$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json) Hash identifier: cj3l2eWam4R4YLHCrt+CYGCCMVmJ0h2tfCVHpFmsx9E= Subject key identifier: E8:5F:DB:D9:F2:DF:E0:8E:20:D3:93:74:E1:ED:73:14:49:00:36:87 Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft Manifest number: 96 Signing time: Wed 15 May 2024 07:03:22 +0000 Manifest this update: Wed 15 May 2024 07:03:22 +0000 Manifest next update: Wed 22 May 2024 07:03:22 +0000 Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: /5QmclsMQFleWWOv0NbvbVNJfL7xDIPa4zFn2F64tis=) 2: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: 8ZQF99ttZOTUWn8RGxYCMJjT/UlHEgzr991KGflkzBs=) 3: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: 99Zxb7vaD5skm/Wji+NgKYTp+kFQviV/tRwO1/z8ZWo=) 4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: 4sja2KDglOPHlvxXAIDl6uJIrNWYcv3i/9rsdXyO1/U=) 5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: z8PyZSKkqE0OPDhgFdw2+5u40wblB/EVRusySHA4vow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Validity Not Before: May 15 07:03:22 2024 GMT Not After : May 22 07:03:22 2024 GMT Subject: CN=66445e3a-c9bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2a:87:de:98:ef:5c:b3:61:d1:17:1a:13:ef: 00:67:59:6a:77:d0:a1:d0:01:cb:93:c1:b7:fb:d9: 9a:40:cf:ac:fb:c2:04:94:33:02:df:5d:a1:18:a0: d2:7d:0d:05:51:10:26:52:a7:31:34:7d:51:eb:9d: c7:a8:ca:b3:54:91:17:93:46:4f:f2:3d:df:32:2f: 83:40:b5:aa:43:d3:70:fa:a4:f1:0d:69:9d:d1:2a: 18:de:46:45:c5:32:46:ba:be:7e:83:5e:a8:89:7c: 20:9e:92:6a:25:21:16:5d:65:72:eb:8b:13:72:73: bf:a1:eb:87:79:93:17:5b:9d:eb:35:13:1a:a4:1a: e4:e8:c5:a2:2a:de:8b:29:ff:23:3c:3a:2b:db:01: 8f:99:5d:32:00:1e:72:3e:20:a9:23:40:25:8b:6f: 3b:5b:b8:23:9a:db:e8:1e:a2:28:c3:60:24:4f:dd: aa:ac:13:67:bf:b2:87:b3:76:10:54:a6:22:b0:e5: a8:bc:e2:36:e8:59:f6:69:fc:38:ae:cc:17:9f:20: 90:c9:3e:88:22:3d:e1:c1:91:7c:4e:e5:7f:7e:5d: 47:79:82:5e:17:91:43:39:7b:86:4c:b1:07:58:15: 8a:fa:32:bb:b4:a6:c0:66:3b:09:1a:6f:55:ad:29: 28:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5F:DB:D9:F2:DF:E0:8E:20:D3:93:74:E1:ED:73:14:49:00:36:87 X509v3 Authority Key Identifier: keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:0f:16:bb:57:21:34:99:66:39:13:f5:2f:d7:2c:8c:c4:72: 1e:e7:4b:51:c6:76:8d:a3:cd:00:4f:20:23:e1:aa:02:a2:8b: 86:2a:3f:4d:1c:75:3e:d4:33:a9:47:e6:12:f1:a0:9e:8d:c6: 5c:3f:5f:0c:1d:2a:e4:05:91:3d:70:d4:cf:e1:27:cf:b0:ba: e6:94:fb:76:cf:87:f3:e2:12:a3:7d:19:98:18:96:fe:e2:9e: 00:77:e6:49:23:87:86:ca:25:ef:f7:9b:02:f5:08:6d:b2:80: 58:ed:f5:d8:91:36:32:fa:74:fc:69:1b:c3:e2:f3:7a:0d:55: a8:1d:bd:5a:30:1e:29:1d:49:6d:d3:b2:22:73:80:84:7b:96: ea:f1:cf:62:a9:e8:5d:41:3a:f1:60:47:5b:9e:30:e7:ce:fc: 36:a2:fc:70:34:2a:e4:7d:86:24:9a:f3:da:c3:71:39:00:77: 71:ff:4f:3a:14:a9:5f:bb:f3:f3:f4:64:2c:89:f0:60:d9:dc: 1e:e6:9d:de:bc:b2:8c:3a:10:52:c8:60:1a:41:20:90:18:fb: e2:ca:80:b5:9d:13:e2:05:c8:62:6a:0e:f9:49:4c:72:3c:b7: 1c:11:1a:59:e3:03:b2:67:55:7d:a6:83:77:eb:fb:1e:fe:8e: dd:31:c0:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE RDZDRjIyMDkwHhcNMjQwNTE1MDcwMzIyWhcNMjQwNTIyMDcwMzIyWjAYMRYwFAYD VQQDEw02NjQ0NWUzYS1jOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSqH3pjvXLNh0RcaE+8AZ1lqd9Ch0AHLk8G3+9maQM+s+8IElDMC312hGKDS fQ0FURAmUqcxNH1R653HqMqzVJEXk0ZP8j3fMi+DQLWqQ9Nw+qTxDWmd0SoY3kZF xTJGur5+g16oiXwgnpJqJSEWXWVy64sTcnO/oeuHeZMXW53rNRMapBrk6MWiKt6L Kf8jPDor2wGPmV0yAB5yPiCpI0Ali287W7gjmtvoHqIow2AkT92qrBNnv7KHs3YQ VKYisOWovOI26Fn2afw4rswXnyCQyT6IIj3hwZF8TuV/fl1HeYJeF5FDOXuGTLEH WBWK+jK7tKbAZjsJGm9VrSkoDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhf29ny 3+COINOTdOHtcxRJADaHMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0 QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N bzNUWnFEekV6NURkYlBJZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmDxa7VyE0mWY5E/Uv1yyMxHIe50tRxnaNo80ATyAj4aoCoouGKj9N HHU+1DOpR+YS8aCejcZcP18MHSrkBZE9cNTP4SfPsLrmlPt2z4fz4hKjfRmYGJb+ 4p4Ad+ZJI4eGyiXv95sC9QhtsoBY7fXYkTYy+nT8aRvD4vN6DVWoHb1aMB4pHUlt 07Iic4CEe5bq8c9iqehdQTrxYEdbnjDnzvw2ovxwNCrkfYYkmvPaw3E5AHdx/086 FKlfu/Pz9GQsifBg2dwe5p3evLKMOhBSyGAaQSCQGPviyoC1nRPiBchiag75SUxy PLccERpZ4wOyZ1V9poN36/se/o7dMcBI -----END CERTIFICATE-----Generated at Wed May 15 09:28:15 2024 by rpki-client on console-fra.rpki-client.org