$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: mxmsihK8dQzTRwuMrcEwFEzvAQxYKLNOFRH9zTDL7Vw= Subject key identifier: B8:15:E9:89:1E:A1:0F:A6:23:95:5C:53:80:5B:15:41:E3:6D:F8:0A Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 33 Signing time: Fri 17 May 2024 08:28:27 +0000 Manifest this update: Fri 17 May 2024 08:28:27 +0000 Manifest next update: Fri 24 May 2024 08:28:27 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: 838/GsgpnoBsFVbKfBYHJBxDOCaKMIYLoE+azlteRaw=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: jp89TTV8B+141e9uQTYuaE2J8FxHwbPZjEdj0Ee+U6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: May 17 08:28:27 2024 GMT Not After : May 24 08:28:27 2024 GMT Subject: CN=6647152b-4d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:74:a9:ca:6e:37:3f:4a:5e:49:d6:19:95: fc:aa:18:f7:fa:41:c6:d0:f6:d5:16:a0:5c:ae:7a: 45:5e:59:c1:1d:dd:bf:da:04:14:30:52:be:50:55: aa:6e:3b:30:cb:b4:10:5b:7f:41:66:5e:03:8e:54: 5d:cf:02:a2:5c:2a:4d:35:cb:13:5f:b6:bb:68:d2: 9c:7c:e5:93:b3:53:15:b1:99:37:f3:45:e0:39:d2: c6:7f:9a:e0:b5:da:94:5b:14:19:81:a8:76:7c:bf: be:ee:a3:5f:8e:da:e1:4f:74:1e:f8:b9:53:c4:32: cd:73:24:59:06:fe:0e:ed:2c:bd:df:c4:69:f4:99: 5e:59:6e:57:2d:0f:78:6f:8e:8a:82:d2:e4:b9:bc: 16:1a:8f:7b:de:79:02:bb:5a:de:2e:89:6d:23:54: 06:ca:74:ee:3d:d0:ee:91:f5:01:30:26:b2:1b:5e: b6:e5:55:10:f4:9f:d3:46:50:61:30:33:68:d9:c6: 42:e3:45:6e:80:fa:3b:6f:63:f6:5e:46:f7:35:bd: e0:01:3b:57:48:74:0c:2e:0e:d2:e2:f3:dc:27:db: e4:a4:57:34:17:5f:e9:c4:47:28:51:37:6b:83:7b: da:da:dc:aa:6e:ad:06:5a:5b:1a:07:0d:d9:5e:8c: 3c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:15:E9:89:1E:A1:0F:A6:23:95:5C:53:80:5B:15:41:E3:6D:F8:0A X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a1:aa:86:98:c4:34:d4:c4:2d:9e:a4:2b:45:d0:d2:0c:b8: a5:d5:30:b1:4f:b1:51:d8:eb:db:15:11:7f:24:68:2d:85:af: 87:f3:b5:07:18:41:6d:93:3c:63:f6:51:b7:b3:c9:20:99:ef: c8:20:cc:7a:a4:ca:9d:dd:46:f1:e3:07:b0:60:53:9d:71:b7: 30:d8:57:10:90:85:6e:09:99:70:a8:04:92:10:82:58:ff:b9: e5:09:9c:a6:1f:96:df:68:6e:96:2c:eb:2e:b7:35:db:7b:8c: 46:8b:7d:7f:74:70:6d:88:ed:3a:af:b0:b8:0f:87:50:47:08: 15:ca:0c:d1:73:f2:84:c9:7a:5f:5b:af:b1:80:b2:fa:bf:0c: 4c:2c:de:f5:15:0c:8d:e5:39:4e:75:1e:04:d4:27:0b:f6:1b: 8e:72:0b:24:74:d4:98:1a:2c:4e:3b:a7:c2:aa:c4:e5:4c:42: e1:8f:d7:f7:c9:b9:b0:d5:c8:1e:28:33:e8:07:49:b0:51:59: 6f:24:7a:47:b7:e5:fb:12:19:eb:9e:6c:f3:51:4d:62:4a:83: 88:cf:54:f7:e8:f6:28:48:89:aa:c8:40:b6:a0:e3:7d:0f:28: eb:60:8b:5e:99:cd:7b:04:00:88:ee:32:b1:15:c3:96:ed:0a: db:cc:97:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjRFMTExMC8GA1UEBRMoNzBFODg1NTdCMEMwODJDOUIwNkVDRjU5QjhGMjhBNzcw M0E2MzgwMTAeFw0yNDA1MTcwODI4MjdaFw0yNDA1MjQwODI4MjdaMBgxFjAUBgNV BAMTDTY2NDcxNTJiLTRkNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDw3Spym43P0peSdYZlfyqGPf6QcbQ9tUWoFyuekVeWcEd3b/aBBQwUr5QVapu OzDLtBBbf0FmXgOOVF3PAqJcKk01yxNftrto0px85ZOzUxWxmTfzReA50sZ/muC1 2pRbFBmBqHZ8v77uo1+O2uFPdB74uVPEMs1zJFkG/g7tLL3fxGn0mV5ZblctD3hv joqC0uS5vBYaj3veeQK7Wt4uiW0jVAbKdO490O6R9QEwJrIbXrblVRD0n9NGUGEw M2jZxkLjRW6A+jtvY/ZeRvc1veABO1dIdAwuDtLi89wn2+SkVzQXX+nERyhRN2uD e9ra3KpurQZaWxoHDdlejDydAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuBXpiR6h D6YjlVxTgFsVQeNt+AowHwYDVR0jBBgwFoAUcOiFV7DAgsmwbs9ZuPKKdwOmOAEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NEUxLzYyMzFBMDJFQzY3 RDExRUU4NzAyN0IzQUM0RjlBRTAyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9B RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY09pRlY3REFnc213YnM5WnVQS0tkd09tT0FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NEUxLzYyMzFBMDJFQzY3RDExRUU4NzAyN0IzQUM0RjlBRTAyL2NPaUZWN0RBZ3Nt d2JzOVp1UEtLZHdPbU9BRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABWhqoaYxDTUxC2epCtF0NIMuKXVMLFPsVHY69sVEX8kaC2Fr4fztQcY QW2TPGP2UbezySCZ78ggzHqkyp3dRvHjB7BgU51xtzDYVxCQhW4JmXCoBJIQglj/ ueUJnKYflt9obpYs6y63Ndt7jEaLfX90cG2I7TqvsLgPh1BHCBXKDNFz8oTJel9b r7GAsvq/DEws3vUVDI3lOU51HgTUJwv2G45yCyR01JgaLE47p8KqxOVMQuGP1/fJ ubDVyB4oM+gHSbBRWW8keke35fsSGeuebPNRTWJKg4jPVPfo9ihIiarIQLag430P KOtgi16ZzXsEAIjuMrEVw5btCtvMl+8= -----END CERTIFICATE-----Generated at Fri May 17 10:10:50 2024 by rpki-client on console-fra.rpki-client.org