$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: ULe5Fu+jFC+36MDR1Bl6SMgn9ijCavcdWSiSBHE8Iu4= Subject key identifier: 31:AD:F6:9E:B6:DC:52:75:F1:D8:78:BD:C4:0D:59:BA:79:83:3C:BF Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 026B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 0267 Signing time: Fri 03 May 2024 03:53:42 +0000 Manifest this update: Fri 03 May 2024 03:53:41 +0000 Manifest next update: Fri 10 May 2024 03:53:41 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: 069QIDX0PQmeGyTtI3oZBjbzPV203kqGBHxaoBJGmX4=) 2: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: SFDD7nQaHtPhgjEbna4DrdxMkFPaixPmcuVySfzUZD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: May 3 03:53:41 2024 GMT Not After : May 10 03:53:41 2024 GMT Subject: CN=66345fc6-383f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e6:1a:21:aa:2d:e2:1a:15:67:64:23:4e:52: d3:f7:6d:d9:42:cf:ff:a5:fb:f9:da:2b:07:95:4e: 4c:18:29:58:8a:81:35:f6:d4:41:71:06:10:30:00: 8a:0d:b8:23:25:e1:cf:b3:3f:46:bb:52:be:10:10: 60:e7:6d:0c:7b:b4:cd:1a:08:95:5c:1e:66:09:11: b6:f6:81:5c:55:76:db:7e:83:02:bb:8a:79:e0:01: 2c:9f:7b:68:ea:1e:26:78:f0:eb:7c:c0:0c:67:18: 1d:0d:85:1e:de:f5:f0:ba:5c:4a:7f:aa:31:57:ec: 56:c2:d9:4b:3e:62:e6:a0:43:92:5b:fa:bb:25:d9: 4f:8d:7b:86:18:a8:94:bb:e8:90:5b:cd:33:c4:43: 7b:3e:24:98:b4:48:7a:d9:29:02:71:b5:f6:97:b2: 4f:06:df:b2:7d:46:19:98:fd:eb:81:eb:14:19:19: 52:32:d3:21:41:b0:77:dd:77:99:84:b3:c5:ca:8a: 8e:6e:cd:65:61:5a:ba:a3:ce:56:ea:0b:36:54:66: ea:d8:c0:4c:b6:96:8f:01:51:73:39:69:a2:72:6b: 07:66:82:6e:fe:b2:66:d3:ae:c0:41:f4:6e:b6:5b: 2c:e6:5f:0b:3b:53:b0:25:ec:0c:fb:01:d5:13:89: bf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AD:F6:9E:B6:DC:52:75:F1:D8:78:BD:C4:0D:59:BA:79:83:3C:BF X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ee:a6:39:28:5a:e0:71:36:9b:8e:72:12:56:a2:b0:21:41: 26:c3:9f:75:7d:29:91:fa:8b:95:c2:f4:1a:28:19:3b:17:40: eb:f7:ad:65:e2:6d:ee:64:17:9c:f2:6d:48:3a:ea:ce:1e:ac: e3:7c:87:88:22:a3:26:dc:0d:b3:c4:a8:be:8e:ff:bd:0c:9f: 51:3b:7a:8d:76:e8:8b:52:5c:9b:71:17:6f:38:65:08:61:e6: 63:7d:b0:41:24:18:cc:09:c6:d9:14:06:1a:a3:c2:1a:a6:72: 67:0e:30:51:ab:c4:1a:51:30:09:52:d6:46:54:88:37:71:aa: c0:02:0a:93:f9:79:ea:5b:fe:30:45:45:60:c3:ba:ca:0c:a7: 5a:6c:12:3f:55:f8:b1:bc:88:7a:16:9a:f6:58:20:8f:b5:64: 60:32:4a:71:1e:5c:ff:31:69:94:83:39:5c:19:41:ef:c5:0f: 5a:e3:3a:1d:3d:40:e6:9d:59:c1:2b:03:ad:5f:06:bd:74:ba: ce:e3:85:f0:50:91:1f:58:84:d4:fc:c3:9f:5a:a8:d4:c0:25: 5e:e4:70:b2:9c:da:98:b5:5f:03:35:8a:85:7c:5c:34:28:ef: 9e:56:6a:6e:b7:0e:b3:62:05:ca:2c:73:01:46:2f:71:f1:de: 8c:a6:b9:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjQwNTAzMDM1MzQxWhcNMjQwNTEwMDM1MzQxWjAYMRYwFAYD VQQDEw02NjM0NWZjNi0zODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OYaIaot4hoVZ2QjTlLT923ZQs//pfv52isHlU5MGClYioE19tRBcQYQMACK DbgjJeHPsz9Gu1K+EBBg520Me7TNGgiVXB5mCRG29oFcVXbbfoMCu4p54AEsn3to 6h4mePDrfMAMZxgdDYUe3vXwulxKf6oxV+xWwtlLPmLmoEOSW/q7JdlPjXuGGKiU u+iQW80zxEN7PiSYtEh62SkCcbX2l7JPBt+yfUYZmP3rgesUGRlSMtMhQbB33XeZ hLPFyoqObs1lYVq6o85W6gs2VGbq2MBMtpaPAVFzOWmicmsHZoJu/rJm067AQfRu tlss5l8LO1OwJewM+wHVE4m/7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGt9p62 3FJ18dh4vcQNWbp5gzy/MB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy7qY5KFrgcTabjnISVqKwIUEmw591fSmR+ouVwvQaKBk7F0Dr961l 4m3uZBec8m1IOurOHqzjfIeIIqMm3A2zxKi+jv+9DJ9RO3qNduiLUlybcRdvOGUI YeZjfbBBJBjMCcbZFAYao8IapnJnDjBRq8QaUTAJUtZGVIg3carAAgqT+XnqW/4w RUVgw7rKDKdabBI/VfixvIh6Fpr2WCCPtWRgMkpxHlz/MWmUgzlcGUHvxQ9a4zod PUDmnVnBKwOtXwa9dLrO44XwUJEfWITU/MOfWqjUwCVe5HCynNqYtV8DNYqFfFw0 KO+eVmputw6zYgXKLHMBRi9x8d6Mprlm -----END CERTIFICATE-----Generated at Fri May 3 04:36:47 2024 by rpki-client on console-ams.rpki-client.org