$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: bn58d7Kr6w0krx6f11p6h15luyV+yHl6qmsGaAeYfNk= Subject key identifier: E8:AD:36:C1:48:9A:79:AF:F5:AB:2B:68:8D:77:E7:07:01:90:10:5F Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0A1C Signing time: Sun 28 Apr 2024 20:35:12 +0000 Manifest this update: Sun 28 Apr 2024 20:35:11 +0000 Manifest next update: Sun 05 May 2024 20:35:11 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: 5yyWjdUxW2l9TV9SFF+6yxRnjGhE/Bt4hw5u58zobII=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: cYqevdGEQNUI+tqiOOupeUJHH2ci29RPMSLOld+zvmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 18:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Apr 28 20:35:11 2024 GMT Not After : May 5 20:35:11 2024 GMT Subject: CN=662eb2ff-e502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:49:e3:9a:24:11:dd:d9:dd:80:e1:64:79:0f: 37:7e:16:88:36:e0:ef:db:12:18:8b:1c:0e:42:4f: d2:98:1e:fe:d0:60:cc:dc:14:17:07:4d:47:eb:71: 51:10:1c:1a:61:05:66:7d:de:e5:f8:5d:ed:df:80: d4:17:d0:fa:2c:95:90:de:3e:4d:8f:63:28:1a:fe: f7:3e:a0:2e:ae:fc:4f:27:65:05:03:bb:04:de:bf: da:c6:2f:02:1d:bc:23:8b:dc:17:f9:e0:1b:e4:3f: 55:00:3e:82:3a:ed:3d:e5:87:26:15:b9:37:b7:f1: ac:92:df:e6:35:e0:13:07:49:8b:d2:93:8a:19:91: d9:9e:3d:53:b8:d4:b8:19:64:f5:b2:1e:54:ba:96: ff:ae:24:00:a8:b4:dc:e5:7e:77:0c:fe:86:93:2f: d7:da:fc:86:c1:bc:1c:ce:4d:d3:92:84:65:15:a4: 57:a7:37:01:14:4a:f5:f4:c5:f1:e5:35:dc:70:e5: 36:3a:85:8c:da:bc:1e:69:5a:3c:ee:57:2f:e6:41: fd:5b:b1:94:f2:ac:2c:b8:d0:64:16:d6:a3:45:3e: 1b:92:df:0e:2e:b2:8a:b5:d9:f6:98:28:d7:9a:4d: b0:ed:94:b5:9f:9b:58:a7:df:60:6a:41:e6:f0:c0: f8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AD:36:C1:48:9A:79:AF:F5:AB:2B:68:8D:77:E7:07:01:90:10:5F X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:62:4d:b1:79:af:65:a0:ed:80:d9:38:02:6b:88:e4:5f:54: 85:46:aa:38:50:61:23:b1:a9:18:e5:9a:37:ce:3e:05:aa:2f: 49:e3:54:67:f4:c6:fd:02:3e:e1:b9:0a:1c:81:5d:ae:38:3e: ae:57:75:0a:f4:4b:63:7b:a6:5d:d0:ee:f3:5f:eb:10:9a:56: 98:f6:0c:56:15:32:14:1f:06:16:97:41:4a:c0:24:19:72:3c: 13:bc:22:84:89:d4:84:96:96:77:4a:27:8d:5a:aa:fe:ad:8e: 75:e0:cf:7c:cf:75:38:28:f7:e8:95:ca:48:50:34:6f:8e:5e: 64:7a:33:c9:8b:e4:c3:f2:12:66:2e:b5:57:a7:70:85:49:e7: c7:33:10:49:ec:8a:80:23:b2:16:66:9e:1f:3a:5d:3f:20:f4: 6d:c2:28:c5:1a:3e:54:f7:35:54:9c:46:13:03:82:29:2f:0a: f5:2d:c2:47:62:81:25:33:72:3a:fa:02:f1:ae:96:7d:7a:7c: 30:28:42:9c:02:5d:82:14:98:e7:bb:de:a5:03:88:17:05:0f: 23:89:76:6f:9b:67:b2:21:49:1e:22:ab:d5:16:4d:b1:51:ef: 12:ef:e5:8f:61:c3:98:eb:f7:b0:05:f2:39:8b:c9:20:a5:e4: 66:d2:9c:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjQwNDI4MjAzNTExWhcNMjQwNTA1MjAzNTExWjAYMRYwFAYD VQQDEw02NjJlYjJmZi1lNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1knjmiQR3dndgOFkeQ83fhaINuDv2xIYixwOQk/SmB7+0GDM3BQXB01H63FR EBwaYQVmfd7l+F3t34DUF9D6LJWQ3j5Nj2MoGv73PqAurvxPJ2UFA7sE3r/axi8C Hbwji9wX+eAb5D9VAD6COu095YcmFbk3t/Gskt/mNeATB0mL0pOKGZHZnj1TuNS4 GWT1sh5Uupb/riQAqLTc5X53DP6Gky/X2vyGwbwczk3TkoRlFaRXpzcBFEr19MXx 5TXccOU2OoWM2rweaVo87lcv5kH9W7GU8qwsuNBkFtajRT4bkt8OLrKKtdn2mCjX mk2w7ZS1n5tYp99gakHm8MD4yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOitNsFI mnmv9asraI135wcBkBBfMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgYk2xea9loO2A2TgCa4jkX1SFRqo4UGEjsakY5Zo3zj4Fqi9J41Rn 9Mb9Aj7huQocgV2uOD6uV3UK9Etje6Zd0O7zX+sQmlaY9gxWFTIUHwYWl0FKwCQZ cjwTvCKEidSElpZ3SieNWqr+rY514M98z3U4KPfolcpIUDRvjl5kejPJi+TD8hJm LrVXp3CFSefHMxBJ7IqAI7IWZp4fOl0/IPRtwijFGj5U9zVUnEYTA4IpLwr1LcJH YoElM3I6+gLxrpZ9enwwKEKcAl2CFJjnu96lA4gXBQ8jiXZvm2eyIUkeIqvVFk2x Ue8S7+WPYcOY6/ewBfI5i8kgpeRm0pwR -----END CERTIFICATE-----Generated at Sun Apr 28 21:21:19 2024 by rpki-client on console-fra.rpki-client.org