$ rpki-client -vvf rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft File: OWpdnmemeQypf7kxMEtE57CoIc8.mft (raw, json) Hash identifier: OWNm7rzUCZ+2B5I2s+UpquIFm+nlzL0MIeesTHMlJbI= Subject key identifier: 7B:CE:B9:B9:AE:65:B1:5A:6B:55:31:1A:A4:FD:02:2D:43:68:19:CB Authority key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF Certificate issuer: /CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Certificate serial: 0811 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft Manifest number: 0808 Signing time: Thu 02 May 2024 22:00:27 +0000 Manifest this update: Thu 02 May 2024 22:00:26 +0000 Manifest next update: Thu 09 May 2024 22:00:26 +0000 Files and hashes: 1: OWpdnmemeQypf7kxMEtE57CoIc8.crl (hash: OaSAoUrlAGHIgTUawNQ+M/uHop5BjVL31drrA+7BW0Y=) 2: 442D6434B14411EAB852C134C4F9AE02.roa (hash: Yo06H8B4T2CdxXXpY/GrqbSLu67TZviDh3xx9s2+0/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2065 (0x811) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Validity Not Before: May 2 22:00:26 2024 GMT Not After : May 9 22:00:26 2024 GMT Subject: CN=66340cfb-2e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:f3:f2:2c:36:fb:6d:3b:61:5b:a1:3b:6d: 73:2d:e7:48:42:49:3b:90:46:3f:db:b0:af:31:66: fb:d6:e1:c6:6e:94:52:53:aa:c3:2c:34:d1:d5:7b: d8:3a:f3:c7:d9:eb:d3:8e:cf:f5:63:80:4c:0c:aa: 9c:4a:9f:c8:c7:5d:6f:cd:0a:cf:5f:4c:78:03:0f: 06:ce:0a:f5:26:c7:31:e6:ce:30:9c:bf:17:81:01: 2c:b5:31:8c:c5:6c:f7:f1:dd:91:54:65:42:99:99: af:05:f7:7d:a9:70:26:51:d4:17:66:4f:2d:e9:7f: ef:dd:6f:e9:c6:69:de:0a:4d:c8:c2:97:6b:e8:56: 50:4e:e6:0c:c2:53:ad:d0:c0:ab:f7:89:95:34:33: 1a:9b:05:91:96:c4:76:06:06:a3:2b:82:cd:b8:33: 9d:7a:31:6b:d0:79:22:41:27:f2:3d:98:71:d1:d7: cc:34:d6:bb:60:21:ea:96:9f:1a:61:6f:a7:25:19: 50:33:1e:eb:c4:41:f8:60:05:76:53:11:0c:e6:b1: c8:f0:6d:2b:39:7d:56:1d:f3:11:8c:d7:54:b8:7e: ba:54:94:9e:8c:cb:54:1d:58:fa:55:66:57:bc:7a: 6c:b5:c6:71:8a:92:9f:8b:cf:c4:bc:29:45:82:a2: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CE:B9:B9:AE:65:B1:5A:6B:55:31:1A:A4:FD:02:2D:43:68:19:CB X509v3 Authority Key Identifier: keyid:39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:6f:56:2e:ea:4e:21:54:14:13:45:b0:89:7b:66:66:cc:82: 4f:b9:1f:d6:be:ff:e2:8f:6b:29:32:49:7b:e4:de:1e:cf:7d: c9:82:05:ee:e7:b2:4c:38:64:f7:3b:da:32:b0:a2:dc:58:cf: 1b:bc:bf:70:a6:a8:c2:51:10:2a:e4:bf:8c:b4:00:4a:63:6c: c3:b0:6d:c6:f2:7d:7e:46:34:85:99:c3:0f:c9:7a:45:aa:ba: b6:4f:4e:2f:af:c9:55:69:16:d1:10:ca:0d:a9:c0:f9:5e:9e: bf:fe:f1:6f:7e:16:25:9c:57:74:61:7c:11:f6:32:af:10:e8: 98:fc:6b:be:bb:76:dd:2e:d6:85:a7:df:54:8e:76:3e:9f:ea: cc:aa:f2:ce:0e:5b:aa:ce:e7:02:5c:f3:bd:b9:a8:5b:86:0b: b2:9d:54:58:bb:2f:d7:12:83:63:d7:a2:a5:a0:35:ed:d4:57: 6d:ae:89:21:15:b7:ce:b4:29:54:cf:43:7c:c8:3b:41:f7:5a: 66:52:65:fd:02:57:f9:61:cb:1d:be:98:71:41:4c:1a:02:a2: 38:3d:98:36:99:f3:74:9d:ac:1f:c0:14:53:61:e7:d6:78:7b: a8:86:bf:f6:37:23:5e:93:8c:3d:63:c1:d8:95:47:26:fd:a3: e7:2d:40:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkzMTMwNEI0NEU3 QjBBODIxQ0YwHhcNMjQwNTAyMjIwMDI2WhcNMjQwNTA5MjIwMDI2WjAYMRYwFAYD VQQDEw02NjM0MGNmYi0yZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1urz8iw2+207YVuhO21zLedIQkk7kEY/27CvMWb71uHGbpRSU6rDLDTR1XvY OvPH2evTjs/1Y4BMDKqcSp/Ix11vzQrPX0x4Aw8Gzgr1Jscx5s4wnL8XgQEstTGM xWz38d2RVGVCmZmvBfd9qXAmUdQXZk8t6X/v3W/pxmneCk3Iwpdr6FZQTuYMwlOt 0MCr94mVNDMamwWRlsR2BgajK4LNuDOdejFr0HkiQSfyPZhx0dfMNNa7YCHqlp8a YW+nJRlQMx7rxEH4YAV2UxEM5rHI8G0rOX1WHfMRjNdUuH66VJSejMtUHVj6VWZX vHpstcZxipKfi8/EvClFgqK51QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvOubmu ZbFaa1UxGqT9Ai1DaBnLMB8GA1UdIwQYMBaAFDlqXZ5npnkMqX+5MTBLROewqCHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjY0RS9CNDZBOUMxRUIx M0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVReXBmN2t4TUV0RTU3Q29J YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09XcGRubWVtZVF5cGY3a3hNRXRFNTdDb0ljOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVR eXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjb1Yu6k4hVBQTRbCJe2ZmzIJPuR/Wvv/ij2spMkl75N4ez33JggXu 57JMOGT3O9oysKLcWM8bvL9wpqjCURAq5L+MtABKY2zDsG3G8n1+RjSFmcMPyXpF qrq2T04vr8lVaRbREMoNqcD5Xp6//vFvfhYlnFd0YXwR9jKvEOiY/Gu+u3bdLtaF p99UjnY+n+rMqvLODluqzucCXPO9uahbhguynVRYuy/XEoNj16KloDXt1Fdtrokh FbfOtClUz0N8yDtB91pmUmX9Alf5YcsdvphxQUwaAqI4PZg2mfN0nawfwBRTYefW eHuohr/2NyNek4w9Y8HYlUcm/aPnLUBK -----END CERTIFICATE-----Generated at Thu May 2 23:03:11 2024 by rpki-client on console-fra.rpki-client.org