$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: zD3jpQYkdhKcLFZiZHG48xEkZtPlx1mHNV7OEDJGCOk= Subject key identifier: C8:69:42:33:27:B5:DD:52:BA:2A:A1:58:A9:BF:5B:7F:EE:69:93:E5 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 09DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 09D2 Signing time: Mon 06 May 2024 20:54:09 +0000 Manifest this update: Mon 06 May 2024 20:54:09 +0000 Manifest next update: Mon 13 May 2024 20:54:09 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: Gn8Fwu6eLqDgiQa0zmo+w4itlin+W4FiEgDmxbKw7eY=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: wEPT/JxoXR8vXmErciWYLyiDrtNHIrJoWWSk93OARbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: May 6 20:54:09 2024 GMT Not After : May 13 20:54:09 2024 GMT Subject: CN=66394371-679f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8c:a6:de:80:13:4e:a0:77:01:03:49:f8:36: b8:5e:06:46:f1:65:c9:75:23:0e:ff:7a:5f:c5:11: d6:e0:ea:98:1f:79:17:93:66:42:61:10:89:89:56: 28:d9:e1:bd:5a:76:82:1c:9c:fd:69:7a:e8:d2:6f: 78:cd:c5:35:ee:75:cf:96:7a:4f:60:72:53:cd:d6: 00:8b:5c:18:91:76:5a:80:2c:77:03:9e:47:18:f0: 1a:b1:5c:8f:ff:ff:bb:bd:ba:9d:63:57:23:8c:ae: 29:da:80:02:52:53:71:d8:38:e5:3e:bc:72:5c:8c: ef:97:81:5f:17:03:71:66:ed:1e:70:e2:9a:8d:c1: 6f:e6:93:ca:89:b2:42:09:51:e6:ab:61:16:4d:1d: 9d:2b:33:e1:77:2c:7f:fc:b5:42:5e:2f:d6:69:6d: dc:ad:20:00:c5:97:f8:b4:dc:86:7b:e4:47:e3:54: e3:aa:03:18:74:2c:ce:cd:cf:b2:54:b5:cd:e0:64: 5b:8c:df:44:ac:5b:d5:2b:32:fd:24:e9:1a:55:ea: 23:8c:8e:fa:8f:60:cf:77:f0:78:fc:a6:99:88:bf: bd:32:d4:ed:6a:5c:69:95:5b:45:1c:61:09:66:42: c2:0d:5d:0d:3f:8e:d5:f5:60:c0:e5:3d:62:d5:0a: 03:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:69:42:33:27:B5:DD:52:BA:2A:A1:58:A9:BF:5B:7F:EE:69:93:E5 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a6:a1:98:e4:2a:d0:7d:3d:24:f0:81:70:70:96:51:08:61: df:18:41:13:eb:8a:24:f7:cd:ba:9a:d7:b9:fa:c7:34:91:aa: 5a:61:02:85:0f:e9:a2:8d:38:02:57:47:55:69:62:a7:4b:81: f8:fd:8b:0e:04:34:c8:83:8c:30:26:5a:1e:93:e6:50:37:19: fc:a7:e6:b2:27:ed:ef:48:d6:af:b6:ac:f0:6f:03:c3:f1:90: f8:f6:dc:c0:09:59:3e:70:b8:98:cb:88:ff:66:54:6b:30:6a: b0:6f:cb:74:8d:35:3f:8c:f3:94:0c:b5:28:d6:39:b6:b4:fe: 82:ce:64:f4:0c:86:b0:7a:3b:dc:95:a2:f2:6d:2b:a3:29:8b: bd:ce:3c:c5:a7:e9:c1:c5:1c:ce:50:15:37:7b:71:2a:11:89: ae:5c:df:c4:b7:2e:46:09:b9:8d:60:ce:65:42:72:2d:09:f8: e1:74:00:cc:78:25:db:a1:7a:3a:c0:3d:51:ba:dc:36:f0:1c: c4:f2:f7:7f:08:f5:f2:1f:71:80:ab:bf:d5:88:91:bd:38:a7: 17:66:52:e8:ff:2a:2e:a0:1a:a1:fe:4b:c8:3f:ea:22:4c:ef: 50:8d:fb:7b:d7:07:db:6e:d0:5f:2a:de:c1:5c:81:26:29:10: 41:1d:fe:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjQwNTA2MjA1NDA5WhcNMjQwNTEzMjA1NDA5WjAYMRYwFAYD VQQDEw02NjM5NDM3MS02NzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoym3oATTqB3AQNJ+Da4XgZG8WXJdSMO/3pfxRHW4OqYH3kXk2ZCYRCJiVYo 2eG9WnaCHJz9aXro0m94zcU17nXPlnpPYHJTzdYAi1wYkXZagCx3A55HGPAasVyP //+7vbqdY1cjjK4p2oACUlNx2DjlPrxyXIzvl4FfFwNxZu0ecOKajcFv5pPKibJC CVHmq2EWTR2dKzPhdyx//LVCXi/WaW3crSAAxZf4tNyGe+RH41TjqgMYdCzOzc+y VLXN4GRbjN9ErFvVKzL9JOkaVeojjI76j2DPd/B4/KaZiL+9MtTtalxplVtFHGEJ ZkLCDV0NP47V9WDA5T1i1QoDVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhpQjMn td1SuiqhWKm/W3/uaZPlMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbpqGY5CrQfT0k8IFwcJZRCGHfGEET64ok9826mte5+sc0kapaYQKF D+mijTgCV0dVaWKnS4H4/YsOBDTIg4wwJloek+ZQNxn8p+ayJ+3vSNavtqzwbwPD 8ZD49tzACVk+cLiYy4j/ZlRrMGqwb8t0jTU/jPOUDLUo1jm2tP6CzmT0DIawejvc laLybSujKYu9zjzFp+nBxRzOUBU3e3EqEYmuXN/Ety5GCbmNYM5lQnItCfjhdADM eCXboXo6wD1Rutw28BzE8vd/CPXyH3GAq7/ViJG9OKcXZlLo/youoBqh/kvIP+oi TO9Qjft71wfbbtBfKt7BXIEmKRBBHf4p -----END CERTIFICATE-----Generated at Mon May 6 23:05:46 2024 by rpki-client on console-fra.rpki-client.org