$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: vtZFP0Wilng+6+JfRC1VKc352KMVDpDv+5axS1rkxxA= Subject key identifier: 33:6E:93:E9:08:3B:3A:52:06:2D:A0:8C:ED:3D:BC:D3:EB:D7:8E:B5 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 09B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 09A9 Signing time: Tue 30 Apr 2024 21:12:26 +0000 Manifest this update: Tue 30 Apr 2024 21:12:25 +0000 Manifest next update: Tue 07 May 2024 21:12:25 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: 61gOU5/aPJsNgDV08IZgsflcfmIVptQmKk2l8GcMreE=) 2: 1AD373BAB85911EEAD35104FC4F9AE02.roa (hash: 4SlIaTwQG5C7Z3NVeZVgFQclH1vtAwFQo1VKovMtgy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2481 (0x9b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Apr 30 21:12:25 2024 GMT Not After : May 7 21:12:25 2024 GMT Subject: CN=66315eba-9279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3c:29:53:ee:ef:43:16:c3:a2:bf:24:ea:e3: 7b:d7:01:f3:9c:e2:3a:18:07:7e:8a:4b:df:15:09: f0:1f:64:c2:9b:26:b5:98:27:a7:d8:6a:7a:5a:71: 6e:a4:ab:89:4c:f3:07:60:6e:ac:c6:41:de:cb:8c: 3b:44:c5:13:08:48:e3:3c:ac:cc:0d:58:d6:cc:04: e2:d6:5b:07:70:f8:f0:3d:f1:0d:39:64:3e:8d:02: 91:6a:cf:a7:a0:ab:5b:e3:e2:4b:a7:2a:ee:d9:27: 43:f4:45:f6:5b:37:f0:b7:93:33:82:44:74:6d:65: ba:cd:6e:d4:58:a9:d1:60:e8:df:5e:a8:c2:d8:54: 29:c2:67:ce:3a:e9:69:31:f1:ce:c0:c7:76:4a:ef: f2:ad:65:26:d4:ad:20:30:e6:ec:0b:82:bc:52:59: 12:97:3f:ff:a1:ed:90:f1:56:a7:bf:18:83:dc:cb: b7:87:7c:d6:36:ab:88:3b:1e:26:24:4d:6b:21:78: d3:aa:60:2d:b7:c5:b1:cc:d2:26:24:ab:cb:71:2d: 4f:8f:60:31:d9:2d:d4:72:9a:c3:16:8d:47:72:28: f3:18:d5:31:d4:37:8f:99:c4:1a:26:88:e7:ec:aa: 05:61:97:dc:b2:33:38:6b:89:f0:9c:cf:7a:87:60: 62:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6E:93:E9:08:3B:3A:52:06:2D:A0:8C:ED:3D:BC:D3:EB:D7:8E:B5 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:a6:20:c9:36:8c:dc:cf:ea:59:30:43:8f:88:49:57:e1:6d: b0:20:df:48:c2:e2:dc:00:ea:e7:22:09:24:43:87:2d:ec:20: 2f:d2:b5:a9:34:75:2f:8f:d9:7f:ec:95:d9:a9:3b:1c:5c:07: eb:6c:fa:4c:22:1d:6e:a9:38:0c:ee:85:1d:d2:a9:58:34:9d: 80:5f:31:ee:74:1d:75:ee:99:35:f2:91:51:61:15:d2:e6:ad: 47:74:73:9e:be:cd:4d:51:36:b3:dd:80:8f:32:ca:89:ea:b7: b9:dd:6d:cc:cb:51:27:7d:d2:28:9b:b3:09:9a:8d:be:3c:3b: f3:8b:59:7a:9e:ee:e8:29:e1:ab:12:21:8f:11:24:ab:c2:a8: 30:02:f7:19:33:78:d1:93:41:ff:b0:98:04:bb:a4:c2:5f:77: 4d:42:8b:27:a8:9a:37:44:5a:89:12:58:73:11:67:b5:fe:c1: 2b:a4:18:65:62:ec:14:e6:c6:f8:0d:7e:26:dc:ea:b4:3d:16: 28:7c:41:39:ec:31:f8:cd:11:03:84:21:66:db:48:25:12:bd: 4c:ac:4a:60:60:56:5d:2c:7f:5b:da:d7:f7:a3:8c:b1:93:4a: 5b:d1:ea:4c:ec:ad:2c:95:8d:52:5a:89:9d:34:5a:90:ac:d3: ae:df:75:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjQwNDMwMjExMjI1WhcNMjQwNTA3MjExMjI1WjAYMRYwFAYD VQQDEw02NjMxNWViYS05Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszwpU+7vQxbDor8k6uN71wHznOI6GAd+ikvfFQnwH2TCmya1mCen2Gp6WnFu pKuJTPMHYG6sxkHey4w7RMUTCEjjPKzMDVjWzATi1lsHcPjwPfENOWQ+jQKRas+n oKtb4+JLpyru2SdD9EX2Wzfwt5MzgkR0bWW6zW7UWKnRYOjfXqjC2FQpwmfOOulp MfHOwMd2Su/yrWUm1K0gMObsC4K8UlkSlz//oe2Q8VanvxiD3Mu3h3zWNquIOx4m JE1rIXjTqmAtt8WxzNImJKvLcS1Pj2Ax2S3UcprDFo1HcijzGNUx1DePmcQaJojn 7KoFYZfcsjM4a4nwnM96h2BiuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNuk+kI OzpSBi2gjO09vNPr1461MB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAipiDJNozcz+pZMEOPiElX4W2wIN9IwuLcAOrnIgkkQ4ct7CAv0rWp NHUvj9l/7JXZqTscXAfrbPpMIh1uqTgM7oUd0qlYNJ2AXzHudB117pk18pFRYRXS 5q1HdHOevs1NUTaz3YCPMsqJ6re53W3My1EnfdIom7MJmo2+PDvzi1l6nu7oKeGr EiGPESSrwqgwAvcZM3jRk0H/sJgEu6TCX3dNQosnqJo3RFqJElhzEWe1/sErpBhl YuwU5sb4DX4m3Oq0PRYofEE57DH4zREDhCFm20glEr1MrEpgYFZdLH9b2tf3o4yx k0pb0epM7K0slY1SWomdNFqQrNOu33WS -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:54 2024 by rpki-client on console-ams.rpki-client.org