$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: EE4cdDv645/bRcU03HL0M1rrhTSiCqnzhjFYFhsxIKI= Subject key identifier: 7A:5C:0A:1E:9E:9C:59:5E:57:0D:CF:F8:3B:00:8B:FC:83:E3:73:38 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3432 Signing time: Thu 02 May 2024 14:55:57 +0000 Manifest this update: Thu 02 May 2024 14:55:57 +0000 Manifest next update: Thu 09 May 2024 14:55:57 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: fEr4kejUOVfrELJ1IIJLt3ZEtD69xsboQlmhOli5+dw=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: GkEbPkSC+QT9/jHyDhftlTk72Onx7dag9CG0TAc5ngA=) 3: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: MtkEeyTu1ekXIdBLddYZlROZCkGRHxBCDUt1X1Vlb9M=) 4: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: TCLXExfkmuO4Dtzy4n4E0hd2z7bRoZNQTGBqPkoceig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: May 2 14:55:57 2024 GMT Not After : May 9 14:55:57 2024 GMT Subject: CN=6633a97d-993b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:31:82:fe:c6:df:a7:fe:ea:ff:7d:42:33:f3: 51:3e:42:8a:11:83:01:11:7a:52:76:be:ef:52:26: 70:51:17:4f:ef:56:bd:84:28:c0:d7:9c:15:a9:fc: 99:3b:0f:b8:d8:ec:08:87:23:27:3c:ac:84:cb:f2: 15:ae:b5:84:45:3d:05:f4:44:98:d3:72:d3:27:f3: 3a:42:81:e5:fd:31:0a:42:98:60:26:6f:9b:ce:38: 6d:49:b4:e5:f1:36:d8:24:09:12:2d:e6:f5:42:a5: a0:1f:52:cb:02:23:d6:33:17:77:94:e5:e7:a0:83: 24:de:d4:3c:c4:c0:84:87:53:ec:74:5f:2e:a7:4c: d9:28:da:d1:c2:78:b2:fa:6e:6a:b0:4c:85:8b:f8: 98:be:e4:7e:37:e2:77:20:89:a0:d1:65:ca:75:50: 6e:9e:33:cc:f4:58:5a:18:82:59:f6:13:11:d8:c2: 73:f3:28:fa:8b:72:74:59:d4:15:ec:64:b8:de:ca: 31:e3:b2:90:8d:33:03:8c:40:f3:3f:c2:e9:26:4b: 92:0a:d2:c3:75:f3:c7:89:18:77:4d:fb:57:63:ba: 47:a4:ae:d5:88:de:b5:29:da:b8:62:df:e1:2b:ad: 3a:d1:1f:7c:79:19:91:61:38:2c:56:e6:66:12:5c: 84:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5C:0A:1E:9E:9C:59:5E:57:0D:CF:F8:3B:00:8B:FC:83:E3:73:38 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:9d:60:3b:ad:a3:c1:33:98:14:06:4c:7e:df:84:14:ca:1e: ea:35:44:ce:ad:78:9d:1b:28:37:a5:e6:89:6e:40:ca:45:47: 24:06:8b:21:ca:66:cf:0b:a4:b1:bf:b6:3c:cc:b7:e8:fe:17: 85:d1:e3:b6:e9:9f:08:b2:3d:9b:3a:d9:ec:1a:5f:a5:c0:39: 59:47:c0:aa:75:6c:c5:4f:92:cc:1f:cc:87:59:c6:8f:03:0c: ce:5a:a4:68:1d:c0:35:e0:12:e8:ae:25:53:d4:f4:c4:98:f1: 2f:c3:19:f3:bd:2f:ab:74:e5:12:27:99:3a:c0:fe:01:18:49: 1a:cc:22:be:8b:71:84:d5:e6:4b:68:8e:36:e4:91:11:2b:62: 33:fb:c7:57:03:4c:20:c4:85:df:48:a2:44:5f:ba:6b:8e:32: 36:9c:c1:08:a4:a1:71:3d:c2:13:4b:fb:95:b8:96:50:32:f0: a2:9b:4c:d3:64:df:f4:c4:c3:b9:81:ff:08:cd:ae:1d:5d:ef: 0b:e9:0f:72:5e:6d:98:12:05:71:1a:fe:74:d4:46:f7:ac:b5: 4c:e6:83:5c:41:86:47:f9:38:bc:86:22:5c:de:29:a2:32:3e: eb:c6:bf:0e:0a:08:3d:9f:5b:14:84:98:5f:1d:22:a2:cb:9a: d1:d1:d9:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjQwNTAyMTQ1NTU3WhcNMjQwNTA5MTQ1NTU3WjAYMRYwFAYD VQQDEw02NjMzYTk3ZC05OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTGC/sbfp/7q/31CM/NRPkKKEYMBEXpSdr7vUiZwURdP71a9hCjA15wVqfyZ Ow+42OwIhyMnPKyEy/IVrrWERT0F9ESY03LTJ/M6QoHl/TEKQphgJm+bzjhtSbTl 8TbYJAkSLeb1QqWgH1LLAiPWMxd3lOXnoIMk3tQ8xMCEh1PsdF8up0zZKNrRwniy +m5qsEyFi/iYvuR+N+J3IImg0WXKdVBunjPM9FhaGIJZ9hMR2MJz8yj6i3J0WdQV 7GS43sox47KQjTMDjEDzP8LpJkuSCtLDdfPHiRh3TftXY7pHpK7ViN61Kdq4Yt/h K6060R98eRmRYTgsVuZmElyENwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpcCh6e nFleVw3P+DsAi/yD43M4MB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAunWA7raPBM5gUBkx+34QUyh7qNUTOrXidGyg3peaJbkDKRUckBosh ymbPC6Sxv7Y8zLfo/heF0eO26Z8Isj2bOtnsGl+lwDlZR8CqdWzFT5LMH8yHWcaP AwzOWqRoHcA14BLoriVT1PTEmPEvwxnzvS+rdOUSJ5k6wP4BGEkazCK+i3GE1eZL aI425JERK2Iz+8dXA0wgxIXfSKJEX7prjjI2nMEIpKFxPcITS/uVuJZQMvCim0zT ZN/0xMO5gf8Iza4dXe8L6Q9yXm2YEgVxGv501Eb3rLVM5oNcQYZH+Ti8hiJc3imi Mj7rxr8OCgg9n1sUhJhfHSKiy5rR0dnj -----END CERTIFICATE-----Generated at Thu May 2 17:43:49 2024 by rpki-client on console-fra.rpki-client.org