$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: 4uyUNh4FQAfndYsuOcvAbdoPFUBEm/Zre1JvCbd1UHQ= Subject key identifier: 7F:3A:9F:56:70:AD:C0:4C:43:82:27:4E:08:95:B2:08:4C:B8:61:D8 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 55 Signing time: Fri 17 May 2024 07:56:46 +0000 Manifest this update: Fri 17 May 2024 07:56:46 +0000 Manifest next update: Fri 24 May 2024 07:56:46 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: T48Npsy4tshVOdzWG8NURPW02gzg17H055dc+hGHoPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 17 07:56:46 2024 GMT Not After : May 24 07:56:46 2024 GMT Subject: CN=66470dbe-c6b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bf:83:1d:d3:8f:09:b1:75:00:b8:85:9a:ed: f0:e8:7d:6e:a4:30:e2:a9:30:93:73:c0:11:a1:82: fe:c8:db:e7:bf:24:8d:c7:fc:4d:41:5d:5e:43:6b: 89:36:5b:a3:af:c8:ef:7f:7c:e6:53:a7:d4:46:b3: c9:1b:4a:8b:2c:34:4f:fb:c5:c1:39:46:bf:70:1b: 75:62:b1:ca:e9:54:0a:77:4b:e6:e0:da:a9:f8:89: bc:67:3a:90:5c:4f:42:6c:ce:17:68:f0:2d:01:24: de:d2:22:17:ac:80:ff:5b:03:a8:08:7a:ff:9f:07: 3e:d3:92:d3:f0:f5:c2:65:63:36:07:16:49:e2:93: c0:9b:4a:47:e4:fc:7b:c0:48:92:bf:ec:ad:6c:0b: ce:07:27:4a:ae:d0:7a:68:38:2b:ce:ed:a8:88:c6: 11:13:f0:3c:26:ba:41:83:db:6b:e9:f3:df:d8:3f: 98:3d:a4:7e:57:1f:60:6d:6a:c2:0d:17:e2:67:b8: de:3b:0b:69:12:bb:0c:69:b6:89:e8:f9:68:ca:f3: af:9c:da:2d:76:8e:29:76:df:99:1e:d5:73:95:19: a2:fb:85:21:1f:78:6c:87:8d:47:90:2d:8e:62:bc: 46:7d:dd:3a:da:48:45:63:87:f3:67:b5:52:f0:7a: 4b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3A:9F:56:70:AD:C0:4C:43:82:27:4E:08:95:B2:08:4C:B8:61:D8 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:97:95:c7:89:14:aa:d0:f9:17:52:af:5b:f0:ae:3e:c1:8c: a9:9d:a7:73:e7:60:0c:eb:2e:5e:8f:5c:2b:58:41:d7:8b:ec: e3:e0:fa:1b:fe:36:56:13:71:05:80:7b:0b:f1:4c:da:48:0a: 89:bb:53:1e:91:66:2d:29:f1:65:42:c4:5a:3c:0e:ea:ee:5c: eb:01:a6:1e:d3:91:12:33:7e:3d:a8:3d:e0:6e:b9:b9:20:84: 39:02:e1:18:b1:8f:32:a6:53:7f:35:4d:4d:89:48:b9:0e:c5: 5b:54:d5:2b:38:7f:fe:a0:42:93:c2:66:db:75:34:8b:8d:3f: 28:f3:a8:aa:94:6b:98:91:64:b2:75:11:67:a6:62:b2:7a:7d: 52:31:8e:76:0b:fc:07:06:74:2c:89:3d:59:0d:91:b8:9c:c4: 57:0f:68:55:3a:67:61:e6:ba:27:3d:52:13:b2:4b:c1:a3:0f: 80:70:00:c3:9b:1f:b2:95:2f:bc:d3:4f:71:91:13:f5:9a:d9: 19:9c:5c:56:d3:d4:11:00:fe:b0:29:64:76:29:20:bd:59:ff: f7:1f:3b:24:44:ac:94:9e:94:3d:46:ea:11:9b:17:5b:50:51: 84:cf:d8:40:88:a9:59:bf:15:88:a5:38:f1:52:72:4a:54:40: b8:eb:5d:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzNCNzExMC8GA1UEBRMoMzk4MzdDQjRCRUNBRjZBNjI2QzkxNkFFOTYwMjQxQjYw OUU2QjIwQTAeFw0yNDA1MTcwNzU2NDZaFw0yNDA1MjQwNzU2NDZaMBgxFjAUBgNV BAMTDTY2NDcwZGJlLWM2YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDev4Md048JsXUAuIWa7fDofW6kMOKpMJNzwBGhgv7I2+e/JI3H/E1BXV5Da4k2 W6OvyO9/fOZTp9RGs8kbSossNE/7xcE5Rr9wG3ViscrpVAp3S+bg2qn4ibxnOpBc T0Jszhdo8C0BJN7SIhesgP9bA6gIev+fBz7TktPw9cJlYzYHFknik8CbSkfk/HvA SJK/7K1sC84HJ0qu0HpoOCvO7aiIxhET8DwmukGD22vp89/YP5g9pH5XH2BtasIN F+JnuN47C2kSuwxptono+WjK86+c2i12jil235ke1XOVGaL7hSEfeGyHjUeQLY5i vEZ93TraSEVjh/NntVLwekuHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfzqfVnCt wExDgidOCJWyCEy4YdgwHwYDVR0jBBgwFoAUOYN8tL7K9qYmyRaulgJBtgnmsgow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDM0I3LzE1OUE0QUQwOTMy NTExRUVCRTk4N0Y2MEM0RjlBRTAyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNn by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1lOOHRMN0s5cVlteVJhdWxnSkJ0Z25tc2dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD M0I3LzE1OUE0QUQwOTMyNTExRUVCRTk4N0Y2MEM0RjlBRTAyL09ZTjh0TDdLOXFZ bXlSYXVsZ0pCdGdubXNnby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEmXlceJFKrQ+RdSr1vwrj7BjKmdp3PnYAzrLl6PXCtYQdeL7OPg+hv+ NlYTcQWAewvxTNpICom7Ux6RZi0p8WVCxFo8DuruXOsBph7TkRIzfj2oPeBuubkg hDkC4RixjzKmU381TU2JSLkOxVtU1Ss4f/6gQpPCZtt1NIuNPyjzqKqUa5iRZLJ1 EWemYrJ6fVIxjnYL/AcGdCyJPVkNkbicxFcPaFU6Z2Hmuic9UhOyS8GjD4BwAMOb H7KVL7zTT3GRE/Wa2RmcXFbT1BEA/rApZHYpIL1Z//cfOyRErJSelD1G6hGbF1tQ UYTP2ECIqVm/FYilOPFSckpUQLjrXQU= -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org