$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: l2XPJ8icCt3eXzSu6P1spt7HOSisL4DXOK7S1vJ/qPU= Subject key identifier: 5C:B2:54:82:BD:FA:BA:3D:0A:AE:9F:C6:52:60:8E:3A:9B:49:16:75 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 1559 Signing time: Sat 04 May 2024 17:24:29 +0000 Manifest this update: Sat 04 May 2024 17:24:28 +0000 Manifest next update: Sat 11 May 2024 17:24:28 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: AUSQL5uqvdtjs21cenzy1M6fM3WqUZce8HxULtXbJzw=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: GSsV9hTQ0wcK2K9fWWgVISRGAoUvU2OXnmqOq5QIE30=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: VoTiPsdb+KAK/LYE5b88EgvlGEc4xLutWyy9tYINRtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5479 (0x1567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: May 4 17:24:28 2024 GMT Not After : May 11 17:24:28 2024 GMT Subject: CN=66366f4d-c3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:c1:a6:e4:e4:94:60:85:ae:06:06:9e:3c: 0c:d7:fb:bd:4b:99:99:3a:b5:56:1c:a0:05:33:fd: a9:0f:39:7d:18:54:8e:98:bd:13:67:e9:4e:d5:0e: fa:8c:2b:cc:69:3c:68:8a:2e:38:15:61:71:77:5d: 1e:f0:cd:03:78:c9:8c:99:ae:09:8f:c2:dd:7f:d2: c4:34:dd:57:8f:67:70:77:ae:09:a7:aa:cb:b1:14: 99:57:ee:04:18:74:b2:02:eb:57:68:18:db:4c:16: 2b:ef:e0:4f:09:d5:16:ce:a7:c2:7d:c7:87:3d:a6: 28:a4:b2:55:e1:66:2d:c3:dd:55:e4:4b:be:5f:75: 5f:e4:0e:02:c3:2b:13:ed:d9:4d:76:20:49:69:56: 8b:c1:3b:9b:be:2f:bf:09:ba:15:ce:b2:b0:b1:18: ff:64:91:ae:b5:d5:d7:29:d4:ea:87:a9:11:2a:64: 1c:03:06:21:99:10:aa:10:06:d5:96:6b:67:b0:04: ae:1f:4f:eb:fd:c8:5e:53:2f:fb:3d:01:f4:9b:0b: 90:ba:46:b5:e5:51:09:43:a5:cf:4e:9f:0b:54:9c: c0:46:b5:a8:df:a3:9d:c3:a2:45:78:9f:5e:c2:b7: cb:b3:a8:e3:e4:77:fe:8d:25:e2:93:76:57:86:22: a7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B2:54:82:BD:FA:BA:3D:0A:AE:9F:C6:52:60:8E:3A:9B:49:16:75 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:43:40:b2:02:a4:63:b3:71:8b:83:75:b9:f7:9e:e8:ca:84: 5a:6c:27:35:84:c9:5a:3d:e2:15:0b:4a:c7:15:01:f3:c6:ed: 94:c4:d5:fa:6b:f2:3f:05:f1:0b:16:4b:b7:03:d4:95:89:89: c7:a2:10:16:15:cc:f4:22:00:ea:eb:19:c0:b0:c9:aa:17:42: ff:23:15:bc:9a:00:ba:ec:cc:3c:76:f6:b7:16:83:1a:9b:bc: 49:f3:72:6e:9b:07:ab:1a:70:0d:0c:5a:84:16:fa:5d:ba:39: 80:40:93:f5:ea:c3:58:5f:7f:1b:ce:53:6f:90:fc:ed:5b:ed: 66:f6:ef:31:42:42:06:f9:96:9d:cf:2d:51:98:f0:8c:c3:c0: 7c:17:48:1a:eb:d8:0d:8a:e6:86:38:78:13:6b:57:6d:e8:fb: 82:5c:10:36:f9:91:23:e7:22:af:fa:df:66:c8:fe:5f:c9:bb: 45:68:38:9e:74:72:37:01:03:aa:c8:8b:ec:59:d2:8e:19:1c: 7f:c2:e0:b3:e3:5c:f0:9f:9f:b6:13:2b:77:ad:85:25:19:eb: 93:e0:b9:25:48:4d:66:38:43:c7:64:a7:53:c8:df:47:f1:e8: d3:ea:de:a0:6d:ed:e0:22:1f:38:04:89:08:51:47:7f:d4:e2: 17:6e:5a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjQwNTA0MTcyNDI4WhcNMjQwNTExMTcyNDI4WjAYMRYwFAYD VQQDEw02NjM2NmY0ZC1jM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybjBpuTklGCFrgYGnjwM1/u9S5mZOrVWHKAFM/2pDzl9GFSOmL0TZ+lO1Q76 jCvMaTxoii44FWFxd10e8M0DeMmMma4Jj8Ldf9LENN1Xj2dwd64Jp6rLsRSZV+4E GHSyAutXaBjbTBYr7+BPCdUWzqfCfceHPaYopLJV4WYtw91V5Eu+X3Vf5A4CwysT 7dlNdiBJaVaLwTubvi+/CboVzrKwsRj/ZJGutdXXKdTqh6kRKmQcAwYhmRCqEAbV lmtnsASuH0/r/cheUy/7PQH0mwuQuka15VEJQ6XPTp8LVJzARrWo36Odw6JFeJ9e wrfLs6jj5Hf+jSXik3ZXhiKn7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyyVIK9 +ro9Cq6fxlJgjjqbSRZ1MB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUQ0CyAqRjs3GLg3W5957oyoRabCc1hMlaPeIVC0rHFQHzxu2UxNX6 a/I/BfELFku3A9SViYnHohAWFcz0IgDq6xnAsMmqF0L/IxW8mgC67Mw8dva3FoMa m7xJ83JumwerGnANDFqEFvpdujmAQJP16sNYX38bzlNvkPztW+1m9u8xQkIG+Zad zy1RmPCMw8B8F0ga69gNiuaGOHgTa1dt6PuCXBA2+ZEj5yKv+t9myP5fybtFaDie dHI3AQOqyIvsWdKOGRx/wuCz41zwn5+2Eyt3rYUlGeuT4LklSE1mOEPHZKdTyN9H 8ejT6t6gbe3gIh84BIkIUUd/1OIXblrP -----END CERTIFICATE-----Generated at Sat May 4 19:58:42 2024 by rpki-client on console-ams.rpki-client.org