$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: qzad0z5WN9gzcjGk0NZTun0sk4fPti8vF+UMiwoYsOw= Subject key identifier: 77:76:FC:4E:4E:45:5D:D9:55:16:8E:0B:71:3C:C6:B8:37:D2:CD:BC Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0916 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 07F9 Signing time: Wed 01 May 2024 00:03:15 +0000 Manifest this update: Wed 01 May 2024 00:03:14 +0000 Manifest next update: Wed 08 May 2024 00:03:14 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: RoxErbQNhsNnSrD2j68f+p6sRBmAazqzqRGGpck/R5w=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: CAX7nWAKO9EpyW/be74ewQBzJVmlTu77zlxWepa842E=) 3: 8B0DCAFCA07811EEB25C0B54C4F9AE02.roa (hash: mt8ZR3hXkXW7Czz/m/gc3AumWydWg75uW6zXvIFc8qM=) 4: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: RxsigwXf3vdFsbVuo92fXqXZ9sZputEMz7xQxcIfrzM=) 5: D1BE5406C3CA11EE9E2D613FC4F9AE02.roa (hash: agWraLv/SbbMmdicjJuDW303BWW9Yv3OD4Gs+PN8lwM=) 6: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: R5yhKIE/C651Fp+CrymDZbq+0zHuloBwgNhmNOm34IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2326 (0x916) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: May 1 00:03:14 2024 GMT Not After : May 8 00:03:14 2024 GMT Subject: CN=663186c2-a37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:c9:00:b8:52:f4:ce:b2:45:46:7c:db:77: 0c:7e:5f:fa:3c:8c:a8:80:4a:13:80:c0:d4:e2:c3: e5:43:6c:39:f0:5c:ac:40:95:78:bd:42:e3:f6:e0: e8:91:69:54:85:3b:55:f8:c9:4f:54:48:33:2c:a9: be:62:bf:b5:f8:99:37:78:37:d1:8b:a1:04:69:89: 11:dc:9c:b5:a8:64:c6:74:0f:7c:1e:8f:0c:5b:67: 9c:40:a5:af:d1:36:fb:e7:b7:53:3c:4c:86:83:2f: 50:2d:6a:fe:ab:47:a5:45:82:53:c5:fc:57:74:3b: db:58:7e:31:bf:88:4f:6f:2c:47:61:47:19:c6:0c: 55:37:19:03:8f:df:66:81:dc:89:34:48:e5:15:be: 3b:f1:59:cf:6c:be:d8:fe:b3:a4:f2:a9:b4:90:f2: 5d:e6:55:0d:28:53:1a:d6:a9:d7:a3:0b:ba:31:0f: 96:44:2b:b2:64:88:b3:f2:a6:ce:ce:3e:e5:d6:41: 08:c3:89:98:ad:84:8a:0a:49:bd:4d:f9:ba:af:9a: 9b:d4:5a:94:88:f8:c3:8e:eb:00:99:ff:66:d3:49: 3d:e9:bd:4b:dc:d2:a7:18:91:8a:03:2b:74:d5:da: c3:ce:40:07:b9:91:ef:f4:9d:d2:70:72:5d:cd:19: c0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:76:FC:4E:4E:45:5D:D9:55:16:8E:0B:71:3C:C6:B8:37:D2:CD:BC X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:3b:42:30:cd:04:d1:c5:b9:48:d4:71:8c:d4:d4:c6:1d:51: 9c:e1:c8:11:ba:a7:14:37:e6:7e:e5:f3:2e:79:2c:5f:b8:02: 05:0c:03:0c:b9:42:07:c6:45:56:3a:09:60:f5:f6:63:8c:8b: 96:1c:0f:c3:d2:aa:70:9b:25:d3:17:27:7c:b4:26:44:e3:15: ee:90:67:32:4b:68:2c:ef:0f:64:7b:69:30:cb:72:83:bf:28: 8c:4e:36:cd:89:16:ad:de:45:ed:57:1e:0d:0c:e3:bc:0b:4f: 97:e2:2c:83:4c:5c:fe:47:52:a7:60:0e:ff:3b:15:06:a1:1c: 96:c9:18:f2:7e:28:be:ad:27:c5:9b:7b:0e:16:6c:51:e5:60: 16:ed:78:e2:71:8b:a9:2a:ab:77:11:40:aa:a2:8f:51:76:c8: 20:c3:72:e4:13:1a:71:c3:1b:cf:32:a7:3c:d6:40:5e:e0:d8: 92:3b:c8:8a:3e:c1:b2:83:72:6b:11:78:a9:10:da:6e:8b:9e: 2f:cc:8a:62:c1:56:8f:95:48:e2:43:96:f2:61:61:a2:ca:1c: 1e:f9:f5:a8:1e:40:df:29:80:b7:73:6b:56:1e:33:fd:8c:d6: f8:dd:c8:f6:a5:aa:fa:6c:89:35:32:49:0d:05:9a:5d:ea:d3: 9c:9b:08:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjQwNTAxMDAwMzE0WhcNMjQwNTA4MDAwMzE0WjAYMRYwFAYD VQQDEw02NjMxODZjMi1hMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslPJALhS9M6yRUZ823cMfl/6PIyogEoTgMDU4sPlQ2w58FysQJV4vULj9uDo kWlUhTtV+MlPVEgzLKm+Yr+1+Jk3eDfRi6EEaYkR3Jy1qGTGdA98Ho8MW2ecQKWv 0Tb757dTPEyGgy9QLWr+q0elRYJTxfxXdDvbWH4xv4hPbyxHYUcZxgxVNxkDj99m gdyJNEjlFb478VnPbL7Y/rOk8qm0kPJd5lUNKFMa1qnXowu6MQ+WRCuyZIiz8qbO zj7l1kEIw4mYrYSKCkm9Tfm6r5qb1FqUiPjDjusAmf9m00k96b1L3NKnGJGKAyt0 1drDzkAHuZHv9J3ScHJdzRnAZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHd2/E5O RV3ZVRaOC3E8xrg30s28MB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEO0IwzQTRxblI1HGM1NTGHVGc4cgRuqcUN+Z+5fMueSxfuAIFDAMM uUIHxkVWOglg9fZjjIuWHA/D0qpwmyXTFyd8tCZE4xXukGcyS2gs7w9ke2kwy3KD vyiMTjbNiRat3kXtVx4NDOO8C0+X4iyDTFz+R1KnYA7/OxUGoRyWyRjyfii+rSfF m3sOFmxR5WAW7XjicYupKqt3EUCqoo9Rdsggw3LkExpxwxvPMqc81kBe4NiSO8iK PsGyg3JrEXipENpui54vzIpiwVaPlUjiQ5byYWGiyhwe+fWoHkDfKYC3c2tWHjP9 jNb43cj2par6bIk1MkkNBZpd6tOcmwi3 -----END CERTIFICATE-----Generated at Wed May 1 01:04:04 2024 by rpki-client on console-fra.rpki-client.org