$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: bxT5zVsGWjVPV+T6NsUPCKWBY/8ep7cYaC0L2KkAXmM= Subject key identifier: 09:1F:FC:07:5B:D3:34:D9:BD:86:E1:B2:9F:A6:6B:52:65:3C:B3:49 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 42 Signing time: Tue 21 May 2024 08:04:10 +0000 Manifest this update: Tue 21 May 2024 08:04:09 +0000 Manifest next update: Tue 28 May 2024 08:04:09 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: pTPfaZ7s3Wvu08y6b5bdVEHZVrUJfuRBvVI96tLQRD4=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: fjYAPHA4s/Rf2LjSo+4Fy76ef5b2vC7umeVPpDja6ao=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: QgH9UbyFxRgfxwPE8R8dTFa1nTcHpK3nSt5bOKTmsyI=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: TWqB5CF8LOgfdVjG4hHbcMMRd1nBgFaH7sRD6WMoI/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: May 21 08:04:09 2024 GMT Not After : May 28 08:04:09 2024 GMT Subject: CN=664c557a-f32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f2:ce:70:03:50:7c:f3:c7:0a:11:c8:9d:11: 84:49:22:f7:22:b3:67:e4:0c:10:3c:6b:01:c3:3c: 4c:ea:22:2f:fd:01:5c:65:f1:f0:b2:4d:17:8c:01: cf:be:2e:21:87:3f:27:22:7d:b2:e8:1a:0f:2c:21: 61:2a:21:8c:6d:d0:c7:7d:c0:b8:38:bd:14:27:95: 18:24:57:70:b4:dc:35:cf:57:90:2a:44:00:a8:8b: 38:ed:1e:e6:9f:0c:b3:4e:20:d5:91:dc:e4:48:19: 31:b5:36:37:79:62:f3:c2:9b:4e:3c:90:28:ab:4b: 0a:bf:e6:2e:05:bd:7c:8a:e5:e3:43:40:2a:24:42: f9:7d:30:0e:e2:ad:df:77:08:83:0f:8a:fb:1f:21: ee:8c:bc:69:27:de:cb:94:1f:99:61:b0:56:29:e1: a2:55:f3:f4:c8:c0:5b:63:77:cf:b1:23:77:8a:c9: ef:83:62:09:47:53:82:6f:61:6d:1b:bc:a5:2d:7f: ae:38:7a:2a:e0:7c:a6:e6:64:a2:8f:5a:be:4c:22: 18:f8:17:24:34:55:7a:06:cb:7e:66:47:e8:31:9b: 85:98:bb:8c:01:ff:d0:ae:de:61:5c:2a:fd:54:65: 90:ab:aa:e6:2b:a9:35:2b:3d:51:96:9a:62:aa:32: bb:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1F:FC:07:5B:D3:34:D9:BD:86:E1:B2:9F:A6:6B:52:65:3C:B3:49 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:84:eb:da:d5:93:78:7e:1f:a5:ad:97:c3:41:f6:32:62:a6: 1f:92:0a:4e:18:e4:f2:6f:f4:28:3b:b4:a3:d6:de:ba:88:72: a9:d1:90:01:6f:bc:47:79:be:20:d2:bb:a7:47:21:d2:73:0f: 8b:e8:c2:9b:8b:d8:d4:b5:fd:77:b8:79:eb:7c:b4:0d:73:b5: e1:7e:b2:3f:8a:d7:b5:fa:a3:f0:20:8f:9b:48:e7:ab:08:c9: 57:08:7c:b9:43:de:86:b9:e8:89:46:16:97:12:72:f0:4d:6b: 26:6e:1d:f0:5f:90:08:d8:8d:d7:65:f9:fc:fb:bc:97:38:7f: 6f:64:20:19:61:9d:90:f6:0d:c9:d5:b8:b6:79:9f:fd:ed:18: 54:ea:45:cb:2f:e6:3b:77:71:a1:45:7a:a7:61:2c:67:d3:4a: d9:a0:f6:ad:1b:4d:4d:d8:73:60:2a:b0:9c:a4:3e:02:cc:92: 6f:2c:57:75:ac:28:dd:72:02:42:09:46:c2:ae:51:92:7b:f5: d0:f0:cf:e9:9e:79:fc:8c:5f:52:fb:ec:51:ef:5a:91:0f:78: 57:e6:bc:08:03:86:b6:4e:d2:2c:14:b9:47:b8:c3:20:22:2b: 02:d9:69:29:9f:2a:6c:fb:df:de:c5:63:b1:d1:09:c2:86:22: 6f:ff:71:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzI3NzExMC8GA1UEBRMoRDgzQjkzRTMxRTkzOTkzN0Q4Q0IxNUZFMzlDQTVFNkU4 RkVBRkE5QjAeFw0yNDA1MjEwODA0MDlaFw0yNDA1MjgwODA0MDlaMBgxFjAUBgNV BAMTDTY2NGM1NTdhLWYzMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO8s5wA1B888cKEcidEYRJIvcis2fkDBA8awHDPEzqIi/9AVxl8fCyTReMAc++ LiGHPycifbLoGg8sIWEqIYxt0Md9wLg4vRQnlRgkV3C03DXPV5AqRACoizjtHuaf DLNOINWR3ORIGTG1Njd5YvPCm048kCirSwq/5i4FvXyK5eNDQCokQvl9MA7ird93 CIMPivsfIe6MvGkn3suUH5lhsFYp4aJV8/TIwFtjd8+xI3eKye+DYglHU4JvYW0b vKUtf644eirgfKbmZKKPWr5MIhj4FyQ0VXoGy35mR+gxm4WYu4wB/9Cu3mFcKv1U ZZCrquYrqTUrPVGWmmKqMrvvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCR/8B1vT NNm9huGyn6ZrUmU8s0kwHwYDVR0jBBgwFoAU2DuT4x6TmTfYyxX+Ocpebo/q+psw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Mjc3LzQzQTdFODk0QjU2 MDExRUU5MTFDNUQ0RkM0RjlBRTAyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1w cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkR1VDR4NlRtVGZZeXhYLU9jcGVib19xLXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 Mjc3LzQzQTdFODk0QjU2MDExRUU5MTFDNUQ0RkM0RjlBRTAyLzJEdVQ0eDZUbVRm WXl4WC1PY3BlYm9fcS1wcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFeE69rVk3h+H6Wtl8NB9jJiph+SCk4Y5PJv9Cg7tKPW3rqIcqnRkAFv vEd5viDSu6dHIdJzD4vowpuL2NS1/Xe4eet8tA1zteF+sj+K17X6o/Agj5tI56sI yVcIfLlD3oa56IlGFpcScvBNayZuHfBfkAjYjddl+fz7vJc4f29kIBlhnZD2DcnV uLZ5n/3tGFTqRcsv5jt3caFFeqdhLGfTStmg9q0bTU3Yc2AqsJykPgLMkm8sV3Ws KN1yAkIJRsKuUZJ79dDwz+meefyMX1L77FHvWpEPeFfmvAgDhrZO0iwUuUe4wyAi KwLZaSmfKmz7397FY7HRCcKGIm//cVQ= -----END CERTIFICATE-----Generated at Tue May 21 10:12:51 2024 by rpki-client on console-ams.rpki-client.org