$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: G9UAVYUQaosrjqK8sfxI/0kEZLPF+/LA5Ggy0ytEyHk= Subject key identifier: 5E:25:6E:8A:FA:DF:3C:C9:82:57:AB:9D:DE:02:01:2D:72:8F:57:00 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 6C Signing time: Wed 15 May 2024 07:34:54 +0000 Manifest this update: Wed 15 May 2024 07:34:54 +0000 Manifest next update: Wed 22 May 2024 07:34:54 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: zXoSudf3osUsl1gVC5e6VvQfefjQgI6NXLnqPk1Ucqg=) 2: 8CB011646DAE11EE809B1717C4F9AE02.roa (hash: rgSFqdLyx15HASP0FdZAWkfSNryT0iBC4HGltEel0XI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: May 15 07:34:54 2024 GMT Not After : May 22 07:34:54 2024 GMT Subject: CN=6644659e-7a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:8f:80:1a:1d:e6:52:9c:3f:04:19:d6:89: 93:d2:cf:ea:23:49:19:ff:55:ee:0d:66:50:43:bc: d3:82:4a:09:2e:f9:df:c9:96:5e:de:5c:d1:c6:d3: fb:8e:f5:b2:ca:60:21:a7:14:da:6f:0f:db:00:f6: 60:3f:26:2e:56:28:8b:bf:49:51:29:44:82:0d:b4: e1:2a:64:f5:99:c7:ce:19:40:58:72:95:da:e9:aa: 31:59:ce:41:c2:ed:71:83:c2:9d:64:4d:fc:1c:25: 08:d2:90:e9:b1:4d:3a:36:76:e4:7c:bc:9a:46:bf: cf:39:43:6b:75:04:3c:37:ea:f2:82:5e:e9:04:b1: 24:b3:ff:16:cf:ef:80:cb:cf:9d:23:ed:f2:28:cb: 50:4c:8f:50:27:de:df:95:b7:e3:82:f5:30:eb:65: ea:70:b2:25:57:74:60:a7:19:d3:d6:0f:6c:47:84: d8:88:5b:04:d2:1b:3f:6e:a5:27:7f:37:dc:54:f2: 37:52:08:d5:3a:a9:aa:4c:76:28:fc:ed:90:b5:bc: 4b:9f:1c:ff:1a:98:3f:1e:93:c1:28:e6:64:2f:ab: fe:71:75:04:bc:e2:55:9c:11:1e:a1:d7:09:6c:57: c3:f1:f4:a0:f3:04:2c:dd:10:01:12:ac:90:8d:d6: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:25:6E:8A:FA:DF:3C:C9:82:57:AB:9D:DE:02:01:2D:72:8F:57:00 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:44:75:cf:09:65:73:aa:c8:ef:8d:e1:d8:88:8b:74:fe:b9: 67:76:30:88:42:cd:99:c6:38:fe:17:f6:03:7e:ee:46:84:ed: 0a:83:bc:81:fe:83:75:af:54:93:d0:81:54:ff:cd:54:f9:eb: 46:e2:7f:50:a1:5a:fc:39:3d:03:e8:27:09:c8:1d:93:e2:a1: 47:21:c4:f0:97:5c:8a:1e:ec:8e:c9:f4:b5:39:c3:8b:0b:2f: 44:f9:cb:c3:bf:32:31:86:f9:87:44:45:00:3f:d7:43:b3:13: ac:0d:61:a9:31:f6:ed:f8:4d:86:82:a4:dd:53:28:62:b1:c2: dd:33:04:6c:2f:e1:c8:e1:9f:6a:c6:3c:53:ad:ea:0b:fb:39: 05:33:af:ac:44:4e:eb:b9:09:1c:a6:7a:91:d1:34:a1:cf:e1: 88:6b:37:28:68:1d:67:ef:d2:9d:c4:9b:81:8c:a8:08:45:f7: c2:f9:51:9a:58:2d:b6:3e:a2:59:45:b8:56:ad:1c:8d:49:b2: 50:a3:8b:84:14:eb:c5:0d:f4:f1:ee:23:64:70:67:7e:b8:91: 93:8a:a5:66:7c:47:32:bb:52:f5:00:94:20:00:f0:c6:6f:55: b9:0d:e2:a7:3b:b8:38:23:64:6f:4c:6b:38:9f:f8:e9:6f:55: d1:ea:4d:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjA0QjExMC8GA1UEBRMoQTE0QkRBQTMxNTc2QTYzNjdBMEI1QzNBQ0FCOTFDNEU5 RjMxMThFRjAeFw0yNDA1MTUwNzM0NTRaFw0yNDA1MjIwNzM0NTRaMBgxFjAUBgNV BAMTDTY2NDQ2NTllLTdhMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3Ao+AGh3mUpw/BBnWiZPSz+ojSRn/Ve4NZlBDvNOCSgku+d/Jll7eXNHG0/uO 9bLKYCGnFNpvD9sA9mA/Ji5WKIu/SVEpRIINtOEqZPWZx84ZQFhyldrpqjFZzkHC 7XGDwp1kTfwcJQjSkOmxTTo2duR8vJpGv885Q2t1BDw36vKCXukEsSSz/xbP74DL z50j7fIoy1BMj1An3t+Vt+OC9TDrZepwsiVXdGCnGdPWD2xHhNiIWwTSGz9upSd/ N9xU8jdSCNU6qapMdij87ZC1vEufHP8amD8ek8Eo5mQvq/5xdQS84lWcER6h1wls V8Px9KDzBCzdEAESrJCN1sgdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXiVuivrf PMmCV6ud3gIBLXKPVwAwHwYDVR0jBBgwFoAUoUvaoxV2pjZ6C1w6yrkcTp8xGO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2MDRCLzQxQzAxMzVDNkRB RTExRUVBODBEMDU3NEM0RjlBRTAyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1V2YW94VjJwalo2QzF3Nnlya2NUcDh4R084LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 MDRCLzQxQzAxMzVDNkRBRTExRUVBODBEMDU3NEM0RjlBRTAyL29VdmFveFYycGpa NkMxdzZ5cmtjVHA4eEdPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZEdc8JZXOqyO+N4diIi3T+uWd2MIhCzZnGOP4X9gN+7kaE7QqDvIH+ g3WvVJPQgVT/zVT560bif1ChWvw5PQPoJwnIHZPioUchxPCXXIoe7I7J9LU5w4sL L0T5y8O/MjGG+YdERQA/10OzE6wNYakx9u34TYaCpN1TKGKxwt0zBGwv4cjhn2rG PFOt6gv7OQUzr6xETuu5CRymepHRNKHP4YhrNyhoHWfv0p3Em4GMqAhF98L5UZpY LbY+ollFuFatHI1JslCji4QU68UN9PHuI2RwZ364kZOKpWZ8RzK7UvUAlCAA8MZv VbkN4qc7uDgjZG9Mazif+OlvVdHqTas= -----END CERTIFICATE-----Generated at Wed May 15 09:27:34 2024 by rpki-client on console-fra.rpki-client.org