$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: iFgnroDqqpmjfppppoh1QFVXWabPi/e+u4hlTGFQE9U= Subject key identifier: 7B:9D:AE:B2:0D:04:61:90:A0:0E:09:7E:69:BD:9E:C6:3B:84:4F:89 Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 0576 Signing time: Sun 05 May 2024 00:46:09 +0000 Manifest this update: Sun 05 May 2024 00:46:09 +0000 Manifest next update: Sun 12 May 2024 00:46:09 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: m5agSYVvNXPhn7x4Zy43b5YEluQ6cvU3TYO0z+iNpjE=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: 98tnilsCcCPTdGUbVCm8JaIV3qIL34Ije66PD0PoN30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: May 5 00:46:09 2024 GMT Not After : May 12 00:46:09 2024 GMT Subject: CN=6636d6d1-858d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:e9:69:a3:74:a2:d8:d2:ec:85:7f:eb:d5: 6e:b0:39:70:20:ce:37:17:f2:9e:cb:20:b4:5b:a2: 42:4b:5f:c7:c6:10:52:0e:26:2b:f8:fb:15:dc:a7: 18:65:b1:0d:e7:25:3f:1f:05:c6:4c:4a:9f:4a:fe: 78:3c:4f:4c:c6:16:1e:39:ea:0b:67:5c:a5:ec:d0: 93:ed:82:71:7a:d0:8d:26:73:9b:54:f7:ff:a5:38: e3:26:b2:4e:0b:46:74:33:6c:d7:fc:4f:58:40:57: 2b:e4:64:3a:84:f0:48:b0:73:5d:e8:5f:7b:e9:96: d2:db:52:f7:7f:2b:66:1f:cc:0f:4b:5e:42:26:07: f4:43:52:e4:29:51:ef:3a:e8:be:ad:f8:08:1e:40: dd:40:a6:d8:20:0f:80:e8:f9:45:7f:37:8f:ee:23: 52:b8:ef:c2:7e:c5:fd:b8:37:c8:0e:29:d6:b6:a2: dd:ae:71:c5:6f:4f:49:2a:b7:ae:ec:f0:01:62:93: f2:54:79:f6:fc:1f:21:32:e4:46:bd:3b:ac:5b:57: 6e:08:d1:ac:4b:4b:f0:2c:fb:e5:d5:ba:f8:3f:56: 56:8e:db:10:9a:1f:31:46:69:4d:8e:2c:7c:ba:b9: b9:00:0b:2e:11:12:61:54:79:f3:92:3f:6c:e3:95: b2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9D:AE:B2:0D:04:61:90:A0:0E:09:7E:69:BD:9E:C6:3B:84:4F:89 X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:aa:52:65:0d:c7:32:72:85:6c:84:ad:5c:20:be:58:c8:15: 95:28:e4:17:95:47:3f:83:50:cf:33:98:bf:0e:55:94:3a:97: e5:0f:e3:35:75:55:28:aa:90:54:19:0d:44:34:26:8f:53:df: 0f:b0:24:8e:c2:81:51:c3:01:25:93:0e:a4:a9:22:03:2a:f4: 4d:7e:ea:75:be:18:a7:44:15:2b:1b:57:1b:94:38:72:d7:fb: 94:f7:b8:79:cf:5f:d0:23:a6:3f:fb:4f:f1:f4:37:0d:52:21: c1:1b:04:84:f5:61:69:16:1b:62:95:d3:72:66:14:98:e6:a2: 2c:b8:51:ad:9a:51:d9:cf:9b:15:a4:74:38:9f:70:1e:54:9a: 17:14:4b:fd:3d:a5:30:39:7d:46:5f:91:f0:08:23:43:e2:d0: c5:95:81:d9:4f:31:06:8c:61:11:30:69:1c:1a:da:5a:0b:6c: d5:73:ac:e4:42:36:8c:7d:21:09:db:99:c4:29:e1:f9:df:64: c5:c0:6b:b1:10:26:8c:e8:f4:00:0b:33:6f:f6:e5:23:e0:2d: dd:4d:ab:d7:6c:73:fd:ab:36:27:23:eb:2f:74:d2:89:70:52: 8b:82:a8:54:11:b5:3b:e4:4a:71:c8:df:cf:95:70:54:c8:b4: df:8b:65:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjQwNTA1MDA0NjA5WhcNMjQwNTEyMDA0NjA5WjAYMRYwFAYD VQQDEw02NjM2ZDZkMS04NThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunjpaaN0otjS7IV/69VusDlwIM43F/KeyyC0W6JCS1/HxhBSDiYr+PsV3KcY ZbEN5yU/HwXGTEqfSv54PE9MxhYeOeoLZ1yl7NCT7YJxetCNJnObVPf/pTjjJrJO C0Z0M2zX/E9YQFcr5GQ6hPBIsHNd6F976ZbS21L3fytmH8wPS15CJgf0Q1LkKVHv Oui+rfgIHkDdQKbYIA+A6PlFfzeP7iNSuO/CfsX9uDfIDinWtqLdrnHFb09JKreu 7PABYpPyVHn2/B8hMuRGvTusW1duCNGsS0vwLPvl1br4P1ZWjtsQmh8xRmlNjix8 urm5AAsuERJhVHnzkj9s45WyqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHudrrIN BGGQoA4Jfmm9nsY7hE+JMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqqlJlDccycoVshK1cIL5YyBWVKOQXlUc/g1DPM5i/DlWUOpflD+M1 dVUoqpBUGQ1ENCaPU98PsCSOwoFRwwElkw6kqSIDKvRNfup1vhinRBUrG1cblDhy 1/uU97h5z1/QI6Y/+0/x9DcNUiHBGwSE9WFpFhtildNyZhSY5qIsuFGtmlHZz5sV pHQ4n3AeVJoXFEv9PaUwOX1GX5HwCCND4tDFlYHZTzEGjGERMGkcGtpaC2zVc6zk QjaMfSEJ25nEKeH532TFwGuxECaM6PQACzNv9uUj4C3dTavXbHP9qzYnI+svdNKJ cFKLgqhUEbU75EpxyN/PlXBUyLTfi2X1 -----END CERTIFICATE-----Generated at Sun May 5 01:22:19 2024 by rpki-client on console-fra.rpki-client.org