$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: PItlFX8dzzWGA0nPJTQJM+FGWzg0dKbOAiUj6pshGq8= Subject key identifier: AD:3F:84:34:77:BE:DA:1A:F2:40:55:5E:EF:41:18:58:9F:1F:0D:95 Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 2320 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 5E68 Signing time: Sat 04 May 2024 14:15:22 +0000 Manifest this update: Sat 04 May 2024 14:15:21 +0000 Manifest next update: Sat 11 May 2024 14:15:21 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: rqjSMQFsGA+kqIV09s3dBpAx5ccLPnV2HyHydZSpfaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8992 (0x2320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: May 4 14:15:21 2024 GMT Not After : May 11 14:15:21 2024 GMT Subject: CN=663642fa-a1e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:32:31:4d:96:da:4d:69:4a:ed:b2:d6:45: f7:ec:ea:8d:48:4f:6e:18:ce:f7:da:45:72:35:fe: 25:82:1c:86:a3:18:68:be:91:44:15:cb:09:03:5b: b1:d4:a5:9d:be:6f:da:a1:ac:ac:7c:61:7e:80:90: ae:cd:3a:ab:c4:d9:d6:5d:09:ac:d7:5d:9b:c9:46: 05:a3:5c:f6:ce:a1:8f:17:15:18:0e:87:a8:5f:1c: 41:cc:78:1b:3a:50:be:32:37:e6:5b:02:a9:5e:09: 3d:21:17:69:80:4b:d7:29:cc:bd:0e:a9:07:1c:bf: 4e:d1:19:48:35:86:98:bd:b2:35:b1:bd:75:7c:74: 0b:2d:25:0a:a9:77:5e:b7:c2:0a:07:40:97:2d:c9: f3:6c:52:f4:d7:70:73:98:74:c1:e6:eb:76:db:15: 30:0b:87:be:73:7b:c9:fd:05:d8:b0:37:7e:2f:69: 0f:7e:82:87:95:82:4d:2c:ec:fb:df:4e:11:c0:07: 70:4c:d5:1f:66:41:47:13:58:42:d2:3f:35:0b:65: 64:17:22:37:9e:e8:39:5b:d4:c7:23:a9:c3:86:b0: be:1c:47:6c:16:d0:31:2b:bf:8f:3d:c0:cf:1d:84: d9:82:39:0f:8d:0e:91:77:28:08:f2:cb:46:ea:34: 38:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3F:84:34:77:BE:DA:1A:F2:40:55:5E:EF:41:18:58:9F:1F:0D:95 X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:29:04:2e:89:09:e1:87:72:bf:69:0e:56:8a:7f:08:50:c2: 78:8b:ba:d1:89:90:e7:ee:21:62:72:95:2a:ac:e9:25:a4:8c: ee:0a:4a:37:91:d5:7e:58:02:bf:4d:d8:4d:94:e3:c8:25:15: a3:1c:16:04:81:c7:37:bd:fe:b3:d3:12:2a:f6:55:42:13:f5: e5:79:8e:46:82:de:f8:d8:01:b7:69:c2:5c:e1:16:fc:db:3d: 2b:05:4f:8d:e5:9f:24:ef:68:6f:f5:b2:76:70:97:7f:21:db: 67:26:ac:30:18:28:74:c3:eb:ec:79:df:6b:d4:21:fc:c2:d2: 14:ea:cc:b8:89:27:cb:2e:bc:5d:f7:f5:9c:d5:dd:a4:2a:af: e2:8a:85:e1:fc:04:e6:34:46:86:21:6b:b4:fe:ee:a5:94:71: 18:ff:58:9b:5b:a7:ae:60:43:fa:f4:bb:5a:0e:6d:d3:fa:db: 45:41:e7:07:1e:98:80:e7:37:3a:1a:c9:b9:39:c3:19:95:58: 06:ad:ab:82:6b:77:34:51:dc:4c:e4:66:9c:de:da:37:bd:cf: 84:dd:36:82:ef:2b:e5:ea:e2:26:be:cf:5f:5f:dc:60:da:c1: ab:06:b8:6a:de:9d:81:92:89:2e:64:18:ea:c3:86:ce:c8:10: 13:2a:94:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjQwNTA0MTQxNTIxWhcNMjQwNTExMTQxNTIxWjAYMRYwFAYD VQQDEw02NjM2NDJmYS1hMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHcyMU2W2k1pSu2y1kX37OqNSE9uGM732kVyNf4lghyGoxhovpFEFcsJA1ux 1KWdvm/aoaysfGF+gJCuzTqrxNnWXQms112byUYFo1z2zqGPFxUYDoeoXxxBzHgb OlC+MjfmWwKpXgk9IRdpgEvXKcy9DqkHHL9O0RlINYaYvbI1sb11fHQLLSUKqXde t8IKB0CXLcnzbFL013BzmHTB5ut22xUwC4e+c3vJ/QXYsDd+L2kPfoKHlYJNLOz7 304RwAdwTNUfZkFHE1hC0j81C2VkFyI3nug5W9THI6nDhrC+HEdsFtAxK7+PPcDP HYTZgjkPjQ6RdygI8stG6jQ4JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0/hDR3 vtoa8kBVXu9BGFifHw2VMB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJKQQuiQnhh3K/aQ5Win8IUMJ4i7rRiZDn7iFicpUqrOklpIzuCko3 kdV+WAK/TdhNlOPIJRWjHBYEgcc3vf6z0xIq9lVCE/XleY5Ggt742AG3acJc4Rb8 2z0rBU+N5Z8k72hv9bJ2cJd/IdtnJqwwGCh0w+vsed9r1CH8wtIU6sy4iSfLLrxd 9/Wc1d2kKq/iioXh/ATmNEaGIWu0/u6llHEY/1ibW6euYEP69LtaDm3T+ttFQecH HpiA5zc6Gsm5OcMZlVgGrauCa3c0UdxM5Gac3to3vc+E3TaC7yvl6uImvs9fX9xg 2sGrBrhq3p2BkokuZBjqw4bOyBATKpQG -----END CERTIFICATE-----Generated at Sat May 4 14:45:16 2024 by rpki-client on console-ams.rpki-client.org