$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: 2UtMgBl0LTzQUPOXxnqho1L+znkggfwOkLYNzOujlKc= Subject key identifier: DD:1A:D1:79:70:61:73:52:F6:EB:77:35:F9:7F:DA:85:AB:35:E8:78 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 12F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 12E7 Signing time: Sat 18 May 2024 17:55:56 +0000 Manifest this update: Sat 18 May 2024 17:55:56 +0000 Manifest next update: Sat 25 May 2024 17:55:56 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: UCW6CPcQSB3EhMUxvQvPPGihyrPUKaWkUeaH+SCWQXU=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4849 (0x12f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: May 18 17:55:56 2024 GMT Not After : May 25 17:55:56 2024 GMT Subject: CN=6648ebac-0454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:8d:3f:5c:ff:81:56:39:bd:68:b7:59:c2: 00:5f:6f:2e:ed:36:89:5f:d4:55:ab:30:e0:ed:66: dc:42:db:89:c9:c0:b4:e7:40:e8:c3:ee:fa:74:f4: dd:c9:66:51:ca:01:64:d2:50:0c:cb:33:2c:d9:fd: bf:3b:26:bd:67:58:41:50:e3:97:c4:75:5e:1a:f8: f8:5c:54:2e:c1:e3:02:e7:0c:9e:79:42:84:5b:e6: d7:11:0b:5f:ea:64:57:c1:6e:84:9e:56:9a:95:6c: 67:8a:4c:15:46:34:5f:88:74:53:6b:47:b9:3f:40: a1:a8:6a:7b:05:b1:9d:d7:9d:fb:24:6d:c6:bb:3f: 07:2e:26:6c:30:bd:20:95:7c:6b:e3:42:d8:c0:27: 30:85:e3:90:55:87:69:ed:bf:11:3c:60:91:a6:9a: ad:8e:f9:99:bd:d7:c5:73:d3:99:c4:fe:66:48:79: 11:d7:00:81:91:a0:7c:3d:96:c4:1e:41:78:5e:53: 8f:0d:ad:df:d9:6d:38:88:b0:a4:c5:2f:4e:30:c2: cf:25:ec:da:3c:a3:60:1d:9c:5f:bb:5d:97:b3:27: d9:fd:dd:42:3e:d0:cb:46:d6:98:b2:57:ee:9e:39: 14:4e:7e:77:41:d5:ae:ef:5d:b3:47:72:e3:6a:15: 1e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1A:D1:79:70:61:73:52:F6:EB:77:35:F9:7F:DA:85:AB:35:E8:78 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:03:1f:f2:87:21:83:0f:d7:97:56:40:4b:f4:ea:51:e5:55: 01:ae:a5:6f:9e:9e:06:96:95:c7:85:aa:ce:0b:c4:4f:d4:ba: c5:58:d5:11:c8:61:81:51:cc:ef:5f:c6:b0:6a:8d:ea:9b:33: 63:0d:f8:67:17:c6:92:49:48:f0:7a:ce:3e:33:1e:f3:0a:9f: 42:71:3e:bd:af:19:ea:ca:36:46:c1:32:57:0d:d9:03:a6:78: b2:00:64:77:15:a6:1d:41:29:30:ce:0a:b6:46:ec:11:61:5c: 04:3d:f2:5d:f0:90:a3:de:68:4c:15:e6:4f:b6:06:f8:60:b9: 7f:a1:8f:e1:b3:42:ea:6b:34:d7:57:24:e1:8f:49:57:12:82: a7:30:ff:8e:15:1e:a7:01:65:92:72:19:a5:ef:a7:31:4b:ba: a0:17:8c:0b:f3:c6:d3:6a:e8:11:73:19:8b:71:c6:d1:a3:5c: c5:92:12:cc:f4:ae:1f:55:84:b7:88:bb:d4:c8:ce:4a:7e:d8: 9b:ac:36:5c:b8:f3:13:34:8e:40:9f:6b:18:c0:33:a7:6a:b1: d8:ea:0f:6f:69:f9:89:22:6c:8c:31:88:00:f5:2b:4e:05:55: 9b:84:3c:26:3f:e4:7b:49:96:17:73:1b:23:fe:8a:0b:38:9d: ae:43:69:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjQwNTE4MTc1NTU2WhcNMjQwNTI1MTc1NTU2WjAYMRYwFAYD VQQDEw02NjQ4ZWJhYy0wNDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfmNP1z/gVY5vWi3WcIAX28u7TaJX9RVqzDg7WbcQtuJycC050Dow+76dPTd yWZRygFk0lAMyzMs2f2/Oya9Z1hBUOOXxHVeGvj4XFQuweMC5wyeeUKEW+bXEQtf 6mRXwW6EnlaalWxnikwVRjRfiHRTa0e5P0ChqGp7BbGd1537JG3Guz8HLiZsML0g lXxr40LYwCcwheOQVYdp7b8RPGCRppqtjvmZvdfFc9OZxP5mSHkR1wCBkaB8PZbE HkF4XlOPDa3f2W04iLCkxS9OMMLPJezaPKNgHZxfu12XsyfZ/d1CPtDLRtaYslfu njkUTn53QdWu712zR3LjahUe1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0a0Xlw YXNS9ut3Nfl/2oWrNeh4MB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtAx/yhyGDD9eXVkBL9OpR5VUBrqVvnp4GlpXHharOC8RP1LrFWNUR yGGBUczvX8awao3qmzNjDfhnF8aSSUjwes4+Mx7zCp9CcT69rxnqyjZGwTJXDdkD pniyAGR3FaYdQSkwzgq2RuwRYVwEPfJd8JCj3mhMFeZPtgb4YLl/oY/hs0LqazTX VyThj0lXEoKnMP+OFR6nAWWSchml76cxS7qgF4wL88bTaugRcxmLccbRo1zFkhLM 9K4fVYS3iLvUyM5KftibrDZcuPMTNI5An2sYwDOnarHY6g9vafmJImyMMYgA9StO BVWbhDwmP+R7SZYXcxsj/ooLOJ2uQ2mn -----END CERTIFICATE-----Generated at Sat May 18 18:46:48 2024 by rpki-client on console-fra.rpki-client.org