$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: aZFknwyPzlVw9+R8KR18LL9v7C3UsgvGgmMZe3Rww9E= Subject key identifier: 73:13:1E:53:9C:B8:E5:90:39:15:9C:69:E9:D6:BF:AD:3D:27:13:A1 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 84 Signing time: Fri 17 May 2024 07:13:22 +0000 Manifest this update: Fri 17 May 2024 07:13:22 +0000 Manifest next update: Fri 24 May 2024 07:13:22 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: WKzc1EsaHjJt2xYO/G5+waOD8HgCEH4YiDiiYcDs1T8=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 9JU91l412hFsZgA1qAbuRoWUbwnNMVvRlNqSzYYXfQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: May 17 07:13:22 2024 GMT Not After : May 24 07:13:22 2024 GMT Subject: CN=66470392-55fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:bd:42:26:63:2b:6e:55:ee:a2:c9:67:44: ad:cd:56:f5:04:69:a4:49:50:1f:e4:fb:77:29:f3: 11:1e:9c:e6:03:b7:6f:5c:b5:f6:bb:a2:33:a3:83: fb:a8:11:b5:eb:81:e1:19:c6:85:13:bb:d8:69:05: b6:e4:4b:80:e5:5a:fe:d7:35:b1:f1:a0:8e:07:a9: f2:8c:a6:96:6a:a6:89:5a:2e:8b:23:d9:1d:93:48: da:e4:09:a1:cf:17:e7:b2:6d:e9:52:bc:22:5a:f7: 26:50:ef:58:14:45:86:3e:c7:9f:7d:78:fc:33:07: 67:08:9d:a6:5d:de:e8:6e:10:49:64:f7:f9:c9:51: 7a:78:4c:b3:e9:f6:79:aa:c6:98:36:e2:a7:aa:4d: 94:82:fb:9b:41:80:f4:22:b1:6a:0a:c1:df:c4:b1: 18:5c:cb:14:d4:af:c6:80:1e:a5:b1:f3:1c:6c:c5: cd:96:e2:4d:35:7b:b4:d2:f3:0e:e7:0d:d0:7b:1d: 85:e0:3d:c6:c3:b5:4a:e7:c0:be:6f:ee:b7:8f:c2: 27:df:a8:b2:12:fa:8d:89:48:38:0b:c7:b2:86:a7: a8:5e:f9:85:a9:d9:e8:ce:d0:57:39:6c:3a:6a:a0: 99:a0:ac:56:20:9b:36:d1:d4:40:65:58:72:50:62: 8e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:13:1E:53:9C:B8:E5:90:39:15:9C:69:E9:D6:BF:AD:3D:27:13:A1 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:aa:07:1c:d4:fa:dc:70:2b:cc:12:2c:c6:77:50:cb:e5:82: 3f:e5:68:72:49:02:74:8f:36:e0:4a:e9:a0:61:a6:74:87:9f: 5e:b8:71:c0:14:e3:70:f5:b2:48:5e:90:7a:71:8a:38:d3:cf: 9b:03:9d:02:c1:c3:55:0b:43:0d:9e:6e:75:0b:7c:8b:b3:c5: da:9f:60:86:f3:e8:a7:da:41:6b:99:e2:f0:cb:41:2d:f6:d2: 07:75:03:74:fe:02:fd:78:fd:11:ed:8f:b7:ec:a0:6d:9b:b4: 02:b5:ce:f0:a2:5a:ff:4b:21:30:25:87:fc:c6:8b:37:21:d7: a8:52:49:32:53:d7:ca:0b:30:72:58:b1:00:09:65:98:fd:4f: b6:05:e0:8c:5c:ce:23:11:9d:8c:ed:4e:62:bb:8d:4c:66:4e: c8:4f:2a:83:2e:f2:b9:9d:88:bc:57:03:6e:62:3c:e2:3b:1f: 2f:75:75:7c:48:10:b1:b7:87:43:d0:bc:14:c8:aa:8a:e2:80: 54:5a:01:87:c3:71:42:fc:13:8b:7e:9d:f3:df:f5:a7:3e:a4: 2c:c3:ac:33:54:61:d2:1d:be:d1:36:54:7d:bb:9c:7d:4f:5e: 25:ef:7c:31:21:9b:7e:d0:45:33:e7:c3:53:56:ec:d1:d6:3b: cf:f8:b0:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjQwNTE3MDcxMzIyWhcNMjQwNTI0MDcxMzIyWjAYMRYwFAYD VQQDEw02NjQ3MDM5Mi01NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqq9QiZjK25V7qLJZ0StzVb1BGmkSVAf5Pt3KfMRHpzmA7dvXLX2u6Izo4P7 qBG164HhGcaFE7vYaQW25EuA5Vr+1zWx8aCOB6nyjKaWaqaJWi6LI9kdk0ja5Amh zxfnsm3pUrwiWvcmUO9YFEWGPseffXj8MwdnCJ2mXd7obhBJZPf5yVF6eEyz6fZ5 qsaYNuKnqk2UgvubQYD0IrFqCsHfxLEYXMsU1K/GgB6lsfMcbMXNluJNNXu00vMO 5w3Qex2F4D3Gw7VK58C+b+63j8In36iyEvqNiUg4C8eyhqeoXvmFqdnoztBXOWw6 aqCZoKxWIJs20dRAZVhyUGKOQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMTHlOc uOWQORWcaenWv609JxOhMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxqgcc1PrccCvMEizGd1DL5YI/5WhySQJ0jzbgSumgYaZ0h59euHHA FONw9bJIXpB6cYo408+bA50CwcNVC0MNnm51C3yLs8Xan2CG8+in2kFrmeLwy0Et 9tIHdQN0/gL9eP0R7Y+37KBtm7QCtc7wolr/SyEwJYf8xos3IdeoUkkyU9fKCzBy WLEACWWY/U+2BeCMXM4jEZ2M7U5iu41MZk7ITyqDLvK5nYi8VwNuYjziOx8vdXV8 SBCxt4dD0LwUyKqK4oBUWgGHw3FC/BOLfp3z3/WnPqQsw6wzVGHSHb7RNlR9u5x9 T14l73wxIZt+0EUz58NTVuzR1jvP+LDo -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org