$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: CPv8ZSLpsBU8+UxqWLrgpwTYdTrlqEto1dLt3Mhaw/o= Subject key identifier: 61:65:01:65:74:BA:B3:85:30:18:C3:15:72:EE:65:9D:BB:AB:78:0E Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 143C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 1433 Signing time: Mon 06 May 2024 17:29:51 +0000 Manifest this update: Mon 06 May 2024 17:29:50 +0000 Manifest next update: Mon 13 May 2024 17:29:50 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: UzsD9TEU0hoadEA10qhK9bV0WgV8prSxDEs5oOVS9pE=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: ytAyS4L6at/OG/reU7sAXCynqrGoU17alDg629X64hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5180 (0x143c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: May 6 17:29:50 2024 GMT Not After : May 13 17:29:50 2024 GMT Subject: CN=6639138f-33bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b0:d8:0a:8f:30:8c:39:b4:99:b2:20:a9:51: 81:44:f3:e6:4a:bc:32:86:af:a2:b7:72:b0:89:75: cd:c8:21:76:f5:17:6c:fa:dd:f0:16:f5:05:ba:50: 38:96:14:d2:30:03:10:b0:a4:bf:ef:62:9f:5c:9d: f9:29:0a:cc:c0:1f:ca:79:4d:4b:cd:e3:04:69:66: d6:c4:0f:80:e8:6c:e5:e5:55:93:94:f8:d0:cd:8f: 37:dc:1a:d9:0c:fc:a2:5d:c4:60:db:09:09:4f:ec: 55:aa:c3:f4:d5:c4:fe:62:af:1a:0c:0a:b1:c5:3c: f3:a7:29:67:e0:73:e2:df:ee:f0:f3:1f:91:72:73: ef:90:3f:76:08:8c:c5:27:02:f0:a5:b9:b8:5e:b3: fe:3c:dc:06:22:74:e9:b1:be:ce:5c:88:38:fd:50: a9:dd:ba:2e:e8:77:43:29:81:b8:07:8d:39:01:f3: 95:0b:3f:0e:41:f3:f5:40:28:d5:83:9a:12:2f:f3: 3e:0f:7b:b3:a7:b6:7d:63:16:51:9d:fb:b5:ad:1e: 61:58:88:af:d0:d9:15:c1:f9:82:a5:08:ed:bb:85: 5d:c3:4e:eb:35:bf:23:98:5a:e9:39:a6:e3:b7:c7: 44:7a:be:7e:91:15:49:af:9e:76:fd:d3:08:7e:a4: 2f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:65:01:65:74:BA:B3:85:30:18:C3:15:72:EE:65:9D:BB:AB:78:0E X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8c:e0:b1:18:72:e5:6d:c4:71:cc:e1:55:ef:f8:62:c2:dc: 56:09:f4:e1:56:5b:39:f7:81:27:6a:e5:b4:6c:02:8d:f0:18: 55:74:ea:9b:e2:0a:8f:2f:ce:99:71:0a:65:31:5a:fb:22:37: bc:ab:5a:d6:29:58:4b:d3:b0:98:94:c1:47:17:4d:7e:fb:e8: d8:7a:c3:7d:9c:5e:5b:64:72:4d:2c:30:2a:30:0d:ab:ff:9a: 3a:23:c4:9e:1e:14:2f:5a:ab:79:da:da:3c:c8:52:be:5b:71: 58:29:04:45:9d:1e:9f:36:24:a0:c3:c1:ec:42:91:10:a0:81: d8:0c:e9:92:ad:0a:98:41:d5:11:ba:e3:61:a7:2e:0f:88:4e: a9:9a:06:88:7a:0d:a6:35:ac:e5:ae:6a:14:4d:58:3d:78:f8: 2a:64:43:32:a8:84:29:d0:15:8d:45:04:d1:f8:68:83:62:bd: 18:d3:5d:f8:ce:8a:38:dd:09:e0:72:2e:d2:b0:ac:61:40:41: 82:e3:75:57:c2:dc:b0:58:09:e4:6a:93:89:07:d2:95:aa:8b: c7:81:7e:6f:9a:90:4f:a3:f8:94:56:0f:0a:2b:64:9c:99:b7: 59:0f:d4:20:94:1c:1c:8e:25:71:fb:fe:b7:d3:44:a1:aa:c5: 68:c6:e5:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjQwNTA2MTcyOTUwWhcNMjQwNTEzMTcyOTUwWjAYMRYwFAYD VQQDEw02NjM5MTM4Zi0zM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LDYCo8wjDm0mbIgqVGBRPPmSrwyhq+it3KwiXXNyCF29Rds+t3wFvUFulA4 lhTSMAMQsKS/72KfXJ35KQrMwB/KeU1LzeMEaWbWxA+A6Gzl5VWTlPjQzY833BrZ DPyiXcRg2wkJT+xVqsP01cT+Yq8aDAqxxTzzpyln4HPi3+7w8x+RcnPvkD92CIzF JwLwpbm4XrP+PNwGInTpsb7OXIg4/VCp3bou6HdDKYG4B405AfOVCz8OQfP1QCjV g5oSL/M+D3uzp7Z9YxZRnfu1rR5hWIiv0NkVwfmCpQjtu4Vdw07rNb8jmFrpOabj t8dEer5+kRVJr552/dMIfqQv+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFlAWV0 urOFMBjDFXLuZZ27q3gOMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jOCxGHLlbcRxzOFV7/hiwtxWCfThVls594EnauW0bAKN8BhVdOqb 4gqPL86ZcQplMVr7Ije8q1rWKVhL07CYlMFHF01+++jYesN9nF5bZHJNLDAqMA2r /5o6I8SeHhQvWqt52to8yFK+W3FYKQRFnR6fNiSgw8HsQpEQoIHYDOmSrQqYQdUR uuNhpy4PiE6pmgaIeg2mNazlrmoUTVg9ePgqZEMyqIQp0BWNRQTR+GiDYr0Y0134 zoo43Qngci7SsKxhQEGC43VXwtywWAnkapOJB9KVqovHgX5vmpBPo/iUVg8KK2Sc mbdZD9QglBwcjiVx+/6300ShqsVoxuVf -----END CERTIFICATE-----Generated at Mon May 6 20:19:07 2024 by rpki-client on console-fra.rpki-client.org