$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: WZI5Q4+zHpNo2y2kvhPqtC6aWsCuHifSCo4MnpNK52c= Subject key identifier: 01:A9:C8:6F:BC:1E:2E:B8:86:02:AA:D0:45:A4:6A:5A:36:F9:3B:0E Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1DD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1DCB Signing time: Sat 04 May 2024 16:30:58 +0000 Manifest this update: Sat 04 May 2024 16:30:57 +0000 Manifest next update: Sat 11 May 2024 16:30:57 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: zqmNfS36srwiZADpVJJDdWLEUDAstO1XZavDujmSht8=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: u2Rf8c+IxPJNEWPNhKjGUTuQHDebI9AcCob8gvsUIFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7638 (0x1dd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: May 4 16:30:57 2024 GMT Not After : May 11 16:30:57 2024 GMT Subject: CN=663662c2-6ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0b:08:c3:12:1e:e0:78:36:41:73:b9:e6:d9: 0a:0f:59:7a:82:b7:df:8e:10:ea:ad:82:6c:36:04: d5:0a:58:db:c8:40:d4:9a:02:13:3e:5c:e7:44:18: 66:03:75:f8:ee:3d:ff:ca:ae:26:9d:99:e0:64:d5: 5d:86:b4:9a:52:d1:51:31:29:15:f8:57:93:9f:0e: 1d:06:c9:33:de:af:3b:a3:f4:55:f7:32:82:a6:25: c6:db:f7:24:e2:61:83:07:11:17:6f:87:d2:9c:6a: f3:7b:3b:4b:d4:ca:38:f4:97:7d:b2:21:6b:91:41: 21:be:43:df:93:ea:d1:ce:90:3a:1b:4c:bb:10:fa: 7b:2e:02:19:d1:2b:56:69:dd:71:3f:c4:69:92:48: 27:70:65:f7:50:d9:3b:e6:f4:4a:8e:41:74:85:ba: c0:d5:89:9b:62:2f:99:ff:93:97:05:1f:05:1c:08: 73:0e:0a:f0:09:a8:26:dd:09:26:a3:67:6c:d7:ca: 75:02:0a:71:6b:8b:f6:e2:c4:f5:c6:41:88:db:5d: 0b:5a:df:06:c1:3f:8a:31:d9:a1:66:04:e5:00:1d: 82:fd:ba:cb:5d:9e:95:a7:2f:60:af:48:89:c6:ef: a3:70:48:87:9d:7f:4a:67:44:63:f4:e5:89:5a:10: ed:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A9:C8:6F:BC:1E:2E:B8:86:02:AA:D0:45:A4:6A:5A:36:F9:3B:0E X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:b2:ef:64:a2:d9:6d:a9:e7:b6:e5:a6:6a:2d:76:d3:d0:cc: aa:60:66:8a:04:00:25:b9:c1:1d:e8:74:09:f0:34:bb:be:d3: 9a:e5:c0:68:23:4b:8c:1d:0e:ce:c2:6d:82:c4:d2:e3:9d:31: ad:98:84:c2:be:8e:d8:87:95:f8:9d:fd:d3:ec:a9:44:da:40: 7b:29:2c:95:8d:a8:f9:a4:8f:08:89:3b:c0:56:04:5f:6a:be: fe:85:fc:2d:52:aa:89:55:6e:f1:5a:5f:e1:37:33:ba:f5:96: d1:8c:98:57:03:4c:e2:10:95:e6:f9:e5:bd:a0:21:87:c7:ef: 75:81:e7:a6:22:58:1c:3f:0e:f5:a9:34:57:10:52:6b:74:0b: 41:be:62:48:63:96:1b:f3:e8:ad:8a:04:47:cc:e2:a4:08:a9: 0f:d5:d5:7a:47:c2:f0:d3:85:7d:d6:e6:2e:af:60:94:3d:15: 16:99:3c:2c:20:c3:0e:bd:06:11:a3:80:69:f0:c4:b6:1d:3a: 1b:18:af:50:dc:d3:b6:64:ab:66:df:5f:29:80:9a:16:18:8d: ba:37:3e:ee:c3:a8:9c:41:3c:7e:f6:d3:bd:b7:25:84:9e:e6: cf:f8:84:e1:a1:a6:38:1c:dc:8f:11:06:b4:10:e0:bc:80:fe: 92:7c:2d:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjQwNTA0MTYzMDU3WhcNMjQwNTExMTYzMDU3WjAYMRYwFAYD VQQDEw02NjM2NjJjMi02Y2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQsIwxIe4Hg2QXO55tkKD1l6grffjhDqrYJsNgTVCljbyEDUmgITPlznRBhm A3X47j3/yq4mnZngZNVdhrSaUtFRMSkV+FeTnw4dBskz3q87o/RV9zKCpiXG2/ck 4mGDBxEXb4fSnGrzeztL1Mo49Jd9siFrkUEhvkPfk+rRzpA6G0y7EPp7LgIZ0StW ad1xP8RpkkgncGX3UNk75vRKjkF0hbrA1YmbYi+Z/5OXBR8FHAhzDgrwCagm3Qkm o2ds18p1Agpxa4v24sT1xkGI210LWt8GwT+KMdmhZgTlAB2C/brLXZ6Vpy9gr0iJ xu+jcEiHnX9KZ0Rj9OWJWhDt+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGpyG+8 Hi64hgKq0EWkalo2+TsOMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtsu9kotltqee25aZqLXbT0MyqYGaKBAAlucEd6HQJ8DS7vtOa5cBo I0uMHQ7Owm2CxNLjnTGtmITCvo7Yh5X4nf3T7KlE2kB7KSyVjaj5pI8IiTvAVgRf ar7+hfwtUqqJVW7xWl/hNzO69ZbRjJhXA0ziEJXm+eW9oCGHx+91geemIlgcPw71 qTRXEFJrdAtBvmJIY5Yb8+itigRHzOKkCKkP1dV6R8Lw04V91uYur2CUPRUWmTws IMMOvQYRo4Bp8MS2HTobGK9Q3NO2ZKtm318pgJoWGI26Nz7uw6icQTx+9tO9tyWE nubP+IThoaY4HNyPEQa0EOC8gP6SfC1R -----END CERTIFICATE-----Generated at Sat May 4 17:19:47 2024 by rpki-client on console-fra.rpki-client.org