$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: wmScjqMitOxv9UdBkrvt4V4VT9ktR2/kGsUqozHszyM= Subject key identifier: 38:35:C1:A8:3E:5F:91:EC:45:DF:B6:A3:0A:84:7B:AB:0A:A7:F0:03 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0BD4 Signing time: Sat 04 May 2024 19:15:02 +0000 Manifest this update: Sat 04 May 2024 19:15:02 +0000 Manifest next update: Sat 11 May 2024 19:15:02 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: AH3GyXXx82i8521iy+bpX35+cW7Z/LdfS9rT4tjlISU=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: nywMJxp/QJRl/o51GroDZJBHV9bKbvCW1DrYRvKUn9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: May 4 19:15:02 2024 GMT Not After : May 11 19:15:02 2024 GMT Subject: CN=66368936-26e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:54:c4:4d:d6:d6:c1:59:4c:53:00:ac:ae:46: 2e:8e:21:0b:74:89:e9:5e:d7:7a:7c:31:7c:0e:da: 97:85:e2:55:34:46:86:42:a9:59:91:0f:dc:0b:45: 20:d5:6d:b5:44:59:3a:aa:e8:43:a9:f4:58:45:85: a4:d3:11:e4:ad:24:02:d7:74:34:4d:16:55:61:a6: 1a:34:77:a2:12:70:cf:9c:49:96:be:98:50:00:c7: c7:73:2a:6b:e4:00:f9:18:84:b6:fe:6d:b8:97:16: 57:c1:24:40:3f:3e:d3:9b:a9:62:66:39:f7:39:ed: 20:53:65:b7:41:c3:c4:dd:fe:57:ac:71:8a:45:6b: 15:6f:4e:51:da:65:b7:4a:f7:54:2f:ef:3a:d4:cf: ed:df:6d:f9:d2:56:13:2b:af:18:21:63:88:37:25: d6:b0:bd:d7:a7:70:5f:00:53:ed:a4:93:bd:82:a3: 07:17:60:50:5b:62:56:04:c7:91:c3:6e:65:74:18: 1b:3f:95:2d:b6:79:97:05:9b:a2:0d:6f:0c:ed:ad: 54:d1:f5:71:0c:fd:dc:62:c3:de:c0:11:5e:0c:db: d9:22:de:32:75:65:75:6e:1b:ff:b3:a9:e6:08:b1: 98:6f:62:04:19:0c:eb:80:0e:71:e4:04:12:ad:ad: 00:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:35:C1:A8:3E:5F:91:EC:45:DF:B6:A3:0A:84:7B:AB:0A:A7:F0:03 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:78:d3:14:5a:68:e5:90:86:5b:56:0f:7d:4b:28:ce:b3:a3: bc:6c:dc:54:47:ff:ba:b7:0f:10:6a:69:f7:d8:7d:f0:b8:e4: e7:b6:12:d1:66:f8:a3:6a:c4:8d:48:30:0f:69:84:f4:f7:38: 88:9a:09:34:75:6b:89:97:6d:36:87:16:82:98:41:4c:39:fa: 68:fc:26:59:68:34:1b:c8:f4:66:89:2b:c6:2c:6e:13:a9:35: e2:34:7c:fc:ab:0a:22:b2:bb:e3:92:bd:df:3d:ba:68:66:80: de:4f:01:ba:d5:db:3f:4a:57:f8:3d:6d:0f:26:b8:ab:d2:81: 28:c6:22:a5:4f:65:2f:fb:29:28:09:7d:ac:b8:af:a1:d5:71: a3:af:34:60:85:2f:be:01:bc:36:33:c0:83:6e:19:09:74:bb: 84:c6:23:bc:4d:4d:2f:b2:c7:3c:60:b9:26:5b:4e:62:9a:f3: b6:de:be:35:52:ca:1d:de:af:1e:b8:75:27:74:26:67:ef:73: 5a:0a:46:eb:02:7e:5c:7d:b3:fb:ea:91:30:79:a0:31:30:a7: b6:aa:47:5e:71:44:7c:63:dc:89:dc:82:6e:3c:a7:40:4f:1c: 63:65:cf:e1:e6:ad:78:f2:fe:3c:0c:2f:49:6a:3b:45:20:1f: b9:69:56:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjQwNTA0MTkxNTAyWhcNMjQwNTExMTkxNTAyWjAYMRYwFAYD VQQDEw02NjM2ODkzNi0yNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFTETdbWwVlMUwCsrkYujiELdInpXtd6fDF8DtqXheJVNEaGQqlZkQ/cC0Ug 1W21RFk6quhDqfRYRYWk0xHkrSQC13Q0TRZVYaYaNHeiEnDPnEmWvphQAMfHcypr 5AD5GIS2/m24lxZXwSRAPz7Tm6liZjn3Oe0gU2W3QcPE3f5XrHGKRWsVb05R2mW3 SvdUL+861M/t32350lYTK68YIWOINyXWsL3Xp3BfAFPtpJO9gqMHF2BQW2JWBMeR w25ldBgbP5UttnmXBZuiDW8M7a1U0fVxDP3cYsPewBFeDNvZIt4ydWV1bhv/s6nm CLGYb2IEGQzrgA5x5AQSra0AbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg1wag+ X5HsRd+2owqEe6sKp/ADMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDeNMUWmjlkIZbVg99SyjOs6O8bNxUR/+6tw8Qamn32H3wuOTnthLR ZvijasSNSDAPaYT09ziImgk0dWuJl202hxaCmEFMOfpo/CZZaDQbyPRmiSvGLG4T qTXiNHz8qwoisrvjkr3fPbpoZoDeTwG61ds/Slf4PW0PJrir0oEoxiKlT2Uv+yko CX2suK+h1XGjrzRghS++Abw2M8CDbhkJdLuExiO8TU0vssc8YLkmW05imvO23r41 Usod3q8euHUndCZn73NaCkbrAn5cfbP76pEweaAxMKe2qkdecUR8Y9yJ3IJuPKdA TxxjZc/h5q148v48DC9JajtFIB+5aVbH -----END CERTIFICATE-----Generated at Sat May 4 20:37:10 2024 by rpki-client on console-fra.rpki-client.org