$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: cVMGAP5bt8R1BrKEs5OJg+WARcMnwA63ax6uI8Uxyoc= Subject key identifier: 73:EB:6C:F8:97:1E:40:D9:80:9C:D8:C8:F2:89:EE:00:4B:8B:20:35 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0251 Signing time: Wed 01 May 2024 04:12:56 +0000 Manifest this update: Wed 01 May 2024 04:12:56 +0000 Manifest next update: Wed 08 May 2024 04:12:56 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: YxKG9MzaRcKOkG5TVpkUygF2K2FdDVodypadmFw+vG8=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: EVEQSa+Up9OemgYLoMGopLhaTrEyVqB3NyB7fSDBRA8=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: Bf+UprQbki3IQSr2awYhLsQzJMrHFu5rni0qNSgkpr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: May 1 04:12:56 2024 GMT Not After : May 8 04:12:56 2024 GMT Subject: CN=6631c148-9b9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dc:69:43:0b:1c:2f:ca:7a:81:1e:76:d9:f1: 0f:d7:23:11:9f:8d:8b:65:ba:c7:59:bb:c6:9b:ec: 0f:5a:8e:64:e2:d3:b1:e2:64:5c:85:45:cb:84:97: 9d:78:6c:c9:08:d6:91:7a:33:d4:4d:d8:64:de:2a: 46:4d:b1:5d:44:fb:e6:37:89:ed:d7:1a:58:6d:3a: 02:3a:3e:78:fc:d1:7e:c9:08:4b:4a:1c:ac:b8:18: 52:b5:e1:ac:4f:ec:0a:2c:d3:a4:4e:79:db:5c:4f: 01:63:00:c6:44:e8:58:ab:a0:52:54:1b:1d:1c:d5: 64:93:1f:d0:f5:a5:7f:35:55:f7:49:82:28:f2:60: 11:1e:ba:7a:07:54:6e:eb:83:11:fc:7a:f3:24:11: 5c:7a:e0:96:03:e5:97:36:63:2d:44:75:76:1f:4b: 38:73:fe:8f:d7:fe:68:9b:23:67:7a:0e:e7:41:ea: 1f:c1:6c:aa:cb:8e:76:ae:a4:7c:eb:45:c4:26:ef: c5:6d:d2:3e:0d:56:d2:e8:7b:82:94:60:3f:b9:d9: 39:c1:23:b3:aa:d7:50:fc:6f:91:f7:4a:97:6c:d6: 73:67:60:92:84:68:38:d6:a8:82:d4:4f:5b:98:26: 4a:f0:2d:e0:bf:5f:45:ed:ca:3a:55:f1:91:65:e9: af:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EB:6C:F8:97:1E:40:D9:80:9C:D8:C8:F2:89:EE:00:4B:8B:20:35 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:c9:19:06:31:72:7b:8f:80:a6:7e:26:1e:46:ec:f1:5e:5d: ae:9b:29:49:75:c6:60:c8:96:e9:9c:ff:10:d0:70:51:c2:d2: 8f:62:39:31:08:89:c2:6c:dd:21:56:b5:2d:43:b5:ce:2b:07: 61:e9:71:95:c0:36:9d:3b:2e:cd:b4:17:d1:fb:b4:cb:ec:80: 00:e4:94:9b:53:d4:4c:3d:ac:16:74:98:55:6f:8c:9d:97:e6: 49:54:5b:96:15:df:be:64:c0:b0:35:28:4d:8a:bb:7a:08:9a: 04:1c:fa:75:31:58:41:d3:e4:67:5a:5c:48:04:fb:e4:97:1b: 60:ba:0c:1c:61:8f:34:75:bd:69:27:ba:65:4b:ab:c8:54:55: b5:a2:2a:3b:c0:f2:00:83:82:4a:c0:03:2a:5b:2d:42:dd:62: 20:af:30:de:e6:09:62:01:0d:8e:e6:05:30:1c:1e:cf:23:0c: b8:ab:61:e4:6a:1e:7e:31:33:e7:ad:35:a3:7a:03:f7:ff:44: 64:f6:15:48:c6:97:37:7b:a0:8d:4c:91:66:21:ae:dd:3a:5b: 09:5d:19:68:a6:ff:bb:ac:0e:e5:a3:15:a5:2e:05:13:24:01: 22:17:a7:df:9a:22:8a:8f:f5:ef:72:9d:f1:c0:be:49:45:61: 7a:ea:cc:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjQwNTAxMDQxMjU2WhcNMjQwNTA4MDQxMjU2WjAYMRYwFAYD VQQDEw02NjMxYzE0OC05YjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9xpQwscL8p6gR522fEP1yMRn42LZbrHWbvGm+wPWo5k4tOx4mRchUXLhJed eGzJCNaRejPUTdhk3ipGTbFdRPvmN4nt1xpYbToCOj54/NF+yQhLShysuBhSteGs T+wKLNOkTnnbXE8BYwDGROhYq6BSVBsdHNVkkx/Q9aV/NVX3SYIo8mARHrp6B1Ru 64MR/HrzJBFceuCWA+WXNmMtRHV2H0s4c/6P1/5omyNneg7nQeofwWyqy452rqR8 60XEJu/FbdI+DVbS6HuClGA/udk5wSOzqtdQ/G+R90qXbNZzZ2CShGg41qiC1E9b mCZK8C3gv19F7co6VfGRZemvjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPrbPiX HkDZgJzYyPKJ7gBLiyA1MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4yRkGMXJ7j4CmfiYeRuzxXl2umylJdcZgyJbpnP8Q0HBRwtKPYjkx CInCbN0hVrUtQ7XOKwdh6XGVwDadOy7NtBfR+7TL7IAA5JSbU9RMPawWdJhVb4yd l+ZJVFuWFd++ZMCwNShNirt6CJoEHPp1MVhB0+RnWlxIBPvklxtgugwcYY80db1p J7plS6vIVFW1oio7wPIAg4JKwAMqWy1C3WIgrzDe5gliAQ2O5gUwHB7PIwy4q2Hk ah5+MTPnrTWjegP3/0Rk9hVIxpc3e6CNTJFmIa7dOlsJXRlopv+7rA7loxWlLgUT JAEiF6ffmiKKj/Xvcp3xwL5JRWF66sxS -----END CERTIFICATE-----Generated at Wed May 1 05:59:05 2024 by rpki-client on console-fra.rpki-client.org