$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: 36RPiAVhvbHlWtwlVFlHbRgOGliHqMssepB8vVCTcws= Subject key identifier: 03:EB:50:99:67:4A:21:2E:D4:64:C9:DA:12:57:D7:64:D2:33:CE:20 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 091D Signing time: Tue 30 Apr 2024 21:35:17 +0000 Manifest this update: Tue 30 Apr 2024 21:35:16 +0000 Manifest next update: Tue 07 May 2024 21:35:16 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: 5V2kjNM3hvnnUmNJH69kjwWW/hNsh7g3+sdu2TBX69U=) 2: 9B9D6CA0AD4E11EE883EA646C4F9AE02.roa (hash: a3g07aoJRg3ILRzEbLyn7FPYIbNj8GXeXeove5xgZvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Apr 30 21:35:16 2024 GMT Not After : May 7 21:35:16 2024 GMT Subject: CN=66316415-f0da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:69:c1:23:69:cd:74:53:b9:12:29:cd:1b: 93:b2:03:1b:db:5f:be:cc:e5:b8:7e:df:14:31:49: 23:b7:ab:85:3e:71:20:b0:6a:c8:d0:50:82:7a:9c: de:a9:18:ff:c9:f2:fc:61:28:7a:cf:87:aa:30:43: 09:3f:af:9e:87:6f:a9:51:ba:bf:c2:85:7d:34:4e: 84:ee:c3:63:48:ce:4b:7c:f5:f8:47:3f:92:b3:1e: f1:19:fa:61:e1:6a:2a:78:9e:65:d7:22:5f:48:e8: f0:7e:42:e3:30:9f:7c:90:48:58:a3:ee:8f:fa:fe: b9:c9:f3:ad:34:74:a6:15:b9:66:32:55:54:0d:f6: 7d:0a:62:e9:d1:96:e0:d1:5a:07:ed:59:63:ef:b2: 9f:4c:7c:32:b9:70:53:74:5d:be:36:c0:44:0b:ab: b9:92:3d:a7:e8:72:fe:9d:1a:c2:ea:e1:64:49:68: 2f:2b:0e:51:31:7e:19:a9:d7:4b:7c:cb:a6:16:d6: de:4b:24:9a:af:05:47:65:c5:bb:ab:1f:0f:a7:4c: cf:b5:9a:92:88:01:96:41:70:17:36:73:ad:d2:3f: 11:42:2d:d8:8c:28:5e:e3:21:01:ba:ae:69:19:49: 4a:85:95:3b:33:be:e5:05:7f:6e:e2:3f:94:48:85: ce:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EB:50:99:67:4A:21:2E:D4:64:C9:DA:12:57:D7:64:D2:33:CE:20 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e1:c9:fd:95:da:a0:9b:e4:87:a4:de:fb:b6:04:27:2e:50: b5:de:6c:2c:79:98:dc:50:32:7c:77:49:be:0d:d6:e0:38:79: b9:20:2b:f9:1d:31:21:34:b8:a5:9c:99:6c:5e:e8:84:c4:58: e8:ba:7b:27:55:c0:81:21:f5:b4:71:58:7c:a8:ee:a2:99:68: 47:4a:51:36:b6:77:de:f5:4b:f4:43:9c:42:20:da:68:32:a1: c0:09:15:86:37:f1:df:ce:67:ea:69:26:60:68:f1:33:2d:0e: 2e:73:dd:96:fc:ea:d8:16:ae:de:5a:f2:6f:5d:5b:c2:5c:75: 3c:e7:79:64:b6:6c:eb:3f:60:b5:c8:fa:1b:dd:c7:fd:4c:ca: 86:01:fb:79:b9:99:b9:06:75:d1:04:c8:fb:4c:44:83:0b:7c: 87:75:e3:91:88:54:f0:c8:19:13:f9:ba:a8:66:31:9a:11:a1: 71:99:a5:3a:1d:e9:93:05:5f:39:28:8e:ad:e2:16:82:46:68: fc:42:b5:24:96:79:a7:37:75:a3:ae:1f:4c:fd:2c:0d:9c:97: bc:75:dd:97:91:65:84:51:6d:71:40:c9:29:8e:c1:63:b0:6c: 68:48:31:09:a9:54:80:bc:0b:00:8e:64:22:db:e5:78:75:47: fc:95:e9:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjQwNDMwMjEzNTE2WhcNMjQwNTA3MjEzNTE2WjAYMRYwFAYD VQQDEw02NjMxNjQxNS1mMGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmlpwSNpzXRTuRIpzRuTsgMb21++zOW4ft8UMUkjt6uFPnEgsGrI0FCCepze qRj/yfL8YSh6z4eqMEMJP6+eh2+pUbq/woV9NE6E7sNjSM5LfPX4Rz+Ssx7xGfph 4WoqeJ5l1yJfSOjwfkLjMJ98kEhYo+6P+v65yfOtNHSmFblmMlVUDfZ9CmLp0Zbg 0VoH7Vlj77KfTHwyuXBTdF2+NsBEC6u5kj2n6HL+nRrC6uFkSWgvKw5RMX4ZqddL fMumFtbeSySarwVHZcW7qx8Pp0zPtZqSiAGWQXAXNnOt0j8RQi3YjChe4yEBuq5p GUlKhZU7M77lBX9u4j+USIXOSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPrUJln SiEu1GTJ2hJX12TSM84gMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj4cn9ldqgm+SHpN77tgQnLlC13mwseZjcUDJ8d0m+DdbgOHm5ICv5 HTEhNLilnJlsXuiExFjounsnVcCBIfW0cVh8qO6imWhHSlE2tnfe9Uv0Q5xCINpo MqHACRWGN/HfzmfqaSZgaPEzLQ4uc92W/OrYFq7eWvJvXVvCXHU853lktmzrP2C1 yPob3cf9TMqGAft5uZm5BnXRBMj7TESDC3yHdeORiFTwyBkT+bqoZjGaEaFxmaU6 HemTBV85KI6t4haCRmj8QrUklnmnN3Wjrh9M/SwNnJe8dd2XkWWEUW1xQMkpjsFj sGxoSDEJqVSAvAsAjmQi2+V4dUf8lenD -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:16 2024 by rpki-client on console-fra.rpki-client.org