$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: F9WuIHfZgeJMAjmzn2FhgCXBJWTMXmkyqCvw2yMGPB0= Subject key identifier: FE:C9:7E:AA:C6:54:CF:33:A6:13:98:81:FD:7B:A7:D8:3E:99:77:39 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 56 Signing time: Wed 15 May 2024 08:00:24 +0000 Manifest this update: Wed 15 May 2024 08:00:23 +0000 Manifest next update: Wed 22 May 2024 08:00:23 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: iU3SnIxo1UheZfGruXKrjCnV4Rm54zMGTKy4GcmK7oA=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: yAMy5FB24dlRlytngKwHIjnmCoA+51iB9Qs1Onhhgps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: May 15 08:00:23 2024 GMT Not After : May 22 08:00:23 2024 GMT Subject: CN=66446b98-4964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0e:eb:58:8c:2d:00:01:b9:39:d9:7c:95:cf: 72:3e:82:54:c0:13:2c:e7:c3:c1:97:a6:4b:7a:bb: 10:85:d1:1b:75:9d:ab:6c:07:8a:b9:e0:80:4a:0c: 3a:b4:38:b6:04:a3:c1:4c:92:36:05:f0:21:42:53: 51:52:2b:0f:4c:a0:12:96:e7:f7:86:d1:13:b7:e0: 60:3d:d7:22:2a:75:88:9d:42:7b:c4:12:fb:cb:68: bc:0b:23:87:b9:d5:df:29:ec:53:6c:6d:a8:ff:22: 06:24:74:11:97:ee:b3:16:d3:9e:7e:c4:58:05:88: 57:4a:46:5c:d7:24:fd:17:3a:2f:30:6a:55:cc:82: 3f:d0:3a:0f:54:df:28:34:03:5f:af:d2:57:53:11: e8:c5:28:51:66:8c:a8:92:78:e4:14:75:7a:5c:2a: 43:8e:b1:26:8b:41:e8:ba:86:c9:42:47:e3:10:c4: 0d:99:bd:66:1d:de:fc:33:da:9d:37:14:d0:35:6c: b9:8c:da:70:06:d8:a1:3a:66:a8:fc:9b:2f:b6:93: 42:ca:8a:1f:84:5d:05:d0:f4:ac:01:b8:06:4a:af: f2:f4:6c:8a:49:6a:c4:05:4e:09:e9:37:a4:31:80: fe:5c:a6:3e:4e:e5:af:1c:5c:61:4d:e4:68:b5:1e: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C9:7E:AA:C6:54:CF:33:A6:13:98:81:FD:7B:A7:D8:3E:99:77:39 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ac:2e:e6:85:d4:13:02:85:84:d4:d6:63:66:96:12:f2:8c: 6c:a4:71:85:f0:73:bc:46:41:38:96:65:7d:15:61:43:4a:24: 4e:32:51:41:35:99:23:d4:b1:13:39:96:91:7b:d9:d4:b7:58: 56:8f:60:46:3a:f9:d0:f1:2f:5e:c5:f7:6a:ed:d3:d4:f6:3e: f2:88:c2:1d:62:d7:c7:b7:4f:2b:d4:ae:9c:86:b7:6f:5f:e9: 51:c1:d0:94:ca:06:a8:89:10:a2:3b:97:39:3c:c8:07:db:58: 96:07:b2:2b:a5:9f:f7:79:94:21:0b:82:37:2a:72:1c:e1:63: 98:8c:04:72:05:17:80:92:a7:67:c0:4b:a5:97:86:ee:4f:d4: 27:c2:69:0d:3c:7e:a7:37:f0:f8:d5:9c:76:30:df:b6:9f:3d: c0:f0:32:73:d9:28:7e:16:49:f9:6d:99:f1:6e:82:8f:21:8e: c4:bc:1d:5b:a1:82:7a:e4:ed:59:93:7b:5b:66:80:00:f0:a8: 33:4d:55:92:fc:6c:dc:64:a0:36:b2:7c:a8:38:b8:a6:c2:b1: e7:74:cb:62:78:38:12:11:df:d8:99:19:ce:13:8c:f5:e3:70: 36:f7:d5:c8:12:c4:1d:f1:c2:c6:f4:37:f0:2a:f4:54:f6:7f: 57:ec:67:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0IyMzExMC8GA1UEBRMoM0ExQTQwNzQ3MUQxQkYxQ0ExNTI1RjIxRjdERUNGNUE2 QTJBNjREODAeFw0yNDA1MTUwODAwMjNaFw0yNDA1MjIwODAwMjNaMBgxFjAUBgNV BAMTDTY2NDQ2Yjk4LTQ5NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSDutYjC0AAbk52XyVz3I+glTAEyznw8GXpkt6uxCF0Rt1natsB4q54IBKDDq0 OLYEo8FMkjYF8CFCU1FSKw9MoBKW5/eG0RO34GA91yIqdYidQnvEEvvLaLwLI4e5 1d8p7FNsbaj/IgYkdBGX7rMW055+xFgFiFdKRlzXJP0XOi8walXMgj/QOg9U3yg0 A1+v0ldTEejFKFFmjKiSeOQUdXpcKkOOsSaLQei6hslCR+MQxA2ZvWYd3vwz2p03 FNA1bLmM2nAG2KE6Zqj8my+2k0LKih+EXQXQ9KwBuAZKr/L0bIpJasQFTgnpN6Qx gP5cpj5O5a8cXGFN5Gi1Hj7zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/sl+qsZU zzOmE5iB/Xun2D6ZdzkwHwYDVR0jBBgwFoAUOhpAdHHRvxyhUl8h997PWmoqZNgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3QjIzLzc1NDVGMDNBOTdE MzExRUVBMjNDNjYwQkM0RjlBRTAyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpO Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2hwQWRISFJ2eHloVWw4aDk5N1BXbW9xWk5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 QjIzLzc1NDVGMDNBOTdEMzExRUVBMjNDNjYwQkM0RjlBRTAyL09ocEFkSEhSdnh5 aFVsOGg5OTdQV21vcVpOZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIusLuaF1BMChYTU1mNmlhLyjGykcYXwc7xGQTiWZX0VYUNKJE4yUUE1 mSPUsRM5lpF72dS3WFaPYEY6+dDxL17F92rt09T2PvKIwh1i18e3TyvUrpyGt29f 6VHB0JTKBqiJEKI7lzk8yAfbWJYHsiuln/d5lCELgjcqchzhY5iMBHIFF4CSp2fA S6WXhu5P1CfCaQ08fqc38PjVnHYw37afPcDwMnPZKH4WSfltmfFugo8hjsS8HVuh gnrk7VmTe1tmgADwqDNNVZL8bNxkoDayfKg4uKbCsed0y2J4OBIR39iZGc4TjPXj cDb31cgSxB3xwsb0N/Aq9FT2f1fsZ6g= -----END CERTIFICATE-----Generated at Wed May 15 09:28:14 2024 by rpki-client on console-fra.rpki-client.org