$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: tclviPJly8q5It30pqIs++ANn8BDKLWUbOHSISnmB6w= Subject key identifier: 8B:DB:19:1D:8B:B5:E4:2D:9F:05:9C:DF:E4:ED:BB:6C:8F:9F:D2:36 Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 077E Signing time: Thu 02 May 2024 22:22:37 +0000 Manifest this update: Thu 02 May 2024 22:22:36 +0000 Manifest next update: Thu 09 May 2024 22:22:36 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: ujmhE6Owf8Xasse6IU1IEmExLtY/NMFXMCjue0oCBFQ=) 2: 79ACF308CBDA11EABD85D351C4F9AE02.roa (hash: +sp3Lrwj469XMr/93BI7Ht6kG8vGmMwkP6xLwQuzA60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: May 2 22:22:36 2024 GMT Not After : May 9 22:22:36 2024 GMT Subject: CN=6634122c-c002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:ba:30:bc:13:48:ea:a4:5b:5b:36:f4:5d: 80:c3:37:e4:02:ae:67:77:f4:87:a8:af:00:0f:23: 72:2d:2e:50:d0:cb:42:c4:71:36:b6:47:e9:f0:a8: 14:f6:f3:26:5a:39:cf:8b:f9:48:f1:f7:d9:a8:65: c0:d0:ca:d9:1b:4a:64:60:18:03:c0:f9:f8:44:2c: 14:6f:b7:a3:c1:3e:72:7b:11:52:d7:5f:9e:ea:3d: 17:d6:d3:f6:dc:5a:50:63:6f:ed:66:94:84:88:2d: b4:ed:17:cd:54:d4:11:ca:27:2f:6d:75:6e:3f:d1: b8:14:dd:10:36:5e:55:31:38:9c:58:0f:ea:ca:10: f9:6d:59:3a:4e:e0:93:95:73:24:b7:58:f2:a7:2b: 6d:d0:4f:77:ab:5a:30:9d:e6:0b:53:27:53:48:96: 00:e8:2e:f1:62:bb:aa:8f:35:74:6b:86:01:f3:49: 74:c9:19:78:18:49:69:95:03:56:ff:ce:d3:ba:46: 94:62:e4:25:b0:fd:1a:72:6f:f8:fa:76:f4:fd:6f: 81:a6:52:d4:8e:7e:8c:c4:58:9f:cb:92:92:da:de: 50:29:ff:ae:4e:b2:cd:b3:9a:f0:4c:07:5d:17:69: 6a:6c:d8:09:a8:49:b8:78:18:ef:04:19:0b:5e:6d: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DB:19:1D:8B:B5:E4:2D:9F:05:9C:DF:E4:ED:BB:6C:8F:9F:D2:36 X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:9a:bc:a4:6d:85:14:b1:60:13:b0:1b:fd:bd:70:32:20:3b: 07:7a:1d:ba:36:ce:5c:33:3f:d6:c4:ab:a9:79:a2:5a:9c:72: 84:fe:f6:42:f9:01:e8:d5:90:9d:eb:25:53:1b:a6:db:38:31: b8:56:b3:48:e5:be:24:f0:31:76:b9:62:e0:23:8b:d1:8b:12: 9c:c0:fb:e0:cb:ad:4f:e0:f8:c3:85:e8:64:20:ee:a7:db:41: 02:9e:c7:9b:77:12:d8:75:a1:46:a2:82:2d:2d:92:c0:31:7b: a3:28:83:b9:ad:a2:fe:a5:6b:ad:26:e2:4f:8b:d6:46:c7:bc: ac:0e:4c:4f:c4:b8:ae:d0:a7:b5:0a:a0:7a:19:c1:d4:37:e7: 75:0d:40:94:4a:36:59:5d:44:5c:f3:61:34:3f:ba:5f:48:c7: 53:e7:66:74:76:0d:b6:ec:3c:ab:eb:1b:0e:2b:99:16:0b:ca: 88:ba:96:b7:32:e8:27:2e:6e:d9:76:f5:85:82:d5:bd:2c:2d: 6b:cc:7a:86:4f:4d:8e:86:42:91:0e:36:9f:64:7a:b5:f9:8a: 2f:2d:bb:61:f0:43:32:46:9d:10:49:cf:60:da:e1:11:fe:01: e6:a6:d5:30:9d:de:99:91:11:27:eb:11:89:35:db:b6:bf:1e: ca:46:c1:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjQwNTAyMjIyMjM2WhcNMjQwNTA5MjIyMjM2WjAYMRYwFAYD VQQDEw02NjM0MTIyYy1jMDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/a6MLwTSOqkW1s29F2AwzfkAq5nd/SHqK8ADyNyLS5Q0MtCxHE2tkfp8KgU 9vMmWjnPi/lI8ffZqGXA0MrZG0pkYBgDwPn4RCwUb7ejwT5yexFS11+e6j0X1tP2 3FpQY2/tZpSEiC207RfNVNQRyicvbXVuP9G4FN0QNl5VMTicWA/qyhD5bVk6TuCT lXMkt1jypytt0E93q1owneYLUydTSJYA6C7xYruqjzV0a4YB80l0yRl4GElplQNW /87TukaUYuQlsP0acm/4+nb0/W+BplLUjn6MxFify5KS2t5QKf+uTrLNs5rwTAdd F2lqbNgJqEm4eBjvBBkLXm0SEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvbGR2L teQtnwWc3+Ttu2yPn9I2MB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSmrykbYUUsWATsBv9vXAyIDsHeh26Ns5cMz/WxKupeaJanHKE/vZC +QHo1ZCd6yVTG6bbODG4VrNI5b4k8DF2uWLgI4vRixKcwPvgy61P4PjDhehkIO6n 20ECnsebdxLYdaFGooItLZLAMXujKIO5raL+pWutJuJPi9ZGx7ysDkxPxLiu0Ke1 CqB6GcHUN+d1DUCUSjZZXURc82E0P7pfSMdT52Z0dg227Dyr6xsOK5kWC8qIupa3 MugnLm7ZdvWFgtW9LC1rzHqGT02OhkKRDjafZHq1+YovLbth8EMyRp0QSc9g2uER /gHmptUwnd6ZkREn6xGJNdu2vx7KRsGK -----END CERTIFICATE-----Generated at Thu May 2 23:19:02 2024 by rpki-client on console-ams.rpki-client.org