$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: CQI0n0ajI/8QuwIWIcXv6xa3i+DnWbmmw7lGl6LaC7A= Subject key identifier: F0:20:50:CD:8A:C5:28:99:1A:D5:EA:8F:B6:DB:0E:F0:AE:B3:62:21 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 9D Signing time: Fri 17 May 2024 07:07:15 +0000 Manifest this update: Fri 17 May 2024 07:07:14 +0000 Manifest next update: Fri 24 May 2024 07:07:14 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: 3yWatyaE4GkAjghwG0DxJEaQ2gM4UZkk1VfmYegMLuw=) 2: A9CC8E6A3EDA11EEA0B19A82C4F9AE02.roa (hash: S4Khcskw/DdZNCxM5HrO1/1NZZrfI783Z/DCs0lEu7s=) 3: 9BE1CE403EDB11EE9A042084C4F9AE02.roa (hash: n2qnuprc1I4tLHZE96ZiesGr1+yBcn+65flB8xez/O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: May 17 07:07:14 2024 GMT Not After : May 24 07:07:14 2024 GMT Subject: CN=66470223-646e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:34:46:c5:9d:be:73:39:62:01:50:7c:7c: 1b:c4:2e:be:34:ad:a8:98:81:47:e5:a9:86:3d:95: 0a:78:c5:c9:83:dd:b3:5c:e5:24:cd:6e:da:61:3a: df:17:e6:58:ec:0b:a8:a9:42:3b:bb:e2:a2:91:de: d3:38:1f:91:70:ad:dd:41:7c:36:ab:3d:45:48:61: d9:06:37:19:00:a0:50:b3:44:17:a3:d6:dc:20:88: 7d:8c:0d:7a:e7:b2:57:d7:18:6b:5e:3a:97:6f:18: a3:19:cb:2c:f9:44:2e:c5:fe:87:ca:70:09:ea:d5: 0e:a6:c1:20:dc:f5:e6:83:e0:ca:bc:6d:4b:8c:e6: 9a:c3:b8:80:8b:fd:1e:cb:37:ff:df:3d:65:e0:8a: 9d:a9:ce:fe:80:9b:16:d2:d7:2a:73:76:98:72:de: ad:a1:11:cb:24:ce:dc:73:06:2e:3c:cb:9c:10:47: e9:b0:eb:54:50:a7:4a:38:eb:05:3c:6f:98:ff:59: e8:a2:13:e1:f8:63:c7:96:ba:f3:8b:be:61:14:67: 54:dd:d4:62:7e:7b:49:ae:bc:37:28:5e:bd:34:1a: af:df:5f:ee:26:aa:5e:ed:e2:b3:85:3f:5e:c3:91: 67:a4:5f:10:3b:93:6e:96:9d:28:45:ae:25:2a:2b: 3f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:20:50:CD:8A:C5:28:99:1A:D5:EA:8F:B6:DB:0E:F0:AE:B3:62:21 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:46:6a:7a:23:5c:e0:5d:51:d0:71:8f:1a:23:f8:6c:85:d0: 11:c2:e1:a6:7e:7c:b3:62:db:59:5c:97:39:ac:11:d1:eb:67: 6b:33:d3:28:cc:46:38:c2:66:ce:3f:37:48:d5:ab:d7:09:e0: 66:f9:08:9e:8f:26:54:89:af:66:f4:3f:a2:73:66:5b:80:e6: 6c:65:c3:b4:32:37:25:fa:96:ff:07:08:4d:5e:43:5a:43:ca: 38:aa:f1:cf:02:37:83:8c:34:b2:96:4c:2a:83:a1:a0:ed:1a: 4d:1d:fe:03:01:17:86:af:f4:d0:8c:ff:a8:59:82:54:75:a9: 36:81:d3:e2:b4:2e:dc:45:c9:f8:c5:8a:e2:9a:cd:50:55:12: 57:90:31:47:20:4b:77:16:8b:93:c0:f0:85:c1:f4:93:a5:18: 11:1c:b2:8d:8f:6e:bc:8f:39:b5:ff:91:71:7e:fd:70:6d:4f: ef:ec:a7:13:7e:23:0f:7e:48:1b:e6:50:f5:64:dd:d2:d3:bc: 1e:10:be:97:7a:3a:4c:f9:de:0f:ae:24:d5:96:cc:f4:11:e3: f7:62:d5:9d:c7:2a:cc:d4:8c:98:7f:6c:47:92:53:60:d1:56: af:76:07:bd:b0:20:26:da:e9:f8:10:6b:f4:97:2f:0f:5e:74: 43:dd:2f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjQwNTE3MDcwNzE0WhcNMjQwNTI0MDcwNzE0WjAYMRYwFAYD VQQDEw02NjQ3MDIyMy02NDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomc0RsWdvnM5YgFQfHwbxC6+NK2omIFH5amGPZUKeMXJg92zXOUkzW7aYTrf F+ZY7AuoqUI7u+Kikd7TOB+RcK3dQXw2qz1FSGHZBjcZAKBQs0QXo9bcIIh9jA16 57JX1xhrXjqXbxijGcss+UQuxf6HynAJ6tUOpsEg3PXmg+DKvG1LjOaaw7iAi/0e yzf/3z1l4Iqdqc7+gJsW0tcqc3aYct6toRHLJM7ccwYuPMucEEfpsOtUUKdKOOsF PG+Y/1noohPh+GPHlrrzi75hFGdU3dRifntJrrw3KF69NBqv31/uJqpe7eKzhT9e w5FnpF8QO5Nulp0oRa4lKis/qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAgUM2K xSiZGtXqj7bbDvCus2IhMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBRmp6I1zgXVHQcY8aI/hshdARwuGmfnyzYttZXJc5rBHR62drM9Mo zEY4wmbOPzdI1avXCeBm+QiejyZUia9m9D+ic2ZbgOZsZcO0Mjcl+pb/BwhNXkNa Q8o4qvHPAjeDjDSylkwqg6Gg7RpNHf4DAReGr/TQjP+oWYJUdak2gdPitC7cRcn4 xYrims1QVRJXkDFHIEt3FouTwPCFwfSTpRgRHLKNj268jzm1/5Fxfv1wbU/v7KcT fiMPfkgb5lD1ZN3S07weEL6XejpM+d4PriTVlsz0EeP3YtWdxyrM1IyYf2xHklNg 0Vavdge9sCAm2un4EGv0ly8PXnRD3S/p -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org