$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: nvK7d0InlrApvbH1cFBGBA0knf+Sd4y3hB31ABUl9d0= Subject key identifier: CC:A3:64:6E:55:20:F7:22:53:5C:87:A6:7F:C2:B8:0E:B5:30:4B:99 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 54 Signing time: Wed 15 May 2024 07:56:30 +0000 Manifest this update: Wed 15 May 2024 07:56:29 +0000 Manifest next update: Wed 22 May 2024 07:56:29 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: t1t5aoBX/+C00L46vbltBDiqraNvAQxcWKOXZ/z+4b0=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: gMAYCX+MgLX0+nozXgNb5JOHXUiVeHdCAZ1791a6lqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: May 15 07:56:29 2024 GMT Not After : May 22 07:56:29 2024 GMT Subject: CN=66446aae-ccc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:4f:ef:10:c2:1c:e5:5e:00:30:ae:37:65: 9c:94:e9:da:d4:d0:ab:9a:1a:1d:9d:fb:d3:8b:2b: ee:8f:fe:be:fd:71:d3:d6:57:f7:88:69:78:75:5d: 5b:9b:e8:a6:60:de:6c:d2:eb:c9:16:30:fd:dd:77: 1d:19:e7:c7:07:ce:3b:6c:21:67:75:38:84:3d:94: 4f:64:fd:a4:7e:85:d2:fe:02:97:89:a2:e2:b7:c2: 37:4d:39:0f:d7:e3:8c:0d:5a:72:b8:6c:a8:d0:30: 56:dc:ec:a5:5e:7d:84:85:c2:f3:b5:8e:b1:99:13: 03:ac:ae:0f:1b:f9:e8:ec:f4:69:ee:21:af:77:f2: db:5d:20:ba:95:2a:11:f2:e4:de:04:17:24:66:a9: 25:d6:f3:6f:11:25:96:1b:10:83:9d:0b:72:18:22: 32:ff:51:85:58:6d:f3:e1:9b:64:23:1c:cf:51:92: dd:1e:01:56:06:56:a0:c2:39:51:1d:27:65:19:7f: 9c:22:c9:8e:7e:06:d9:0b:c3:70:d2:f3:87:e5:73: d1:93:e5:02:0d:40:03:80:00:d3:74:a2:c1:33:88: 75:ca:22:40:65:b5:e4:9f:84:03:9d:c5:1c:03:69: 10:d5:e1:01:f1:83:01:58:f2:32:7f:3b:29:85:a2: 0a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A3:64:6E:55:20:F7:22:53:5C:87:A6:7F:C2:B8:0E:B5:30:4B:99 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:86:2f:fa:03:ce:9d:4f:b2:a6:d5:50:cc:4e:25:41:d3:e7: 13:b2:56:55:fa:6e:52:6d:82:b2:51:c3:c0:03:83:f3:f3:20: b8:00:8e:e4:2f:7e:7b:bd:ee:0b:21:25:53:85:f4:5b:be:16: d9:41:11:15:c5:dc:5c:45:94:8c:a0:51:d2:8c:29:92:53:68: 09:84:0b:ea:b5:f1:53:88:e6:96:20:74:75:2b:1c:81:92:27: 31:c4:6d:8d:65:fe:d8:2e:eb:e4:8c:db:e5:d4:65:81:7a:5a: 09:83:96:5e:24:5d:da:d9:05:3f:e0:23:68:35:b3:1c:fd:17: 1d:48:9b:1d:bc:3a:c9:2f:78:0f:03:f4:2f:0f:67:d5:9b:90: 58:b7:9c:0a:86:0a:ea:8e:74:84:65:6e:7a:7f:9a:b1:e8:6f: 71:cf:75:14:1f:37:68:91:c9:34:e1:6b:27:16:72:3f:1d:68: ec:48:91:a5:3d:fd:a0:9d:5d:d1:6e:7d:8a:66:69:40:8d:9f: fb:9c:61:a6:c5:2d:42:9d:8e:59:08:43:7c:d7:c6:2a:07:67: 4e:da:2c:24:e1:2d:59:6d:a4:20:e2:5f:10:eb:ca:f6:fb:a6: d2:57:07:2a:56:78:50:38:06:e8:ba:1a:b2:da:40:cd:fd:42: cb:7d:8c:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODU0NzExMC8GA1UEBRMoQTBENjZGMTE3NTUzM0EyM0E4NTJFOTUxNTA2NUM4NUEz MzlFNzM4NjAeFw0yNDA1MTUwNzU2MjlaFw0yNDA1MjIwNzU2MjlaMBgxFjAUBgNV BAMTDTY2NDQ2YWFlLWNjYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIpE/vEMIc5V4AMK43ZZyU6drU0KuaGh2d+9OLK+6P/r79cdPWV/eIaXh1XVub 6KZg3mzS68kWMP3ddx0Z58cHzjtsIWd1OIQ9lE9k/aR+hdL+ApeJouK3wjdNOQ/X 44wNWnK4bKjQMFbc7KVefYSFwvO1jrGZEwOsrg8b+ejs9GnuIa938ttdILqVKhHy 5N4EFyRmqSXW828RJZYbEIOdC3IYIjL/UYVYbfPhm2QjHM9Rkt0eAVYGVqDCOVEd J2UZf5wiyY5+BtkLw3DS84flc9GT5QINQAOAANN0osEziHXKIkBlteSfhAOdxRwD aRDV4QHxgwFY8jJ/OymFogr1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzKNkblUg 9yJTXIemf8K4DrUwS5kwHwYDVR0jBBgwFoAUoNZvEXVTOiOoUulRUGXIWjOec4Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NTQ3L0IzODY2OEU0OTJB NTExRUU4Q0Q5NUIxRUM0RjlBRTAyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb05adkVYVlRPaU9vVXVsUlVHWElXak9lYzRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NTQ3L0IzODY2OEU0OTJBNTExRUU4Q0Q5NUIxRUM0RjlBRTAyL29OWnZFWFZUT2lP b1V1bFJVR1hJV2pPZWM0WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC6GL/oDzp1PsqbVUMxOJUHT5xOyVlX6blJtgrJRw8ADg/PzILgAjuQv fnu97gshJVOF9Fu+FtlBERXF3FxFlIygUdKMKZJTaAmEC+q18VOI5pYgdHUrHIGS JzHEbY1l/tgu6+SM2+XUZYF6WgmDll4kXdrZBT/gI2g1sxz9Fx1Imx28OskveA8D 9C8PZ9WbkFi3nAqGCuqOdIRlbnp/mrHob3HPdRQfN2iRyTThaycWcj8daOxIkaU9 /aCdXdFufYpmaUCNn/ucYabFLUKdjlkIQ3zXxioHZ07aLCThLVltpCDiXxDryvb7 ptJXBypWeFA4Bui6GrLaQM39Qst9jLw= -----END CERTIFICATE-----Generated at Wed May 15 09:04:09 2024 by rpki-client on console-ams.rpki-client.org