$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: Ifcj/oVR4b+Enfu1khZ8CfHKTWAWJVsj7OUnlng6ppA= Subject key identifier: 46:D1:F1:64:CD:DA:85:FF:4F:9C:78:A3:F8:59:70:FD:07:21:5C:0C Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0847 Signing time: Thu 02 May 2024 21:49:33 +0000 Manifest this update: Thu 02 May 2024 21:49:33 +0000 Manifest next update: Thu 09 May 2024 21:49:33 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: vWZTantcUulEQKcOkoLmQblEtIw6L+mlN1EEUJ/rmbA=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: itCLnBcL2Gte2voVtQcQvcDsZmsmQBg0colGRKDZXYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: May 2 21:49:33 2024 GMT Not After : May 9 21:49:33 2024 GMT Subject: CN=66340a6d-d2c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:ec:94:39:eb:d0:1b:2c:9f:fd:85:33:48: e6:bb:26:84:a5:e3:41:8c:87:88:74:50:c9:e9:d7: 28:b9:ed:6f:23:17:9f:19:50:80:54:d4:cd:83:4b: e8:64:85:68:2a:8d:d8:72:c0:62:3f:4c:b2:ea:9f: 1b:92:1a:9a:30:19:fc:1e:8c:e6:5b:ba:d9:55:6f: 2a:e6:be:c1:d4:ca:52:11:21:79:7a:a5:fb:b7:0d: f1:b7:c3:00:5e:af:00:14:bc:ab:b3:bd:7f:3c:36: 94:61:c2:81:b3:06:3d:ae:b4:a9:2f:fa:3a:ca:c5: 87:85:ca:9d:af:45:05:d3:6b:6c:be:f1:f2:51:d8: fb:2f:5b:c1:26:c0:ab:82:79:ce:a5:d9:3f:82:16: d7:30:66:69:0d:c9:0b:ec:a3:81:66:e4:e0:06:4d: 3c:d8:c9:d1:10:a1:6f:24:a0:8d:61:9a:67:43:57: 9e:17:d4:87:05:55:87:92:b7:9a:73:d1:4f:f9:29: 53:49:43:ea:8f:7b:ce:91:e2:1c:a9:74:14:95:e2: 26:67:cf:1e:ca:6c:74:b5:52:21:ab:b7:79:7f:f2: 5f:de:a5:b1:e5:d4:36:c6:50:cc:c8:98:b6:bd:96: 42:16:d7:ca:e5:df:55:23:15:40:ea:1f:1a:f5:c9: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D1:F1:64:CD:DA:85:FF:4F:9C:78:A3:F8:59:70:FD:07:21:5C:0C X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:87:d5:f4:f7:d3:9c:39:c9:ff:8a:d8:1d:3f:38:15:39:91: 54:82:d1:ad:79:dc:43:0d:65:4a:87:a6:76:ac:6f:74:37:38: 3d:1b:65:76:7a:cc:d2:6c:d6:20:db:84:49:ce:df:7b:3a:63: 0c:84:fd:f5:d5:07:61:3b:3e:e3:c4:82:b3:0a:95:d8:d4:f7: 29:4f:26:eb:0e:c9:61:54:6c:3f:c9:05:26:39:21:99:31:f9: 1f:d9:0e:e8:8f:ac:7b:58:d1:0d:03:e0:73:6a:4b:d3:29:fc: df:b6:57:47:5d:7f:ba:9c:e1:89:61:94:11:9b:b6:3d:bb:30: 25:be:34:ef:be:68:d9:d0:fa:ea:e9:23:cd:3b:b5:5c:cd:22: 6b:cd:d2:46:aa:2f:99:d8:7c:68:8c:b3:c8:aa:62:8c:7a:9e: 9e:c8:62:21:4b:74:44:75:f4:80:47:06:bb:dc:44:e7:4e:e6: bb:81:e1:36:d1:e9:23:d2:d3:9f:22:2f:f1:87:37:3b:21:e2: b7:3f:2a:3e:de:32:cc:ba:a4:0d:66:72:f1:65:84:56:43:90: f4:95:7d:2a:1d:3d:17:21:92:41:15:33:2c:42:0c:7f:86:1e: 3f:f9:3e:95:5c:fa:e1:af:bf:33:f3:e4:4f:3d:d3:e9:5d:07: 81:b0:28:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjQwNTAyMjE0OTMzWhcNMjQwNTA5MjE0OTMzWjAYMRYwFAYD VQQDEw02NjM0MGE2ZC1kMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk3slDnr0Bssn/2FM0jmuyaEpeNBjIeIdFDJ6dcoue1vIxefGVCAVNTNg0vo ZIVoKo3YcsBiP0yy6p8bkhqaMBn8HozmW7rZVW8q5r7B1MpSESF5eqX7tw3xt8MA Xq8AFLyrs71/PDaUYcKBswY9rrSpL/o6ysWHhcqdr0UF02tsvvHyUdj7L1vBJsCr gnnOpdk/ghbXMGZpDckL7KOBZuTgBk082MnREKFvJKCNYZpnQ1eeF9SHBVWHkrea c9FP+SlTSUPqj3vOkeIcqXQUleImZ88eymx0tVIhq7d5f/Jf3qWx5dQ2xlDMyJi2 vZZCFtfK5d9VIxVA6h8a9cnQmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbR8WTN 2oX/T5x4o/hZcP0HIVwMMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7h9X099OcOcn/itgdPzgVOZFUgtGtedxDDWVKh6Z2rG90Nzg9G2V2 eszSbNYg24RJzt97OmMMhP311QdhOz7jxIKzCpXY1PcpTybrDslhVGw/yQUmOSGZ Mfkf2Q7oj6x7WNENA+BzakvTKfzftldHXX+6nOGJYZQRm7Y9uzAlvjTvvmjZ0Prq 6SPNO7VczSJrzdJGqi+Z2HxojLPIqmKMep6eyGIhS3REdfSARwa73ETnTua7geE2 0ekj0tOfIi/xhzc7IeK3Pyo+3jLMuqQNZnLxZYRWQ5D0lX0qHT0XIZJBFTMsQgx/ hh4/+T6VXPrhr78z8+RPPdPpXQeBsCgf -----END CERTIFICATE-----Generated at Thu May 2 23:03:10 2024 by rpki-client on console-fra.rpki-client.org