$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: po375ENnVYf89ObaptdoTiteNOxB2PnRQRzcNuXGnWM= Subject key identifier: BE:5D:DE:BA:71:E2:F6:F6:18:3A:27:52:4E:55:28:C6:EF:A5:6E:AD Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0269 Signing time: Sun 05 May 2024 03:56:08 +0000 Manifest this update: Sun 05 May 2024 03:56:07 +0000 Manifest next update: Sun 12 May 2024 03:56:07 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: YkX67zyevXgC6U3dcAFKEMRr01g2SQ7UUxocn2FegUM=) 2: 5E979F10C6C811ECA5A9AB33C4F9AE02.roa (hash: 2oNtG1b4LEj9Ar/CvPED23Bq+nlZcu0GEopkiLj8JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: May 5 03:56:07 2024 GMT Not After : May 12 03:56:07 2024 GMT Subject: CN=66370358-884a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:00:90:26:ad:2f:5d:74:e3:ac:66:9e:40:35: e7:29:1b:b4:24:53:ce:a6:3d:10:38:4d:c5:a0:17: c4:b5:6c:cf:40:1f:2c:e9:da:dc:c5:be:1c:72:00: c8:7b:be:e8:aa:be:9c:75:04:39:01:ea:b4:50:c5: c0:3c:c3:3a:d1:70:94:13:d0:e2:b3:81:ae:9a:eb: db:fd:18:22:45:ed:29:be:bb:77:4d:d9:34:f2:1a: 3c:b3:ad:c1:83:49:39:08:8b:1e:78:45:58:6b:4c: 32:ae:e7:c6:13:4a:95:d8:e6:98:89:c4:98:27:7d: bd:86:29:10:c8:62:2f:20:17:b9:71:ef:81:c7:f7: 85:f1:f9:a1:cb:56:45:36:cc:08:0a:d0:ef:bf:74: 09:31:69:1b:82:ed:06:2b:46:15:d7:39:dd:1f:e0: f0:de:18:85:73:96:b9:14:50:6f:aa:6e:64:f5:16: b7:44:92:92:35:37:19:af:67:50:43:73:6a:4a:b5: a9:3f:bc:21:54:c7:f9:25:9e:a6:c4:fd:e0:4f:ab: 6e:1c:2e:70:db:c4:34:5e:fe:08:31:cc:32:ca:02: f7:c9:f2:c7:00:47:e8:dc:bb:a9:75:67:62:2c:76: 94:87:29:fa:88:a1:59:1d:cd:7d:b8:8e:33:9c:05: d3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5D:DE:BA:71:E2:F6:F6:18:3A:27:52:4E:55:28:C6:EF:A5:6E:AD X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:53:90:06:4c:f4:82:4f:54:87:c2:19:38:17:17:8a:4f:5b: 04:88:bc:2a:2b:01:7b:7a:75:9b:b4:b1:13:0a:cc:a3:1b:a3: 73:ee:10:18:9d:bc:58:1d:c3:bb:67:ae:1b:f6:ab:5e:c3:53: 3f:39:bc:7c:7e:c3:1d:42:83:ac:17:20:61:45:71:d2:c1:98: 98:61:c4:d3:dd:be:12:bd:58:78:2d:f6:36:a7:87:75:32:09: f2:05:93:e1:65:23:84:16:ad:4f:83:42:a9:f8:61:08:6b:db: c4:84:a5:83:3a:1d:c4:ec:c8:e8:7a:da:7e:3d:39:a0:e8:88: fd:78:9c:8d:d3:b7:24:a5:99:c7:e7:e3:f3:6b:70:5d:c1:20: 07:4c:72:88:1b:61:6c:4d:8e:fb:98:cb:03:db:d6:37:f4:8c: e7:27:35:d0:b3:bf:de:78:41:56:e8:43:6a:10:36:3d:94:00: 3d:25:57:01:1a:16:01:a5:bf:1b:5d:2e:73:95:18:21:dd:04: 72:d5:bb:64:0b:80:fb:1d:2a:f4:ad:64:11:49:a6:16:cf:6d: 03:95:07:f1:75:db:bc:1f:7a:9c:87:c0:6d:60:d2:9a:3d:ed: f5:86:f9:63:4c:58:f2:d7:66:cd:de:e7:b5:4b:ea:ec:88:8b: 54:e0:4a:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjQwNTA1MDM1NjA3WhcNMjQwNTEyMDM1NjA3WjAYMRYwFAYD VQQDEw02NjM3MDM1OC04ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gCQJq0vXXTjrGaeQDXnKRu0JFPOpj0QOE3FoBfEtWzPQB8s6drcxb4ccgDI e77oqr6cdQQ5Aeq0UMXAPMM60XCUE9Dis4Gumuvb/RgiRe0pvrt3Tdk08ho8s63B g0k5CIseeEVYa0wyrufGE0qV2OaYicSYJ329hikQyGIvIBe5ce+Bx/eF8fmhy1ZF NswICtDvv3QJMWkbgu0GK0YV1zndH+Dw3hiFc5a5FFBvqm5k9Ra3RJKSNTcZr2dQ Q3NqSrWpP7whVMf5JZ6mxP3gT6tuHC5w28Q0Xv4IMcwyygL3yfLHAEfo3LupdWdi LHaUhyn6iKFZHc19uI4znAXTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5d3rpx 4vb2GDonUk5VKMbvpW6tMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWU5AGTPSCT1SHwhk4FxeKT1sEiLwqKwF7enWbtLETCsyjG6Nz7hAY nbxYHcO7Z64b9qtew1M/Obx8fsMdQoOsFyBhRXHSwZiYYcTT3b4SvVh4LfY2p4d1 MgnyBZPhZSOEFq1Pg0Kp+GEIa9vEhKWDOh3E7Mjoetp+PTmg6Ij9eJyN07ckpZnH 5+Pza3BdwSAHTHKIG2FsTY77mMsD29Y39IznJzXQs7/eeEFW6ENqEDY9lAA9JVcB GhYBpb8bXS5zlRgh3QRy1btkC4D7HSr0rWQRSaYWz20DlQfxddu8H3qch8BtYNKa Pe31hvljTFjy12bN3ue1S+rsiItU4Eqs -----END CERTIFICATE-----Generated at Sun May 5 04:39:59 2024 by rpki-client on console-ams.rpki-client.org