$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: dLevfl5R9KDV4LZ2Ee6Jque4dlQBwg5i6pIczHQDuXk= Subject key identifier: 19:02:88:9A:86:48:BB:6B:FB:DA:9A:67:FB:E6:2A:D5:D8:56:27:FE Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 06C2 Signing time: Sat 04 May 2024 23:12:31 +0000 Manifest this update: Sat 04 May 2024 23:12:31 +0000 Manifest next update: Sat 11 May 2024 23:12:31 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: kP9e9lWhinMRHqucFYiHpcK6W0W1MT7mQTA8OHR1W6Y=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 3b53oGZrk5tXtSU6CyAt3h+hYXdnaoLTFM3Jnq/kzQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: May 4 23:12:31 2024 GMT Not After : May 11 23:12:31 2024 GMT Subject: CN=6636c0df-442b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:98:94:81:30:a8:5a:bd:7f:10:aa:d8:50:60: c8:7c:5a:8a:b8:63:8f:20:bd:59:c1:07:66:44:46: c3:9a:99:19:43:a5:bd:2e:b0:42:2d:fc:f8:45:d9: b1:db:85:bd:cc:82:a6:60:44:bc:64:92:d3:aa:b0: b1:5c:33:98:12:54:de:3a:f5:d2:9f:44:78:ae:7b: 4b:84:9e:33:30:67:5c:2b:b2:0a:f0:2c:62:33:19: 7a:e3:1f:81:f0:2a:9f:ed:7f:48:e6:93:55:8d:40: d4:79:72:59:c1:a2:cc:71:d8:71:3a:e1:83:75:68: 60:46:a6:13:23:1d:17:16:10:a5:2b:c6:d8:72:4f: 07:13:cf:71:d3:52:38:8f:b5:e3:66:48:c0:f8:80: 31:fa:66:e7:47:d7:eb:9b:ed:da:b1:0a:84:86:13: d0:b1:6b:af:96:7f:2e:d6:26:81:94:53:1a:3e:f6: 8b:fc:0b:58:bf:01:70:77:cb:33:49:ab:35:c5:77: b2:24:5d:2c:71:7d:65:8c:bc:bc:e6:2d:6a:36:97: d2:c8:0a:8e:7b:26:14:f3:b0:cb:c9:69:ba:f8:61: 68:1f:d6:f4:38:a9:cd:db:f3:e1:42:16:3d:fc:20: cd:95:2f:f1:8f:31:a6:96:0f:be:d0:d4:6a:8f:51: 74:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:02:88:9A:86:48:BB:6B:FB:DA:9A:67:FB:E6:2A:D5:D8:56:27:FE X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:8c:6f:50:33:d9:f9:40:71:b8:b1:32:8c:7c:09:9c:04:f2: 23:80:03:24:af:bd:29:34:52:7c:7f:11:dc:dd:0c:b7:a0:94: 1c:9c:3e:13:1a:53:c7:f9:cb:ca:57:4d:2b:88:87:8f:53:6d: 2c:ec:c1:67:29:28:8d:97:a4:2e:aa:7e:b5:a9:27:d4:42:a8: 2c:7f:19:a9:9a:7f:38:85:98:16:dd:e4:08:ed:35:95:ee:e7: a3:7e:ca:22:d4:d6:18:ac:c5:ce:98:d3:9c:7e:5b:b7:ed:44: b5:3c:bb:7d:48:7b:e7:e9:37:54:8c:cf:29:ff:6d:ea:47:75: 62:be:63:38:20:88:d8:b9:09:63:ff:9b:f1:e8:74:c4:6b:fa: a5:b1:03:39:79:d1:78:6f:36:e0:c8:a3:21:a6:78:33:e3:8a: ae:85:59:f4:e9:17:49:37:92:81:1a:be:54:3e:50:99:3a:1e: b3:7e:21:16:35:ee:b3:02:2f:9e:8e:90:03:08:ec:02:9e:9c: 88:d0:eb:d7:04:e7:9f:3a:77:73:9b:b5:fc:69:5a:fc:21:a0: 00:cb:cd:ac:b5:ef:8f:99:f3:5f:3e:fb:44:4e:72:28:84:5e: 69:1e:8f:5f:45:8c:58:2e:0d:a3:9d:e5:dd:5d:7e:e8:98:31: 96:7b:37:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjQwNTA0MjMxMjMxWhcNMjQwNTExMjMxMjMxWjAYMRYwFAYD VQQDEw02NjM2YzBkZi00NDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JiUgTCoWr1/EKrYUGDIfFqKuGOPIL1ZwQdmREbDmpkZQ6W9LrBCLfz4Rdmx 24W9zIKmYES8ZJLTqrCxXDOYElTeOvXSn0R4rntLhJ4zMGdcK7IK8CxiMxl64x+B 8Cqf7X9I5pNVjUDUeXJZwaLMcdhxOuGDdWhgRqYTIx0XFhClK8bYck8HE89x01I4 j7XjZkjA+IAx+mbnR9frm+3asQqEhhPQsWuvln8u1iaBlFMaPvaL/AtYvwFwd8sz Sas1xXeyJF0scX1ljLy85i1qNpfSyAqOeyYU87DLyWm6+GFoH9b0OKnN2/PhQhY9 /CDNlS/xjzGmlg++0NRqj1F0UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkCiJqG SLtr+9qaZ/vmKtXYVif+MB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6jG9QM9n5QHG4sTKMfAmcBPIjgAMkr70pNFJ8fxHc3Qy3oJQcnD4T GlPH+cvKV00riIePU20s7MFnKSiNl6Quqn61qSfUQqgsfxmpmn84hZgW3eQI7TWV 7uejfsoi1NYYrMXOmNOcflu37US1PLt9SHvn6TdUjM8p/23qR3VivmM4IIjYuQlj /5vx6HTEa/qlsQM5edF4bzbgyKMhpngz44quhVn06RdJN5KBGr5UPlCZOh6zfiEW Ne6zAi+ejpADCOwCnpyI0OvXBOefOndzm7X8aVr8IaAAy82ste+PmfNfPvtETnIo hF5pHo9fRYxYLg2jneXdXX7omDGWezfn -----END CERTIFICATE-----Generated at Sun May 5 00:14:40 2024 by rpki-client on console-ams.rpki-client.org