$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: TZ2yLcd+SeooLv6GOULEB1Glzn3BxpLkm3h6DlYFnog= Subject key identifier: E5:94:EA:F7:B3:82:A7:6F:44:08:D8:1B:DC:C6:98:2C:B3:8D:FC:3A Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0988 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0984 Signing time: Sat 04 May 2024 21:07:15 +0000 Manifest this update: Sat 04 May 2024 21:07:14 +0000 Manifest next update: Sat 11 May 2024 21:07:14 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: Nn0BersWywShwUHKOEIfBQVe+HfXY6c1zEgGR8LIYuk=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: y79gFB3ZummCstP+K3lwUJSr3WJLwrcg0J2yDR+hvRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: May 4 21:07:14 2024 GMT Not After : May 11 21:07:14 2024 GMT Subject: CN=6636a382-6495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a9:06:9d:a5:7a:b4:32:9a:4d:b2:40:b7:48: 03:fa:a9:8c:96:6e:80:30:36:36:10:07:4b:d0:d5: 0d:19:ae:13:07:34:7f:b0:bc:67:57:a9:f8:1b:eb: 0b:ae:86:ec:ea:d7:71:7a:41:b1:c5:39:35:ed:1b: 23:b2:b5:7c:ac:84:c4:22:6b:19:39:30:78:89:6d: de:17:38:ba:b9:74:4b:61:97:c6:b4:ef:34:88:6c: c6:3d:25:c3:db:02:d6:ea:ec:15:00:41:c0:23:b8: b8:be:1c:c6:a0:0d:a5:78:bd:2d:45:d7:c4:6b:37: f9:d0:a3:fe:b8:ed:55:85:cf:31:c9:46:f3:29:89: be:6e:2e:76:dd:b5:38:6f:45:01:ed:4c:5e:dd:e0: 58:fb:09:a9:1d:a8:35:0e:91:b6:c9:7f:15:c5:d7: 4d:4c:26:9e:8f:6e:fb:97:05:57:68:80:8d:61:7f: 5f:14:b3:0d:04:2d:ae:2c:e7:36:a8:e0:b4:06:f0: c0:85:87:44:03:ed:a8:da:92:d4:0e:5d:e4:c3:11: f5:a9:95:df:6a:73:3d:dd:dd:de:78:ae:49:ac:1c: 98:23:f7:0e:fc:79:52:26:0a:44:e8:b6:80:e4:f3: a4:49:1f:60:9a:b8:ef:bc:d8:59:1f:5e:66:1d:73: a7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:94:EA:F7:B3:82:A7:6F:44:08:D8:1B:DC:C6:98:2C:B3:8D:FC:3A X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:83:dd:ce:0a:2e:23:23:9a:ae:7f:2b:a1:85:8d:e8:4c:22: 33:59:3e:a9:24:e9:65:89:f5:63:6b:65:c1:2f:7b:dc:a0:fb: a2:cf:be:6c:e5:19:7b:df:44:32:db:a6:f6:28:9d:9b:5b:82: 0d:32:0b:47:89:d3:c2:2a:44:3f:5d:65:c9:af:66:7c:79:66: b0:f6:66:e4:d7:00:0a:a4:30:af:e1:bf:f5:28:a6:8d:cc:98: a7:09:8d:78:98:95:4d:21:f0:82:03:b3:8d:4c:1a:cf:bc:a0: f7:9c:75:31:44:ab:92:f1:65:87:0b:af:6f:9a:77:9c:47:bc: 3f:42:d0:6d:14:21:05:32:11:65:1a:cd:bf:0d:ae:ff:92:09: 68:69:45:a2:63:a8:29:fb:31:07:74:03:45:f7:9f:4b:43:a9: 54:81:11:7b:2f:bc:a4:2f:8d:12:ff:73:b9:14:11:95:31:92: 73:ea:b3:e4:22:52:39:ed:aa:85:75:fa:59:52:6d:8e:07:05: 90:72:c7:74:6b:f0:9b:1f:af:15:e5:57:30:5f:5d:88:6a:fb: 98:6d:87:9e:58:90:d1:68:69:53:03:9f:4e:a2:8e:7a:4a:7d: ed:21:1b:90:3b:db:ee:40:a8:a6:ce:af:61:82:50:10:af:a1: b3:64:44:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjQwNTA0MjEwNzE0WhcNMjQwNTExMjEwNzE0WjAYMRYwFAYD VQQDEw02NjM2YTM4Mi02NDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1akGnaV6tDKaTbJAt0gD+qmMlm6AMDY2EAdL0NUNGa4TBzR/sLxnV6n4G+sL robs6tdxekGxxTk17RsjsrV8rITEImsZOTB4iW3eFzi6uXRLYZfGtO80iGzGPSXD 2wLW6uwVAEHAI7i4vhzGoA2leL0tRdfEazf50KP+uO1Vhc8xyUbzKYm+bi523bU4 b0UB7Uxe3eBY+wmpHag1DpG2yX8VxddNTCaej277lwVXaICNYX9fFLMNBC2uLOc2 qOC0BvDAhYdEA+2o2pLUDl3kwxH1qZXfanM93d3eeK5JrByYI/cO/HlSJgpE6LaA 5POkSR9gmrjvvNhZH15mHXOniwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWU6vez gqdvRAjYG9zGmCyzjfw6MB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+g93OCi4jI5qufyuhhY3oTCIzWT6pJOllifVja2XBL3vcoPuiz75s 5Rl730Qy26b2KJ2bW4INMgtHidPCKkQ/XWXJr2Z8eWaw9mbk1wAKpDCv4b/1KKaN zJinCY14mJVNIfCCA7ONTBrPvKD3nHUxRKuS8WWHC69vmnecR7w/QtBtFCEFMhFl Gs2/Da7/kgloaUWiY6gp+zEHdANF959LQ6lUgRF7L7ykL40S/3O5FBGVMZJz6rPk IlI57aqFdfpZUm2OBwWQcsd0a/CbH68V5VcwX12IavuYbYeeWJDRaGlTA59Ooo56 Sn3tIRuQO9vuQKimzq9hglAQr6GzZERn -----END CERTIFICATE-----Generated at Sun May 5 00:12:25 2024 by rpki-client on console-fra.rpki-client.org