$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft File: ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft (raw, json) Hash identifier: p93Bt6Fsq5+uUwtXo7uqgg+VMsIMoY8ZPXmIK0/l+bc= Subject key identifier: E9:E6:68:1E:E2:29:22:1E:EE:F7:CD:E8:AE:FA:34:52:49:10:F8:CB Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0AF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft Manifest number: 0AE7 Signing time: Tue 30 Apr 2024 20:23:33 +0000 Manifest this update: Tue 30 Apr 2024 20:23:32 +0000 Manifest next update: Tue 07 May 2024 20:23:32 +0000 Files and hashes: 1: ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl (hash: fw63SKl4dIIynOkODi59CiWG4pw3BliDtdFmnmnMQzQ=) 2: 65BB2B42C0E311EEBEF3D409C4F9AE02.roa (hash: FBrlkBqzBW8n5WN2ZH1BTOB/eDK8V6xYRPTXrha9uDI=) 3: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (hash: FzuGlm4J7hB8n0nUgcJ3pI/o6PgR+LasygShla30yoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2808 (0xaf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Apr 30 20:23:32 2024 GMT Not After : May 7 20:23:32 2024 GMT Subject: CN=66315345-5b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:11:4e:dc:62:27:76:21:36:24:d8:e2:1b: 87:3f:4a:a7:ae:a2:06:22:09:90:f7:0a:12:19:96: 3d:73:40:b1:bc:55:23:3d:93:f7:3b:24:9e:8c:d0: 35:46:38:c1:88:dd:e3:86:52:e3:f6:f0:32:f4:c9: 31:b0:e4:b0:7e:e9:7c:71:85:e3:91:ed:7b:9e:e7: 35:c4:9b:33:d2:17:76:6b:4d:ff:cd:32:8c:2e:1f: d3:9d:d1:d0:b9:a2:f1:ca:e6:e9:fc:96:aa:08:ce: d0:9d:e0:70:4b:7e:05:bc:a3:a0:f9:b1:49:0b:0b: 99:9c:4e:2b:40:27:af:5d:d1:5a:3e:59:57:72:e5: 00:b6:ac:b5:6c:fa:3f:40:c3:bf:ed:63:92:83:5a: e3:73:25:55:9a:db:34:4e:7d:4b:ed:14:84:5a:46: d3:c0:52:a2:47:48:9e:39:69:74:05:8d:72:c6:78: 5a:d4:98:35:b6:43:b2:61:a5:dc:5f:28:38:c5:3a: 36:75:f6:c2:41:43:f7:8e:52:c8:8e:f9:38:23:6a: f3:25:1b:17:68:3a:d9:1c:a3:4b:3d:3e:92:35:fb: f9:90:03:ef:5d:cb:2e:35:59:7c:4a:76:88:d4:ae: 5f:42:20:06:fc:58:da:a0:6b:cc:3e:e4:0c:dc:01: cb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E6:68:1E:E2:29:22:1E:EE:F7:CD:E8:AE:FA:34:52:49:10:F8:CB X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:54:7d:f1:e8:3a:ff:06:4d:92:3f:05:f8:1f:5b:65:48:9f: c2:23:73:3c:19:88:b9:f8:bc:1e:04:35:e6:60:47:4f:80:e2: 40:f3:34:08:06:9d:37:1a:23:61:a3:aa:29:a9:ac:4e:36:53: 6c:35:a9:b4:c4:17:06:a6:ca:81:cc:b8:51:8a:8d:6b:50:46: c9:1b:1b:8e:b8:d5:a2:63:8a:ce:dd:6f:c3:ca:ed:b8:79:ad: 1c:87:38:10:ec:ba:60:09:a7:7f:d4:c1:82:df:8d:df:7e:da: aa:ee:1a:ac:b7:a5:0a:d0:3f:58:18:1a:db:60:4a:3a:78:76: 31:d5:eb:97:3d:9b:77:f0:3a:12:79:b0:42:1d:86:ef:2a:5d: f6:fc:1f:2e:a3:9c:c2:17:43:49:34:42:81:58:04:ef:8f:b0: 08:c0:27:5f:6c:42:48:88:57:1e:68:3c:97:03:10:a9:ac:c5: c6:8c:98:9c:93:b7:d6:1f:09:18:23:5e:80:92:52:29:83:d8: 99:7a:08:12:52:d5:33:2a:02:7c:3f:b7:d5:45:a7:6c:d4:4f: 3e:55:49:85:86:d1:f5:c7:b2:04:b3:83:98:02:fc:74:63:61: 87:27:21:ef:7e:0e:c9:56:fb:0c:d5:42:b0:e7:c6:c0:b5:65: bb:1c:6c:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjQwNDMwMjAyMzMyWhcNMjQwNTA3MjAyMzMyWjAYMRYwFAYD VQQDEw02NjMxNTM0NS01YjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vYRTtxiJ3YhNiTY4huHP0qnrqIGIgmQ9woSGZY9c0CxvFUjPZP3OySejNA1 RjjBiN3jhlLj9vAy9MkxsOSwful8cYXjke17nuc1xJsz0hd2a03/zTKMLh/TndHQ uaLxyubp/JaqCM7QneBwS34FvKOg+bFJCwuZnE4rQCevXdFaPllXcuUAtqy1bPo/ QMO/7WOSg1rjcyVVmts0Tn1L7RSEWkbTwFKiR0ieOWl0BY1yxnha1Jg1tkOyYaXc Xyg4xTo2dfbCQUP3jlLIjvk4I2rzJRsXaDrZHKNLPT6SNfv5kAPvXcsuNVl8SnaI 1K5fQiAG/FjaoGvMPuQM3AHLKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnmaB7i KSIe7vfN6K76NFJJEPjLMB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTEzOS9FQkI5RUM2MDI0Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZU c2swdzNNMzZneVU0dFFDSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEVH3x6Dr/Bk2SPwX4H1tlSJ/CI3M8GYi5+LweBDXmYEdPgOJA8zQI Bp03GiNho6opqaxONlNsNam0xBcGpsqBzLhRio1rUEbJGxuOuNWiY4rO3W/Dyu24 ea0chzgQ7LpgCad/1MGC343fftqq7hqst6UK0D9YGBrbYEo6eHYx1euXPZt38DoS ebBCHYbvKl32/B8uo5zCF0NJNEKBWATvj7AIwCdfbEJIiFceaDyXAxCprMXGjJic k7fWHwkYI16AklIpg9iZeggSUtUzKgJ8P7fVRads1E8+VUmFhtH1x7IEs4OYAvx0 Y2GHJyHvfg7JVvsM1UKw58bAtWW7HGxH -----END CERTIFICATE-----Generated at Tue Apr 30 21:37:56 2024 by rpki-client on console-fra.rpki-client.org