19:d2:de:3e:fb:38:27:29:61:2d:89:78:29:db:9c:a0:c7:80: 44:26:90:d3:6e:4c:5e:53:88:5d:23:d7:e1:61:7f:df:32:af: af:29:d0:99:88:59:04:f2:c0:44:b2:88:ee:f4:2b:7d:41:32: b7:51:65:0e:22:55:19:5e:16:d6:2c:e5:41:5e:f1:52:47:be: 35:8f:0b:0d:a8:9c:4a:d4:a6:b2:40:13:22:f0:ba:08:be:dc: cf:17:63:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjQwNTE3MDY0MTM4WhcNMjQwNTI0MDY0MTM4WjAYMRYwFAYD VQQDEw02NjQ2ZmMyMi1iY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Qe8nbIKt6GOEptYrQUVautgt6x7Tp7TZw8YLcxx8TZ8LbFJ1V9b563DShO vhRaDBdKhV5hTMTldJtkfk1q/keOnjLODR1lGTI4iE/mqpVuW0ZbpSqBNTdwpBL2 1BoCLLruHRaRII6he0QXw/pLOjKSkwz0o0aWDOs4UF2wmk2E4tG0N2aXTpR+uVL9 y6+VKGOpkTWwfHtAW08KZtj3yzy4Ejjk/k3DI2372AugZcV8lNahlh00ezxwCUsD ynxo6+xG766VzjYtEef8onaQIBexDYjGYHPnERyJ16fpahyZIacGqjWk5FSk7C+u eYijzKq/ydGfa8ul6xW34h2rMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAs2lGNc FWpnRmlWcPnITNUF8ouNMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMNJ7RZE2gfLPJfZ3Sne6ULp38psIqRFDvgNVCD5GkzmvNoCXd+wna 1T0fO/FEFO7essIaWnqaIqP27+YYq7/jLv0NRkCcuda96RTALc0EoWN4C2oKRJIU W8Pw3Y1uNoOdEGfYDvsOX84tTKpe9pCs+zIIm2YXFmjkYSLhOWoLJu//LYkBzn87 PVx3Dw3nGqk4gD2cfXzGLHyOgNUPbnM5bRwZ0t4++zgnKWEtiXgp25ygx4BEJpDT bkxeU4hdI9fhYX/fMq+vKdCZiFkE8sBEsoju9Ct9QTK3UWUOIlUZXhbWLOVBXvFS R741jwsNqJxK1KayQBMi8LoIvtzPF2PL -----END CERTIFICATE-----Generated at Fri May 17 08:52:57 2024 by rpki-client on console-ams.rpki-client.org