$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: 4iKzgQxhCOjf0Wgc7DEIbLVLeTvb7wlFgwatQK8n5SY= Subject key identifier: 1E:0C:04:2E:49:68:A6:1F:6C:60:1A:C2:D2:B8:7E:31:DF:DB:03:3D Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: B6 Signing time: Wed 01 May 2024 06:51:08 +0000 Manifest this update: Wed 01 May 2024 06:51:07 +0000 Manifest next update: Wed 08 May 2024 06:51:07 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: CJ1KT8Pp/mt0Dtt5TBVZalLQX0QQvIXWwOMXflp5f0o=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: njuB7hJQ60BQw/nGmHlQPAo11VYWgVEP9FYZsEsvOz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: May 1 06:51:07 2024 GMT Not After : May 8 06:51:07 2024 GMT Subject: CN=6631e65c-3dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:33:f3:c0:e8:af:bc:06:20:8d:e3:a5:44:de: d7:13:be:04:46:62:58:f5:40:3f:eb:a9:0c:50:39: 70:3c:63:6d:f7:e1:34:fd:d0:98:f2:8f:e1:10:87: b4:72:a1:3f:af:7d:e0:4b:53:1b:68:47:04:6b:f3: 96:23:96:b5:f3:d1:b2:b7:72:74:4a:e8:5a:75:89: 65:90:f6:38:d6:0e:03:55:f7:d2:86:a3:11:b3:95: 97:2a:e2:6f:5a:55:f0:07:f2:b1:87:28:91:b2:03: 54:97:61:b3:fb:da:13:3b:4b:be:65:27:b0:01:00: c4:4f:a8:30:5e:05:ff:26:12:5b:21:52:ef:9e:fe: c5:19:38:69:d5:4e:33:70:98:87:0f:a5:de:76:66: f0:d7:f0:15:5b:e6:a1:47:3e:30:ef:1d:54:4b:7d: 43:65:97:66:1d:cf:df:c9:68:24:9b:08:29:13:04: 76:c0:96:ff:e5:2b:11:fe:eb:fb:a3:38:d7:25:5b: 25:d8:65:91:53:a6:e6:c4:ff:1f:40:cb:f4:38:97: c5:51:e1:14:e1:93:31:d9:59:ad:2e:8b:f7:ec:d1: e9:cf:a4:72:99:11:d3:ad:1d:30:70:8c:0a:96:b5: c2:32:47:a8:0c:e7:0c:f2:84:1d:34:13:71:c6:78: cd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0C:04:2E:49:68:A6:1F:6C:60:1A:C2:D2:B8:7E:31:DF:DB:03:3D X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:45:f8:0f:c8:3a:ee:9e:77:e0:86:16:a0:d2:91:5b:31:a8: 9d:d5:18:d8:d8:2e:2d:01:87:16:58:a1:85:2e:70:87:fd:9d: e0:cb:6b:9c:ee:d9:86:aa:7c:e1:e7:e9:31:b8:a5:d5:34:d8: 45:cc:4f:6f:03:61:b3:23:b0:d3:22:d9:5f:a9:94:39:0e:d9: fe:d9:f9:46:72:15:b8:53:c3:9c:70:8e:1d:82:82:05:53:7f: b4:e2:ad:60:39:81:08:b4:bb:13:3b:74:3c:83:ed:e5:2d:51: 53:5a:da:e5:6c:b2:df:5c:a5:48:4b:cd:03:88:05:07:c3:e5: 17:d6:ed:d4:9b:62:23:86:80:6c:fe:4c:df:88:47:7e:4f:8c: 54:63:02:9f:59:89:7f:9c:eb:7a:68:b2:3f:cb:47:2f:97:0f: 91:cb:e0:f9:fc:02:b5:32:10:13:8a:12:1b:a7:83:ae:44:ff: ac:60:e0:aa:33:e2:2a:8d:d2:8b:61:64:eb:27:fc:da:d3:48: 45:3b:20:b6:02:83:e8:8b:f7:9c:b5:ec:90:21:23:d7:7f:91: 67:39:26:6c:ef:b1:78:4d:f8:b1:b4:fa:65:18:f2:93:80:86: b4:fc:6c:20:2e:41:fd:97:76:ea:15:ce:cd:a8:cc:8e:f8:fd: 0a:a6:44:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjQwNTAxMDY1MTA3WhcNMjQwNTA4MDY1MTA3WjAYMRYwFAYD VQQDEw02NjMxZTY1Yy0zZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzPzwOivvAYgjeOlRN7XE74ERmJY9UA/66kMUDlwPGNt9+E0/dCY8o/hEIe0 cqE/r33gS1MbaEcEa/OWI5a189Gyt3J0SuhadYllkPY41g4DVffShqMRs5WXKuJv WlXwB/KxhyiRsgNUl2Gz+9oTO0u+ZSewAQDET6gwXgX/JhJbIVLvnv7FGThp1U4z cJiHD6Xedmbw1/AVW+ahRz4w7x1US31DZZdmHc/fyWgkmwgpEwR2wJb/5SsR/uv7 ozjXJVsl2GWRU6bmxP8fQMv0OJfFUeEU4ZMx2VmtLov37NHpz6RymRHTrR0wcIwK lrXCMkeoDOcM8oQdNBNxxnjNywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4MBC5J aKYfbGAawtK4fjHf2wM9MB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3RfgPyDrunnfghhag0pFbMaid1RjY2C4tAYcWWKGFLnCH/Z3gy2uc 7tmGqnzh5+kxuKXVNNhFzE9vA2GzI7DTItlfqZQ5Dtn+2flGchW4U8OccI4dgoIF U3+04q1gOYEItLsTO3Q8g+3lLVFTWtrlbLLfXKVIS80DiAUHw+UX1u3Um2IjhoBs /kzfiEd+T4xUYwKfWYl/nOt6aLI/y0cvlw+Ry+D5/AK1MhATihIbp4OuRP+sYOCq M+IqjdKLYWTrJ/za00hFOyC2AoPoi/ecteyQISPXf5FnOSZs77F4TfixtPplGPKT gIa0/GwgLkH9l3bqFc7NqMyO+P0KpkSW -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org