$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft File: 2o28OwmXQtOr0qiV3RM5iTuaj18.mft (raw, json) Hash identifier: fWuYsY86NI80RbRAvIWDpTIAvMF2dKvLTYQ/RZrQiAw= Subject key identifier: D1:AD:0D:68:E0:70:DB:C0:6F:5D:A4:CE:76:59:E2:C1:AF:22:A3:5A Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0AB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft Manifest number: 3092 Signing time: Mon 06 May 2024 16:03:41 +0000 Manifest this update: Mon 06 May 2024 16:03:41 +0000 Manifest next update: Mon 13 May 2024 16:03:41 +0000 Files and hashes: 1: 2o28OwmXQtOr0qiV3RM5iTuaj18.crl (hash: vxEEJBEDiI6e0NJUGGVDe/RtA9LQDGGlNeipXq+ky2Q=) 2: 0B6054BA851E11EA86E0DF24C4F9AE02.roa (hash: pMAsKsji+HcxirLO71f3m6CRMaBF9E462V6DMiv0eM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: May 6 16:03:41 2024 GMT Not After : May 13 16:03:41 2024 GMT Subject: CN=6638ff5d-3e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:62:d2:48:cf:17:d1:89:0f:a9:f3:80:c8:72: 2e:09:e8:39:f5:1c:06:f6:8d:99:38:7b:89:61:06: e3:b9:68:d6:b1:93:fb:db:f5:99:75:c1:77:3b:22: 5d:f6:9b:10:b8:61:f4:ea:d6:d7:c5:53:bd:62:35: de:73:96:18:00:d5:3a:5f:a5:8c:0d:d6:4d:e6:1c: 42:ec:ef:df:87:83:a3:95:d7:03:67:92:b1:6f:22: a8:69:36:fb:1b:9d:39:84:8d:9c:79:37:7e:a5:ae: 58:4c:eb:03:b3:ab:18:1c:28:73:e4:63:42:2f:1b: e7:24:cb:23:be:4e:9e:a1:9b:10:5e:ff:18:61:a3: b4:55:eb:ee:6e:4d:55:2e:e8:4c:d6:e3:a3:0a:36: 79:51:a1:ea:b1:19:a0:94:96:80:48:a6:41:50:b8: aa:1d:3b:f7:5a:5c:cc:b8:48:02:d6:d6:23:9a:a1: 08:ac:b2:93:c8:73:cd:60:b1:dd:b2:84:aa:c6:2f: bb:0e:81:34:6c:bd:6d:66:6b:e0:ca:f5:35:56:ec: 33:5e:92:11:ff:1a:9e:55:36:07:8d:22:c8:e2:77: d2:95:c9:77:b1:c7:6c:85:f5:5e:07:9e:8b:ef:3c: 69:37:61:f9:80:d1:14:4c:81:43:ae:38:05:0d:c5: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AD:0D:68:E0:70:DB:C0:6F:5D:A4:CE:76:59:E2:C1:AF:22:A3:5A X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:89:7d:8c:85:d1:71:c5:66:64:df:a8:5d:76:31:86:86:b5: 72:79:8c:c5:f7:fd:07:81:eb:29:62:a0:27:63:ec:f1:85:33: f9:cf:5a:c7:e8:2f:bd:62:7a:5d:e6:6e:b3:96:1f:c4:e8:4b: 84:ee:7a:e5:0a:10:5d:f3:ae:64:e0:6e:62:15:ef:32:42:bb: 3b:a9:9b:aa:2b:aa:df:f8:bd:d9:6f:3e:34:ad:6d:4e:3b:c0: d5:66:67:d7:cd:70:aa:44:2b:35:80:a2:ed:77:18:f9:f8:a3: f3:f3:53:1c:58:ed:fd:d9:4f:0c:9d:3c:f7:3f:26:c5:1f:9d: d5:fb:fc:ed:68:ce:02:89:ec:3c:65:1d:03:64:ab:c3:e8:3c: 0d:c2:e6:e6:9b:e5:08:bf:de:bc:e5:48:1c:ce:69:18:0e:94: 6c:6e:8c:88:13:b2:9e:40:1e:94:95:5b:9c:fe:6c:ec:a3:d8: d0:88:fa:16:18:5e:29:9f:1c:16:13:e6:14:9b:ea:e0:1a:36: 10:f4:ac:7e:17:c4:68:a8:51:64:da:66:e7:33:4c:7f:0a:f4: 1e:93:78:87:10:c2:4b:56:d1:20:87:7d:72:35:de:c0:2c:33: d5:17:ec:2f:4d:16:5f:d5:55:b5:bd:0b:4c:6b:2f:1b:e0:e6: bd:2d:48:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjQwNTA2MTYwMzQxWhcNMjQwNTEzMTYwMzQxWjAYMRYwFAYD VQQDEw02NjM4ZmY1ZC0zZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52LSSM8X0YkPqfOAyHIuCeg59RwG9o2ZOHuJYQbjuWjWsZP72/WZdcF3OyJd 9psQuGH06tbXxVO9YjXec5YYANU6X6WMDdZN5hxC7O/fh4OjldcDZ5KxbyKoaTb7 G505hI2ceTd+pa5YTOsDs6sYHChz5GNCLxvnJMsjvk6eoZsQXv8YYaO0Vevubk1V LuhM1uOjCjZ5UaHqsRmglJaASKZBULiqHTv3WlzMuEgC1tYjmqEIrLKTyHPNYLHd soSqxi+7DoE0bL1tZmvgyvU1VuwzXpIR/xqeVTYHjSLI4nfSlcl3scdshfVeB56L 7zxpN2H5gNEUTIFDrjgFDcWDAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGtDWjg cNvAb12kznZZ4sGvIqNaMB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0 T3IwcWlWM1JNNWlUdWFqMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfiX2MhdFxxWZk36hddjGGhrVyeYzF9/0HgespYqAnY+zxhTP5z1rH 6C+9Ynpd5m6zlh/E6EuE7nrlChBd865k4G5iFe8yQrs7qZuqK6rf+L3Zbz40rW1O O8DVZmfXzXCqRCs1gKLtdxj5+KPz81McWO392U8MnTz3PybFH53V+/ztaM4Ciew8 ZR0DZKvD6DwNwubmm+UIv9685UgczmkYDpRsboyIE7KeQB6UlVuc/mzso9jQiPoW GF4pnxwWE+YUm+rgGjYQ9Kx+F8RoqFFk2mbnM0x/CvQek3iHEMJLVtEgh31yNd7A LDPVF+wvTRZf1VW1vQtMay8b4Oa9LUjQ -----END CERTIFICATE-----Generated at Mon May 6 17:42:41 2024 by rpki-client on console-ams.rpki-client.org