$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: Uo7uSMHIY75PD1Oik77ASmWmDRkQIdEpJ2iFU2+26kk= Subject key identifier: CA:00:B6:36:F1:8B:85:FF:FF:8F:72:B2:9E:1B:F7:56:AF:D7:87:D8 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0BB6 Signing time: Tue 30 Apr 2024 19:33:37 +0000 Manifest this update: Tue 30 Apr 2024 19:33:36 +0000 Manifest next update: Tue 07 May 2024 19:33:36 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: WFkMEHN4KFOh7EePBcGj3C5Hjx+vRin3v+sGt20kQtQ=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: iKfci7tsa+jhLLRTbBFfO22Soy787xfFX8zNv1laW9A=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: clx30qLYvbm68jKy4mtHXR8lQ9RAC1U+UxoMWQrquX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Apr 30 19:33:36 2024 GMT Not After : May 7 19:33:36 2024 GMT Subject: CN=66314791-c5bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:70:ba:26:92:41:da:b1:c7:28:13:e2:a5:58: 33:0b:4f:a5:2d:c1:81:da:6e:5b:31:a9:c0:4c:b7: 51:2d:7d:65:aa:a9:65:42:5a:e0:ae:d5:d3:22:0c: f0:d4:9e:39:45:39:03:60:1b:ce:03:08:38:36:73: 10:b5:76:11:9c:79:53:17:ea:15:50:77:b6:04:c4: 29:5f:7d:6d:da:5b:d3:11:b8:a1:5b:0e:f8:1c:48: 1b:6f:8e:5e:ff:62:5b:0a:da:3d:1b:74:ba:c2:9b: d4:b1:2b:b8:15:b6:71:57:27:0c:6f:5d:76:85:ee: 0b:15:26:46:0c:63:da:3c:2d:c0:70:65:3a:3d:15: a7:27:67:b1:78:c0:7e:91:37:86:00:48:17:ce:eb: b2:28:7d:61:f1:a0:1a:a2:8e:59:0f:f8:d3:94:e0: a6:73:d0:6f:c8:0d:2c:42:19:59:7c:f6:52:71:14: 2b:2c:48:67:de:6c:0a:8b:a8:19:c9:92:7d:e1:53: 62:66:5d:fa:eb:4d:21:aa:23:e7:8d:0e:2a:d2:6a: 25:55:0b:66:e3:f3:d9:32:66:d7:df:6d:52:12:a3: c7:7a:a9:dc:fb:16:ce:c4:f7:b1:87:45:ba:09:3f: fb:14:61:59:3f:ce:0a:52:b2:28:53:52:66:c1:f8: 17:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:00:B6:36:F1:8B:85:FF:FF:8F:72:B2:9E:1B:F7:56:AF:D7:87:D8 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:6c:92:45:b6:d1:6a:17:2f:e0:a1:21:20:16:f2:67:f5:26: a7:f1:51:60:93:4e:5d:82:7c:cd:7f:a5:3e:71:ef:18:08:86: 68:5a:5f:27:db:81:b3:cf:a5:70:b6:16:ad:85:0f:04:3e:fb: 88:a0:e2:54:86:d5:c9:53:fe:f1:b5:0d:b5:7d:45:79:f7:f1: 20:c7:c6:a0:23:a5:d8:cf:ce:fd:cb:aa:4c:7c:f2:ac:e0:f1: 1d:cf:61:f0:1b:c6:5f:e5:94:19:12:1a:e5:69:8b:4e:0c:27: ec:e0:55:cb:10:42:b4:c9:be:6b:e4:f2:bb:26:44:b8:37:63: db:e5:61:1b:d2:2d:8f:1b:5c:4c:c5:53:94:8e:ea:64:cf:2d: 09:d9:a8:8d:0a:04:a8:76:8a:5a:2f:d1:52:46:ea:f9:7b:b1: 77:68:53:f5:fa:54:22:80:9d:48:71:08:34:d6:be:e4:33:dc: ef:ef:14:1b:d2:24:e6:d8:f1:56:2a:47:38:00:af:bf:e9:5c: bc:f5:e2:ac:5e:70:d3:d1:2f:b3:39:b5:2b:3d:2a:7a:10:d2: d1:dd:f2:e7:4b:b7:e2:c8:67:b1:be:f3:ae:ce:56:bf:fe:f9: ee:04:71:d3:44:c0:0d:10:85:dc:19:40:4e:27:23:0f:45:e6: b4:fd:70:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjQwNDMwMTkzMzM2WhcNMjQwNTA3MTkzMzM2WjAYMRYwFAYD VQQDEw02NjMxNDc5MS1jNWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3C6JpJB2rHHKBPipVgzC0+lLcGB2m5bManATLdRLX1lqqllQlrgrtXTIgzw 1J45RTkDYBvOAwg4NnMQtXYRnHlTF+oVUHe2BMQpX31t2lvTEbihWw74HEgbb45e /2JbCto9G3S6wpvUsSu4FbZxVycMb112he4LFSZGDGPaPC3AcGU6PRWnJ2exeMB+ kTeGAEgXzuuyKH1h8aAaoo5ZD/jTlOCmc9BvyA0sQhlZfPZScRQrLEhn3mwKi6gZ yZJ94VNiZl36600hqiPnjQ4q0molVQtm4/PZMmbX321SEqPHeqnc+xbOxPexh0W6 CT/7FGFZP84KUrIoU1JmwfgXaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoAtjbx i4X//49ysp4b91av14fYMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVbJJFttFqFy/goSEgFvJn9San8VFgk05dgnzNf6U+ce8YCIZoWl8n 24Gzz6VwthathQ8EPvuIoOJUhtXJU/7xtQ21fUV59/Egx8agI6XYz879y6pMfPKs 4PEdz2HwG8Zf5ZQZEhrlaYtODCfs4FXLEEK0yb5r5PK7JkS4N2Pb5WEb0i2PG1xM xVOUjupkzy0J2aiNCgSodopaL9FSRur5e7F3aFP1+lQigJ1IcQg01r7kM9zv7xQb 0iTm2PFWKkc4AK+/6Vy89eKsXnDT0S+zObUrPSp6ENLR3fLnS7fiyGexvvOuzla/ /vnuBHHTRMANEIXcGUBOJyMPRea0/XAI -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:52 2024 by rpki-client on console-ams.rpki-client.org