$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: kHDwavJS8agr0QzC3dNSL6ZUiNOjBx4UDw2h36M7la4= Subject key identifier: 8F:1C:57:8F:C1:0A:26:7A:35:28:AF:DB:4C:85:B5:0C:60:5C:C9:A1 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 076A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0758 Signing time: Thu 02 May 2024 22:29:20 +0000 Manifest this update: Thu 02 May 2024 22:29:19 +0000 Manifest next update: Thu 09 May 2024 22:29:19 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: vpFw9kesSFpur76Iw8RC9m2YTmCRhQFOXq8LfU4ZYQY=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Q1BzyslOLkek7OFJ4yZ5WF5DVkAdzFXRft9/gNTOUEs=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: nBra0VJ6DwIYf0f+y2ZdV2RIjes5Tm3e/r0d+WcWDnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: May 2 22:29:19 2024 GMT Not After : May 9 22:29:19 2024 GMT Subject: CN=663413c0-0bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7f:8b:c3:44:15:c9:c8:da:51:cd:e9:58:87: 16:ee:e9:3c:5a:e2:a9:47:b5:ce:24:59:3e:ea:25: 4f:08:88:90:4a:b2:21:ee:0e:d3:e4:c9:69:6e:69: 46:eb:7e:83:ae:b2:68:46:65:39:02:82:bc:c0:30: 05:94:71:01:c7:f9:49:34:8a:e1:8f:08:a1:de:4f: b4:ca:5d:ae:b3:3f:aa:25:a5:52:d4:ee:15:d0:a6: 14:b6:32:60:6c:30:37:7f:3d:d4:1b:01:7e:88:b6: 22:dc:06:65:44:0f:24:be:6a:cf:d9:dc:cc:53:4c: 6c:45:24:fd:6c:e6:b8:06:20:7e:ca:60:6d:c4:d0: b7:69:ef:50:ce:6f:eb:27:20:07:82:f5:f1:eb:84: 17:36:59:86:be:72:b5:4d:ee:5b:55:be:fb:71:49: d1:cf:54:f1:a6:5b:72:18:c9:95:e1:7a:45:0d:1a: ea:da:ca:f6:ff:1a:4a:4b:a6:ae:01:ac:00:3d:c6: bc:99:a4:58:ee:5c:3d:6b:48:4c:9f:7b:d6:1f:21: 02:ca:41:1a:64:cf:0e:50:b6:b6:98:b5:22:48:ea: 53:c4:fb:af:29:f4:5e:ce:b3:73:ca:c6:69:ed:92: 9a:8f:82:52:0a:e8:99:ce:9c:20:51:13:8f:88:52: f3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:1C:57:8F:C1:0A:26:7A:35:28:AF:DB:4C:85:B5:0C:60:5C:C9:A1 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a8:6f:6a:59:3f:b5:00:ee:ee:ab:9d:9e:e7:50:cf:28:d7: 60:b2:67:7c:2f:1b:12:cc:de:53:f1:25:a8:40:2b:34:66:07: 43:ec:ad:ba:95:51:6f:fa:eb:75:98:c4:75:ff:15:6d:02:32: d5:74:4a:d6:40:32:34:7e:eb:43:3c:68:16:e6:22:f9:00:f6: be:28:f7:90:db:6c:7b:7c:08:a7:2a:22:b5:eb:ed:b1:33:78: 51:1b:f3:2b:b2:f1:0f:08:a1:02:d9:97:49:fc:d6:b2:05:3b: 46:3b:2f:b4:4f:6a:05:a4:34:59:e6:d7:72:f6:5f:af:6c:8b: 6a:22:4f:28:f9:a9:96:fd:39:60:b2:8e:97:bd:c7:31:7b:bd: 59:f6:20:1a:58:d5:cb:64:ea:b8:5a:c8:58:d6:d3:a5:c9:c3: a6:87:c1:20:cf:ca:a2:37:1f:5d:a0:fa:c4:b2:8c:f1:7e:d5: 47:02:b5:a1:4b:7a:76:67:7e:9a:c5:65:32:69:01:f1:cb:2c: a4:23:38:11:0a:07:cd:50:07:b6:76:b5:f4:7d:69:d5:98:f0: 5b:37:76:d9:09:d0:b8:24:7d:86:50:6d:a4:47:2a:5a:7c:eb: 40:95:39:b8:b7:32:70:78:f9:ea:bb:f3:0b:96:d9:54:9d:a4: 06:18:aa:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjQwNTAyMjIyOTE5WhcNMjQwNTA5MjIyOTE5WjAYMRYwFAYD VQQDEw02NjM0MTNjMC0wYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH+Lw0QVycjaUc3pWIcW7uk8WuKpR7XOJFk+6iVPCIiQSrIh7g7T5MlpbmlG 636DrrJoRmU5AoK8wDAFlHEBx/lJNIrhjwih3k+0yl2usz+qJaVS1O4V0KYUtjJg bDA3fz3UGwF+iLYi3AZlRA8kvmrP2dzMU0xsRST9bOa4BiB+ymBtxNC3ae9Qzm/r JyAHgvXx64QXNlmGvnK1Te5bVb77cUnRz1TxpltyGMmV4XpFDRrq2sr2/xpKS6au AawAPca8maRY7lw9a0hMn3vWHyECykEaZM8OULa2mLUiSOpTxPuvKfRezrNzysZp 7ZKaj4JSCuiZzpwgUROPiFLzLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8cV4/B CiZ6NSiv20yFtQxgXMmhMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGqG9qWT+1AO7uq52e51DPKNdgsmd8LxsSzN5T8SWoQCs0ZgdD7K26 lVFv+ut1mMR1/xVtAjLVdErWQDI0futDPGgW5iL5APa+KPeQ22x7fAinKiK16+2x M3hRG/MrsvEPCKEC2ZdJ/NayBTtGOy+0T2oFpDRZ5tdy9l+vbItqIk8o+amW/Tlg so6Xvccxe71Z9iAaWNXLZOq4WshY1tOlycOmh8Egz8qiNx9doPrEsozxftVHArWh S3p2Z36axWUyaQHxyyykIzgRCgfNUAe2drX0fWnVmPBbN3bZCdC4JH2GUG2kRypa fOtAlTm4tzJwePnqu/MLltlUnaQGGKoA -----END CERTIFICATE-----Generated at Thu May 2 23:19:02 2024 by rpki-client on console-ams.rpki-client.org