$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: qXqSRW8UgX1g3cnnhbdLwC6XgV5CHmMbsFs1KBjCtl8= Subject key identifier: E5:8F:87:4F:08:30:84:A6:63:59:72:A8:02:F2:77:B1:FF:E3:E4:69 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 0324 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0320 Signing time: Wed 01 May 2024 03:21:36 +0000 Manifest this update: Wed 01 May 2024 03:21:36 +0000 Manifest next update: Wed 08 May 2024 03:21:36 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: qe7HuE+uW2sfRikqLW0jg6cN8diY/RuO3kkVw3Ca/eI=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: oPYfSqxkN8npABudY2l+Ic8/CeJazaNkfy3rG5MWBXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 804 (0x324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: May 1 03:21:36 2024 GMT Not After : May 8 03:21:36 2024 GMT Subject: CN=6631b540-52a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cc:50:be:2c:46:b0:ed:e6:45:5c:46:7b:be: 15:d5:11:b6:47:2a:1f:a0:fd:58:c5:99:e2:38:79: 3f:36:d0:8a:35:18:d1:36:a4:e4:e6:42:98:af:58: 8c:c1:8a:0c:86:66:1c:f9:66:e9:98:cf:1e:c0:35: 69:43:81:6c:5c:63:96:bc:d1:50:bb:69:8d:b0:6a: e1:6c:07:4d:0e:80:d3:ba:ab:37:c4:5a:10:7f:59: 1d:60:c3:6b:e0:db:61:ea:8e:33:1d:b8:15:92:41: 81:e2:09:7a:23:76:b1:33:f8:be:f8:1b:f7:58:dd: 67:f5:43:ac:03:06:89:ef:5b:6e:68:ad:3e:55:6d: ec:da:cf:fe:a5:59:0b:50:ee:fa:d2:a5:0d:bd:8b: 9a:8d:d3:2d:20:1b:54:3a:f0:5c:af:9e:71:80:47: d6:13:f2:14:2e:75:33:ec:63:cb:3b:1a:e3:71:1c: 34:29:0c:d6:a4:94:56:41:77:4a:09:b2:ac:4e:f6: a3:b0:c8:2c:48:32:f2:cf:8a:ab:b0:31:ea:0c:67: e4:de:f4:9c:a6:17:dc:52:e3:33:5d:02:ed:1b:5f: 83:94:be:d9:07:9e:58:60:05:90:cd:a5:c1:86:96: 63:73:3d:e2:49:ff:ca:ea:6c:3c:74:bf:38:de:5e: 87:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8F:87:4F:08:30:84:A6:63:59:72:A8:02:F2:77:B1:FF:E3:E4:69 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:38:15:18:c4:35:14:4e:8c:61:98:9a:15:e6:c4:58:d1:64: 3c:ea:3c:89:b3:66:70:cc:be:ea:0f:73:ab:f8:3e:20:04:3d: 3a:e7:c1:29:d7:a4:6b:8f:82:76:56:cb:46:1c:5a:81:e9:68: ed:c3:43:06:d3:51:01:fc:73:3d:7c:86:74:76:1b:8a:ea:fe: 37:8c:bf:23:d8:37:a4:bc:dd:4a:99:70:1b:b7:e8:0b:fd:00: 0b:2e:77:04:da:03:66:54:0c:7f:09:34:cd:c9:da:16:0c:ce: a7:90:16:d3:b5:0a:4c:e1:59:b5:c0:c0:4c:51:c8:57:ef:fc: 12:dd:9c:67:77:5d:a3:d1:b6:67:28:78:e1:35:01:a2:b6:23: 08:64:3c:66:0b:70:2b:56:6c:3f:66:c9:86:a7:be:e9:8e:5c: 74:a0:04:1f:97:7d:67:dc:87:f9:86:bc:e5:09:76:6a:cf:e0: 86:b9:6a:ff:5e:04:68:ac:aa:3a:e0:89:ec:21:56:0b:a3:66: 0b:c9:3d:13:00:32:6e:af:8b:64:37:3e:76:5b:89:9d:7d:67: 9a:f3:52:c6:03:4c:f3:d0:67:59:15:33:26:ff:62:34:de:37: 4b:14:4b:75:22:3d:72:4e:b1:a2:ec:e8:e7:36:1d:3a:a1:38: 10:72:a6:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjQwNTAxMDMyMTM2WhcNMjQwNTA4MDMyMTM2WjAYMRYwFAYD VQQDEw02NjMxYjU0MC01MmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8xQvixGsO3mRVxGe74V1RG2RyofoP1YxZniOHk/NtCKNRjRNqTk5kKYr1iM wYoMhmYc+WbpmM8ewDVpQ4FsXGOWvNFQu2mNsGrhbAdNDoDTuqs3xFoQf1kdYMNr 4Nth6o4zHbgVkkGB4gl6I3axM/i++Bv3WN1n9UOsAwaJ71tuaK0+VW3s2s/+pVkL UO760qUNvYuajdMtIBtUOvBcr55xgEfWE/IULnUz7GPLOxrjcRw0KQzWpJRWQXdK CbKsTvajsMgsSDLyz4qrsDHqDGfk3vScphfcUuMzXQLtG1+DlL7ZB55YYAWQzaXB hpZjcz3iSf/K6mw8dL843l6H/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWPh08I MISmY1lyqALyd7H/4+RpMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3OBUYxDUUToxhmJoV5sRY0WQ86jyJs2ZwzL7qD3Or+D4gBD0658Ep 16Rrj4J2VstGHFqB6Wjtw0MG01EB/HM9fIZ0dhuK6v43jL8j2DekvN1KmXAbt+gL /QALLncE2gNmVAx/CTTNydoWDM6nkBbTtQpM4Vm1wMBMUchX7/wS3Zxnd12j0bZn KHjhNQGitiMIZDxmC3ArVmw/ZsmGp77pjlx0oAQfl31n3If5hrzlCXZqz+CGuWr/ XgRorKo64InsIVYLo2YLyT0TADJur4tkNz52W4mdfWea81LGA0zz0GdZFTMm/2I0 3jdLFEt1Ij1yTrGi7OjnNh06oTgQcqYg -----END CERTIFICATE-----Generated at Wed May 1 04:49:28 2024 by rpki-client on console-ams.rpki-client.org