$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: Kurd4CzFncHgidFcsK+dUXAyB3a2sjV8WPgOH4Quf9k= Subject key identifier: 70:CB:08:B0:C0:1A:C0:2A:1F:A6:90:FD:85:0E:26:D5:EE:21:1B:55 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1665 Signing time: Mon 06 May 2024 17:14:48 +0000 Manifest this update: Mon 06 May 2024 17:14:47 +0000 Manifest next update: Mon 13 May 2024 17:14:47 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: 0LhfTSMvD6MY5CTKnvapCag+njmhCnPqXriSMW9c9lg=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5753 (0x1679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: May 6 17:14:47 2024 GMT Not After : May 13 17:14:47 2024 GMT Subject: CN=66391007-a46e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:46:91:33:a4:59:51:ed:42:70:f0:7e:b8:f8: 92:1e:9d:01:ee:13:74:d1:6b:04:9b:61:38:c3:67: 9c:0b:ae:db:3a:f1:7f:45:ac:82:10:da:cf:51:42: 1b:01:40:ff:34:dc:3d:32:9a:4d:df:e2:48:9d:17: 17:37:9c:35:62:e4:3b:84:6f:84:c5:54:58:a7:52: b7:f7:59:a6:36:93:60:00:45:61:b1:3a:39:fc:b2: 7f:ee:5d:f7:b7:e9:bd:42:b8:38:20:e2:b4:43:a5: 25:c7:b2:2e:06:6d:3d:39:36:b7:fa:91:94:11:47: 80:3c:05:af:12:60:e0:91:71:b7:7f:94:79:fc:77: 0f:83:c5:47:44:86:93:b0:7e:3f:67:a5:7b:91:f4: 60:43:8a:c1:d2:8a:e2:a5:be:43:fa:46:88:b9:9e: bf:2b:7d:f0:13:b4:19:df:6c:4b:b0:95:cf:4d:5b: 38:95:0f:0e:ff:fd:56:d4:a5:b5:6c:fe:0f:cc:41: ce:29:4b:23:31:81:ad:63:1c:7a:72:c8:66:47:60: 41:f2:2e:01:55:61:0a:72:a8:63:45:27:0c:94:f8: 07:c4:01:e6:59:38:e3:34:f2:af:b4:16:92:ec:0a: 42:31:36:f6:8f:c4:86:91:d6:10:d2:f9:e1:05:5f: df:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CB:08:B0:C0:1A:C0:2A:1F:A6:90:FD:85:0E:26:D5:EE:21:1B:55 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:da:30:c1:ae:21:e8:dd:ac:a1:88:9c:76:5f:3a:8c:95:c2: 4d:1e:c8:94:cd:7c:88:ad:cc:90:b1:db:63:29:71:83:f3:46: 3b:e6:9b:4c:ca:4f:63:d1:3c:ac:14:04:b2:c1:86:30:9c:c6: 94:49:df:b5:0e:b2:3d:97:c3:e7:c2:c5:22:ab:bc:a7:9a:66: ae:c1:ab:b7:75:76:23:31:7d:2a:c6:68:30:ff:6f:c3:9d:4c: 43:0f:f5:b2:97:b8:0f:90:e4:fd:12:4b:22:99:54:08:9e:9c: 82:a1:bb:78:bd:b4:aa:66:59:70:1c:72:cf:68:bb:23:ed:0c: 8c:83:54:4a:7b:b3:fb:9e:27:9c:39:2d:91:81:a7:97:aa:ba: bb:1c:db:cc:fb:01:5f:cd:b2:a4:e1:32:f1:f8:6b:5d:18:2d: 54:96:3f:f9:cb:6c:36:75:74:3e:b1:ff:e9:4b:01:5a:50:32: ad:2c:a8:11:a1:18:c7:2f:c4:b4:c8:59:b7:60:fd:36:7d:1d: 1c:78:64:5c:8c:84:8c:67:2f:70:54:a0:c7:17:0b:64:b3:71: dd:5b:c5:e7:e8:d6:7d:a5:30:57:33:a5:e2:b9:ad:76:d6:71: 52:76:8e:93:69:81:33:cc:0c:7e:27:9c:1c:ec:b5:cf:60:5c: b5:6b:a9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjQwNTA2MTcxNDQ3WhcNMjQwNTEzMTcxNDQ3WjAYMRYwFAYD VQQDEw02NjM5MTAwNy1hNDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkaRM6RZUe1CcPB+uPiSHp0B7hN00WsEm2E4w2ecC67bOvF/RayCENrPUUIb AUD/NNw9MppN3+JInRcXN5w1YuQ7hG+ExVRYp1K391mmNpNgAEVhsTo5/LJ/7l33 t+m9Qrg4IOK0Q6Ulx7IuBm09OTa3+pGUEUeAPAWvEmDgkXG3f5R5/HcPg8VHRIaT sH4/Z6V7kfRgQ4rB0oripb5D+kaIuZ6/K33wE7QZ32xLsJXPTVs4lQ8O//1W1KW1 bP4PzEHOKUsjMYGtYxx6cshmR2BB8i4BVWEKcqhjRScMlPgHxAHmWTjjNPKvtBaS 7ApCMTb2j8SGkdYQ0vnhBV/fbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDLCLDA GsAqH6aQ/YUOJtXuIRtVMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL2jDBriHo3ayhiJx2XzqMlcJNHsiUzXyIrcyQsdtjKXGD80Y75ptM yk9j0TysFASywYYwnMaUSd+1DrI9l8PnwsUiq7ynmmauwau3dXYjMX0qxmgw/2/D nUxDD/Wyl7gPkOT9EksimVQInpyCobt4vbSqZllwHHLPaLsj7QyMg1RKe7P7niec OS2RgaeXqrq7HNvM+wFfzbKk4TLx+GtdGC1Ulj/5y2w2dXQ+sf/pSwFaUDKtLKgR oRjHL8S0yFm3YP02fR0ceGRcjISMZy9wVKDHFwtks3HdW8Xn6NZ9pTBXM6Xiua12 1nFSdo6TaYEzzAx+J5wc7LXPYFy1a6mG -----END CERTIFICATE-----Generated at Mon May 6 20:19:31 2024 by rpki-client on console-ams.rpki-client.org