$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: 8TQ9U4JEtDuxiknMqWLrkDLDC3Xpyr0ZleI8qxu8dXM= Subject key identifier: 23:9E:91:0F:D3:E2:A6:D6:B7:B6:F7:E8:E4:C0:C6:DF:64:20:B5:6D Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 1255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 2240 Signing time: Tue 30 Apr 2024 17:53:11 +0000 Manifest this update: Tue 30 Apr 2024 17:53:10 +0000 Manifest next update: Tue 07 May 2024 17:53:10 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: 7dVR/INfv1AKQnPx8yfXVyRRoBTyZYWlyrEnLc0FBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4693 (0x1255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Apr 30 17:53:10 2024 GMT Not After : May 7 17:53:10 2024 GMT Subject: CN=66313007-aab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:b5:69:95:13:f0:a8:13:38:f7:2a:dd:a6: d7:5e:40:2f:66:02:c7:6e:18:70:69:92:c0:9f:9c: 78:83:5b:16:4e:a0:5b:94:bc:69:d0:78:82:f3:b4: 63:65:8b:8f:11:df:96:e1:97:bd:8b:42:f9:c0:d7: f1:8d:2a:c7:ef:03:8d:0d:f6:21:9d:02:b5:be:6a: 83:79:f1:a6:af:b0:2c:c8:be:3c:60:a8:44:4d:78: 36:33:cd:90:44:eb:e2:87:2f:c5:bb:b5:17:d8:c7: f1:63:69:fc:85:2e:4b:d8:3e:c3:55:69:1c:73:58: 99:bf:b7:c6:b9:cf:08:aa:53:6a:5c:91:54:f3:88: 62:77:7f:17:dd:08:17:55:68:5a:c6:fd:67:b8:17: 8f:9d:a1:b5:47:a0:4c:52:96:16:fe:9d:cb:ce:0b: 63:b1:b9:9d:90:68:2f:52:17:9f:a8:d2:f1:ab:66: 8f:79:76:2d:e5:8d:40:e0:0f:f5:9c:dd:0f:bc:e7: 13:70:67:c9:a8:72:d1:c5:75:96:f6:a7:66:76:01: 38:5a:17:03:d2:60:d2:74:ea:85:50:72:82:2b:0c: a0:28:9a:0b:ab:f0:15:0c:6a:f4:c0:7d:fd:0c:79: 16:98:e1:6b:bd:cd:35:03:df:f5:a1:e7:2b:a9:17: 42:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9E:91:0F:D3:E2:A6:D6:B7:B6:F7:E8:E4:C0:C6:DF:64:20:B5:6D X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:34:ee:f6:b0:e2:63:18:68:4c:97:8b:75:5b:42:f5:90:c1: eb:57:37:32:c1:79:c2:bc:15:20:24:6f:21:2e:03:06:a3:61: 62:5f:7a:a4:2d:5b:f5:d5:5c:4e:5a:c6:19:b1:bb:5a:f1:4d: f1:8f:98:d9:bf:92:87:21:29:c0:1d:91:b8:d7:f4:51:e9:74: da:e8:c5:13:e6:9c:ac:46:08:9c:08:99:5c:f0:dd:48:a6:4f: ba:6f:3c:b7:d2:4c:56:60:38:e6:c0:fb:8a:a7:52:5b:c3:4b: 89:7a:8c:ab:c2:a6:b0:32:8b:7a:36:e3:f6:30:c5:51:4f:ac: a8:b9:77:ef:4d:da:5f:82:96:41:b5:b0:8b:81:3e:1d:bc:59: ba:13:00:bd:cd:3e:70:a3:25:0c:d7:99:c6:4a:07:14:a9:a6: 78:a4:e5:39:a5:f3:a4:f0:2d:71:3e:04:7a:b5:f7:77:7f:cd: a8:4d:26:8c:e2:79:2c:50:5d:c7:57:ce:46:31:2a:6f:51:7f: 2c:c8:49:14:ee:83:05:e2:60:dd:df:de:1e:27:cd:d0:52:5a: 34:3d:87:58:dd:cf:77:53:cf:40:fc:60:0f:f6:37:fb:19:bb: 43:6c:07:28:0c:12:32:84:32:ad:28:9d:9c:84:20:d6:58:70: c6:e5:a3:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjQwNDMwMTc1MzEwWhcNMjQwNTA3MTc1MzEwWjAYMRYwFAYD VQQDEw02NjMxMzAwNy1hYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxG1aZUT8KgTOPcq3abXXkAvZgLHbhhwaZLAn5x4g1sWTqBblLxp0HiC87Rj ZYuPEd+W4Ze9i0L5wNfxjSrH7wONDfYhnQK1vmqDefGmr7AsyL48YKhETXg2M82Q ROvihy/Fu7UX2MfxY2n8hS5L2D7DVWkcc1iZv7fGuc8IqlNqXJFU84hid38X3QgX VWhaxv1nuBePnaG1R6BMUpYW/p3LzgtjsbmdkGgvUhefqNLxq2aPeXYt5Y1A4A/1 nN0PvOcTcGfJqHLRxXWW9qdmdgE4WhcD0mDSdOqFUHKCKwygKJoLq/AVDGr0wH39 DHkWmOFrvc01A9/1oecrqRdCdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOekQ/T 4qbWt7b36OTAxt9kILVtMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALNO72sOJjGGhMl4t1W0L1kMHrVzcywXnCvBUgJG8hLgMGo2FiX3qk LVv11VxOWsYZsbta8U3xj5jZv5KHISnAHZG41/RR6XTa6MUT5pysRgicCJlc8N1I pk+6bzy30kxWYDjmwPuKp1Jbw0uJeoyrwqawMot6NuP2MMVRT6youXfvTdpfgpZB tbCLgT4dvFm6EwC9zT5woyUM15nGSgcUqaZ4pOU5pfOk8C1xPgR6tfd3f82oTSaM 4nksUF3HV85GMSpvUX8syEkU7oMF4mDd394eJ83QUlo0PYdY3c93U89A/GAP9jf7 GbtDbAcoDBIyhDKtKJ2chCDWWHDG5aPe -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:01 2024 by rpki-client on console-fra.rpki-client.org