$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: u0CH/27rlWZNe6xu5w/Lmn70rzgM5x8AgCNjD+gobvI= Subject key identifier: D9:AA:70:AF:C0:54:91:7A:06:4B:CC:28:D0:96:3A:F4:C6:3C:27:BE Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 01D9 Signing time: Sat 27 Apr 2024 04:15:22 +0000 Manifest this update: Sat 27 Apr 2024 04:15:21 +0000 Manifest next update: Sat 04 May 2024 04:15:21 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: FL4bOJZQoUq6IeFySGTAPi9OvtlQyI2RD+ptaBpTrjs=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SbyIupoiT12E0jQSZAJ6Mwfet+171cuzjx/R/7EnMHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Apr 27 04:15:21 2024 GMT Not After : May 4 04:15:21 2024 GMT Subject: CN=662c7bda-1d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ae:e3:40:4d:e6:35:8a:4a:05:e8:77:86:ff: 73:19:05:54:2d:66:62:5e:ee:bc:4c:5d:99:b8:39: f9:26:74:5b:c6:22:3c:09:4c:12:25:30:f5:48:27: 6e:b4:ec:e1:84:68:82:d2:da:ba:e0:8a:32:2c:ba: 57:e8:09:3e:cf:43:b0:8b:6d:47:40:48:1b:97:3f: ed:60:ad:66:5f:c9:93:15:0d:8d:eb:3f:a3:32:f3: 20:63:da:44:a8:94:67:b5:15:87:d7:7a:54:ef:5d: 3b:c5:ff:21:cf:01:a5:0e:91:ae:0b:c1:e5:dc:55: f7:2e:d8:9d:61:81:e1:f4:5c:61:c4:e3:13:8b:af: 27:2a:1a:e7:3c:59:a0:50:f6:f9:55:55:6e:29:1b: 31:4b:bd:ca:2a:8a:25:fd:e4:b8:45:12:ec:da:7c: 41:e3:3e:21:fa:31:a9:28:83:80:3f:ff:fb:60:44: 52:cd:50:3e:17:6c:19:95:cd:6e:75:90:59:97:31: d1:44:fa:5e:91:8a:fe:35:d8:4a:ec:75:97:88:19: 92:a3:1f:cb:fc:23:6e:f7:ce:cd:1a:b2:5f:6a:e0: 6f:60:54:ee:7e:df:bd:43:e7:d9:a5:e7:93:b9:7d: 5d:55:fe:00:10:d7:9c:e4:a4:7f:86:f7:d5:d8:da: a8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AA:70:AF:C0:54:91:7A:06:4B:CC:28:D0:96:3A:F4:C6:3C:27:BE X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:15:76:5f:63:0d:a7:fe:cc:65:e9:ce:77:6d:20:d9:73:f1: a8:c7:5a:23:10:c6:eb:20:77:95:5b:51:4e:5b:da:d5:8a:b8: ab:ba:13:d9:d7:4b:fb:ee:f1:1a:04:cd:49:25:79:33:39:ec: 23:b9:17:99:56:56:7a:ef:e5:4d:08:0d:44:d7:5d:13:e8:da: f1:a0:34:49:3d:1d:47:6f:18:9a:4f:46:55:42:29:2c:67:eb: c3:6e:94:08:a0:16:8c:c4:7a:82:ab:5d:c9:bd:9f:2f:c2:5b: aa:c4:98:12:8c:37:df:b7:18:24:76:91:52:84:86:e1:01:72: 94:69:25:52:74:fc:6a:26:bc:3b:98:dd:f6:93:f2:d5:01:a4: f4:18:a0:ce:e1:7d:fe:1a:a3:8e:e4:ba:91:d3:85:8f:90:96: 0c:09:7c:26:74:d5:2b:6d:8c:b2:8d:0a:a2:00:20:86:5d:00: f8:6a:83:bc:8e:6f:76:64:a8:73:31:a9:76:db:b0:1f:f0:d9: b0:44:52:5d:b7:e1:59:ca:62:b1:40:55:95:8e:d6:dd:45:ce: 01:40:34:bb:c4:5c:69:fa:3b:41:b4:20:0b:f9:3f:15:b7:08: 13:79:8e:6f:ed:d6:f8:8f:fe:4c:18:4e:b6:b4:15:b9:c2:02: a7:69:b6:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjQwNDI3MDQxNTIxWhcNMjQwNTA0MDQxNTIxWjAYMRYwFAYD VQQDEw02NjJjN2JkYS0xZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5K7jQE3mNYpKBeh3hv9zGQVULWZiXu68TF2ZuDn5JnRbxiI8CUwSJTD1SCdu tOzhhGiC0tq64IoyLLpX6Ak+z0Owi21HQEgblz/tYK1mX8mTFQ2N6z+jMvMgY9pE qJRntRWH13pU7107xf8hzwGlDpGuC8Hl3FX3LtidYYHh9FxhxOMTi68nKhrnPFmg UPb5VVVuKRsxS73KKool/eS4RRLs2nxB4z4h+jGpKIOAP//7YERSzVA+F2wZlc1u dZBZlzHRRPpekYr+NdhK7HWXiBmSox/L/CNu987NGrJfauBvYFTuft+9Q+fZpeeT uX1dVf4AENec5KR/hvfV2Nqo9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmqcK/A VJF6BkvMKNCWOvTGPCe+MB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJFXZfYw2n/sxl6c53bSDZc/Gox1ojEMbrIHeVW1FOW9rViriruhPZ 10v77vEaBM1JJXkzOewjuReZVlZ67+VNCA1E110T6NrxoDRJPR1HbxiaT0ZVQiks Z+vDbpQIoBaMxHqCq13JvZ8vwluqxJgSjDfftxgkdpFShIbhAXKUaSVSdPxqJrw7 mN32k/LVAaT0GKDO4X3+GqOO5LqR04WPkJYMCXwmdNUrbYyyjQqiACCGXQD4aoO8 jm92ZKhzMal227Af8NmwRFJdt+FZymKxQFWVjtbdRc4BQDS7xFxp+jtBtCAL+T8V twgTeY5v7db4j/5MGE62tBW5wgKnabb6 -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:01 2024 by rpki-client on console-ams.rpki-client.org