$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: POFeIpoMdQz+wR3eBSHB2yJgMezcsxrux32XqsuArAc= Subject key identifier: FD:20:EA:2A:5A:4F:CA:2F:0A:96:18:35:EB:8A:1F:2C:6D:7A:90:5A Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: E2 Signing time: Fri 03 May 2024 05:59:24 +0000 Manifest this update: Fri 03 May 2024 05:59:23 +0000 Manifest next update: Fri 10 May 2024 05:59:23 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: GRcPkVZR2UoBUUTF5pPeuKRtQCbPisjubnUAoqyo6jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: May 3 05:59:23 2024 GMT Not After : May 10 05:59:23 2024 GMT Subject: CN=66347d3c-e964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:99:b2:16:00:87:d6:fd:a8:e8:19:06:88:69: 11:4e:d0:7e:e2:65:7c:f2:4b:0c:5f:a4:1f:88:90: 55:68:e9:ef:60:d4:38:c7:5c:36:05:cb:f3:5a:04: ab:7b:94:ea:8f:7e:93:23:3e:8a:4b:4c:4b:f0:b6: b2:e7:89:bc:b3:17:23:6c:ff:6c:a1:22:c8:5d:94: 7f:1f:36:cf:c5:f9:9a:63:78:f1:55:1f:9d:8b:60: 7a:70:09:4a:2f:f2:ca:32:47:5e:e4:97:5e:08:47: 14:c0:0f:15:17:97:e5:fc:dc:a2:66:ba:08:4a:91: 6f:f5:0c:f9:51:28:c7:b2:a4:1d:6d:0b:74:3b:5f: 6d:f1:fe:0e:57:e1:bb:30:9f:bb:ef:45:7e:10:4b: 0f:0e:77:44:3a:42:18:e6:43:25:c6:5a:83:fc:23: 08:81:ec:75:5e:0c:7f:72:0a:a6:fe:36:7d:c5:df: 86:d3:a8:fa:65:0f:f5:17:20:36:eb:15:7e:de:2b: ff:c2:d2:cc:5a:e7:94:15:c9:27:52:e2:50:df:88: 55:fc:4f:8e:96:36:59:0e:39:12:ae:02:37:b9:43: cc:15:26:98:d6:a2:f8:98:3d:8d:01:d5:13:c5:f6: 18:4d:29:d3:fd:c5:5e:6e:7d:78:d9:64:72:ea:cc: a9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:20:EA:2A:5A:4F:CA:2F:0A:96:18:35:EB:8A:1F:2C:6D:7A:90:5A X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:1c:97:1d:4c:28:d5:a7:77:e0:a8:f5:03:ad:c2:e0:df:09: 44:d7:10:2e:4a:6e:73:94:e7:eb:1d:1b:b8:e7:d7:ea:09:59: 0d:70:f6:db:b0:42:a1:fc:49:e7:7e:8b:5f:5b:c3:ad:cb:b4: 84:6a:2d:f6:d8:57:71:d2:94:77:e2:b2:3b:c3:04:09:89:c2: 0d:dd:c8:4b:92:48:c0:a3:5e:f3:b9:b6:15:42:30:8e:35:a4: 3a:f3:80:67:53:d6:28:09:19:e8:f1:be:e0:4f:c4:67:6d:2f: a1:c2:77:75:28:fe:bc:29:eb:27:61:fc:57:65:86:2a:ab:ea: ef:f9:ca:d4:02:b7:a6:92:62:dc:1d:7e:27:4d:a4:2b:b2:19: d6:b8:b7:34:a6:9f:f5:80:d5:50:06:7f:9e:02:98:5b:da:0b: 12:1c:9d:a7:54:91:86:6e:d5:aa:1e:0a:d6:c0:2d:a4:a2:e1: 24:5e:fb:67:43:7f:ed:bb:9d:f3:81:ef:e3:48:9e:b2:89:e9: e3:37:3c:fd:9e:27:5d:fe:b8:ff:57:d6:40:c8:50:56:fe:56: 11:09:98:88:90:d5:68:ae:2b:87:39:5c:b2:a5:90:26:df:56: 00:8a:f6:33:ba:9a:0b:44:38:4b:d6:0a:7b:16:73:b1:af:d8: 69:19:14:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjQwNTAzMDU1OTIzWhcNMjQwNTEwMDU1OTIzWjAYMRYwFAYD VQQDEw02NjM0N2QzYy1lOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZmyFgCH1v2o6BkGiGkRTtB+4mV88ksMX6QfiJBVaOnvYNQ4x1w2BcvzWgSr e5Tqj36TIz6KS0xL8Lay54m8sxcjbP9soSLIXZR/HzbPxfmaY3jxVR+di2B6cAlK L/LKMkde5JdeCEcUwA8VF5fl/NyiZroISpFv9Qz5USjHsqQdbQt0O19t8f4OV+G7 MJ+770V+EEsPDndEOkIY5kMlxlqD/CMIgex1Xgx/cgqm/jZ9xd+G06j6ZQ/1FyA2 6xV+3iv/wtLMWueUFcknUuJQ34hV/E+OljZZDjkSrgI3uUPMFSaY1qL4mD2NAdUT xfYYTSnT/cVebn142WRy6sypxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0g6ipa T8ovCpYYNeuKHyxtepBaMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGHJcdTCjVp3fgqPUDrcLg3wlE1xAuSm5zlOfrHRu459fqCVkNcPbb sEKh/EnnfotfW8Oty7SEai322Fdx0pR34rI7wwQJicIN3chLkkjAo17zubYVQjCO NaQ684BnU9YoCRno8b7gT8RnbS+hwnd1KP68KesnYfxXZYYqq+rv+crUAremkmLc HX4nTaQrshnWuLc0pp/1gNVQBn+eAphb2gsSHJ2nVJGGbtWqHgrWwC2kouEkXvtn Q3/tu53zge/jSJ6yienjNzz9nidd/rj/V9ZAyFBW/lYRCZiIkNVoriuHOVyypZAm 31YAivYzupoLRDhL1gp7FnOxr9hpGRQ6 -----END CERTIFICATE-----Generated at Fri May 3 06:29:21 2024 by rpki-client on console-fra.rpki-client.org