$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: ii+8JkKs/6K626hDfqRiCS0yhkpfkSHZgMVqaAxb8FY= Subject key identifier: 28:25:CD:FF:44:2D:1C:BE:3C:3D:8A:A7:F8:F1:3E:99:AE:16:8E:C2 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 090C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 08FC Signing time: Tue 30 Apr 2024 21:39:51 +0000 Manifest this update: Tue 30 Apr 2024 21:39:50 +0000 Manifest next update: Tue 07 May 2024 21:39:50 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: YTqWvcHq3+Jd25v5YXPuoezd8KUnNUQXq6ul6xKR74U=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: edRF5NmnUhALz+kYtW9yGNAWlG19b9huZPqLRyT0OOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Apr 30 21:39:50 2024 GMT Not After : May 7 21:39:50 2024 GMT Subject: CN=66316526-54fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:20:bc:53:44:af:a4:3f:ca:62:10:2b:a1:83: 8f:58:67:66:12:a0:f0:1f:ad:cb:8f:63:86:a8:e9: 0d:0e:0d:8c:ae:9b:d8:89:f1:5f:e0:23:fc:7a:2a: 03:1f:23:fb:09:2a:ee:53:b6:82:cb:a1:12:18:0a: 97:3e:1c:c1:b8:25:50:83:3f:fc:7d:c5:7c:07:6e: 37:a0:a6:1e:36:92:de:60:89:05:a6:79:b7:27:79: ab:60:7e:40:0c:42:7e:54:21:9d:ee:63:76:6b:be: 5a:2c:8f:69:8a:8b:3c:95:8f:6e:34:d7:29:5d:41: 63:a6:59:84:52:ac:0e:b0:37:34:f8:1f:33:40:52: d3:f7:3a:44:0c:93:34:ea:1a:7b:0b:b9:c9:8d:11: 9f:f5:ee:d3:e0:43:cf:3a:21:bb:83:9b:82:9f:9c: 80:c6:f6:89:e8:f9:fb:71:67:0c:ec:4c:56:b8:eb: 3b:d6:ee:59:16:74:08:a4:a5:a7:5d:41:9d:49:1d: 5c:07:07:6d:6b:ab:99:2e:46:c7:51:c6:5d:1f:25: ca:6d:8e:fe:e8:48:02:54:d2:57:9f:e8:36:6e:ec: a6:38:3b:35:11:f3:d9:2b:27:75:ea:5c:e3:35:56: 26:cb:15:4e:65:bd:6f:7e:ab:00:d4:2e:7c:fe:69: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:25:CD:FF:44:2D:1C:BE:3C:3D:8A:A7:F8:F1:3E:99:AE:16:8E:C2 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:70:4d:67:84:7a:ea:ee:dd:ec:08:c4:16:97:e2:39:a6:5d: 21:b0:7a:3a:26:ee:81:2a:4c:26:b3:d7:1e:d9:fb:df:ef:0a: ae:62:dd:f8:7e:a1:36:ac:22:a2:24:24:28:54:3d:9e:31:29: 4f:2a:fc:e6:ac:6a:38:0c:f6:7c:77:9f:8f:d7:85:22:d6:91: 84:32:95:cd:c1:90:0b:b9:00:16:4e:9b:48:b2:8f:3b:75:1e: 2f:73:94:05:5a:5f:65:c1:6c:ea:f2:cb:a4:90:fd:2e:5d:0a: 9c:62:f8:66:90:69:ee:af:2f:89:51:f8:b8:8c:28:5a:cb:73: 87:12:af:ab:5d:6c:92:34:5d:d4:77:85:cf:b7:cb:5e:c7:00: 86:b8:0f:70:5c:39:dc:6f:d3:05:1f:53:19:77:38:1d:9e:e0: 19:6d:c1:cd:15:2a:9d:7c:27:e2:07:00:38:75:54:ea:8f:37: bb:27:b6:ad:d8:0b:46:f2:93:c1:9f:fc:8a:64:9c:17:3e:98: 89:a8:38:f0:c0:0f:94:6a:cf:4a:00:f1:5d:59:e3:48:71:b7: 9b:da:3a:67:3d:a0:ff:00:c8:e8:9e:2e:ba:d8:d9:f6:71:8a: fe:63:7d:9c:7c:53:a5:73:a4:13:f9:5b:10:5c:cd:67:5c:b2: 77:d7:76:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjQwNDMwMjEzOTUwWhcNMjQwNTA3MjEzOTUwWjAYMRYwFAYD VQQDEw02NjMxNjUyNi01NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyC8U0SvpD/KYhAroYOPWGdmEqDwH63Lj2OGqOkNDg2MrpvYifFf4CP8eioD HyP7CSruU7aCy6ESGAqXPhzBuCVQgz/8fcV8B243oKYeNpLeYIkFpnm3J3mrYH5A DEJ+VCGd7mN2a75aLI9pios8lY9uNNcpXUFjplmEUqwOsDc0+B8zQFLT9zpEDJM0 6hp7C7nJjRGf9e7T4EPPOiG7g5uCn5yAxvaJ6Pn7cWcM7ExWuOs71u5ZFnQIpKWn XUGdSR1cBwdta6uZLkbHUcZdHyXKbY7+6EgCVNJXn+g2buymODs1EfPZKyd16lzj NVYmyxVOZb1vfqsA1C58/mkn+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCglzf9E LRy+PD2Kp/jxPpmuFo7CMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1cE1nhHrq7t3sCMQWl+I5pl0hsHo6Ju6BKkwms9ce2fvf7wquYt34 fqE2rCKiJCQoVD2eMSlPKvzmrGo4DPZ8d5+P14Ui1pGEMpXNwZALuQAWTptIso87 dR4vc5QFWl9lwWzq8sukkP0uXQqcYvhmkGnury+JUfi4jChay3OHEq+rXWySNF3U d4XPt8texwCGuA9wXDncb9MFH1MZdzgdnuAZbcHNFSqdfCfiBwA4dVTqjze7J7at 2AtG8pPBn/yKZJwXPpiJqDjwwA+Uas9KAPFdWeNIcbeb2jpnPaD/AMjoni662Nn2 cYr+Y32cfFOlc6QT+VsQXM1nXLJ313ZX -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:07 2024 by rpki-client on console-ams.rpki-client.org