$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: dTOsPvZqclvdJkLQljxXuHcIFwUNKOWSIFfBwYU13ck= Subject key identifier: 1B:AF:05:E0:82:25:95:35:34:16:A7:34:B5:92:63:58:A0:FE:7B:EB Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 5C Signing time: Fri 17 May 2024 08:03:58 +0000 Manifest this update: Fri 17 May 2024 08:03:58 +0000 Manifest next update: Fri 24 May 2024 08:03:58 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: 33gkbRzeREc4dxBqmm2xubIbIDC8nEu675W4UQlYZPU=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: c/0/yt3FRS1cH9Px4YMFXU1xo31vgchf5DTkjF585Rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: May 17 08:03:58 2024 GMT Not After : May 24 08:03:58 2024 GMT Subject: CN=66470f6e-f373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6b:5b:4b:27:55:ab:c8:b2:36:a4:10:d7:9e: 65:1d:37:8f:6d:77:a8:d8:bc:8e:f5:26:e3:d0:49: 6c:71:df:9d:db:dc:49:30:9a:fb:6b:27:45:52:90: ba:ec:e1:c1:ab:c2:26:07:46:3b:14:74:3e:21:85: 7a:3c:c5:d1:71:b1:e3:8c:06:ea:59:50:97:d1:b8: 68:3b:cb:13:00:6d:77:ae:0c:90:35:fe:36:f3:2a: 03:a7:d5:cf:20:40:90:d1:9c:8b:65:c7:6b:03:93: 87:b6:36:d9:0c:1b:32:3d:7d:e2:8a:27:a1:b5:c7: c7:49:23:71:22:b9:80:32:2d:2c:ca:79:c1:0e:0b: 6c:2f:42:40:a1:b6:26:6f:9c:5e:ae:d5:95:4c:a8: 1a:27:1e:c4:18:6c:6e:76:2d:5f:32:ef:5a:e4:1b: c5:ef:2a:6d:7f:42:eb:88:3c:2a:d9:4d:40:9a:5e: 85:22:72:16:5e:76:8c:20:d0:06:7a:99:31:52:bd: e4:17:01:fc:7d:87:9d:a2:7b:56:02:a6:25:ab:68: f7:e2:7d:be:10:52:78:65:f6:15:bf:cf:9b:bc:ef: f1:f2:4f:c9:d0:00:a2:d7:91:8e:32:77:b4:d6:32: ed:38:ac:a0:0e:01:51:b8:98:cd:a6:8f:de:d2:f4: 7f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AF:05:E0:82:25:95:35:34:16:A7:34:B5:92:63:58:A0:FE:7B:EB X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:80:74:ec:c5:84:31:80:07:39:31:66:fb:f0:e5:e4:1d:fd: 28:60:10:3b:d3:e8:2d:de:e9:09:80:cf:ba:fb:6b:d0:f5:77: e1:c8:40:b1:c4:0d:44:75:32:06:ea:16:88:03:21:e4:08:46: 28:70:b8:f2:16:91:44:21:ee:62:33:b8:82:80:bb:a6:fd:fc: 10:b7:99:02:43:e7:dc:16:cb:70:9f:83:7c:0b:2b:14:46:96: cc:a8:68:bb:5f:95:7c:ae:80:00:15:29:e5:5d:f7:e5:69:37: e3:59:b2:47:79:2a:be:56:65:c1:ba:10:48:44:54:46:95:f7: cb:be:1e:6a:bc:c4:84:54:06:8c:c4:23:42:2c:f1:64:a3:f6: 78:0b:8d:ef:8b:f9:b5:24:10:3d:b0:39:17:7a:b0:6c:96:b1: 33:1b:34:c1:6d:3c:76:86:5e:27:4d:fb:1d:36:bc:d0:87:d7: fa:02:fb:fd:59:d0:14:a0:a2:fd:87:d1:b4:9e:f0:41:98:f1: 4c:61:d1:f0:5e:ce:f8:b1:15:2e:71:df:0c:97:d4:74:30:e5: 60:65:26:ec:f4:4a:13:44:92:d2:e9:89:22:55:38:08:aa:e1: 84:1b:50:99:11:a7:c0:8a:ce:67:af:82:e1:f4:af:ab:33:b9: ec:e4:e0:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjlCMDExMC8GA1UEBRMoQTJBMjE3RDRBNDEyRkI1MzhGNUM5MUEzNEIzNkNFNzE4 NzlEREI2NTAeFw0yNDA1MTcwODAzNThaFw0yNDA1MjQwODAzNThaMBgxFjAUBgNV BAMTDTY2NDcwZjZlLWYzNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYa1tLJ1WryLI2pBDXnmUdN49td6jYvI71JuPQSWxx353b3EkwmvtrJ0VSkLrs 4cGrwiYHRjsUdD4hhXo8xdFxseOMBupZUJfRuGg7yxMAbXeuDJA1/jbzKgOn1c8g QJDRnItlx2sDk4e2NtkMGzI9feKKJ6G1x8dJI3EiuYAyLSzKecEOC2wvQkChtiZv nF6u1ZVMqBonHsQYbG52LV8y71rkG8XvKm1/QuuIPCrZTUCaXoUichZedowg0AZ6 mTFSveQXAfx9h52ie1YCpiWraPfifb4QUnhl9hW/z5u87/HyT8nQAKLXkY4yd7TW Mu04rKAOAVG4mM2mj97S9H8dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG68F4IIl lTU0Fqc0tZJjWKD+e+swHwYDVR0jBBgwFoAUoqIX1KQS+1OPXJGjSzbOcYed22Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGOUIwLzE0Qzk0OTZFOUYz RjExRUU4MDFCMUQ2MkM0RjlBRTAyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIy VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3FJWDFLUVMtMU9QWEpHalN6Yk9jWWVkMjJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG OUIwLzE0Qzk0OTZFOUYzRjExRUU4MDFCMUQ2MkM0RjlBRTAyL29xSVgxS1FTLTFP UFhKR2pTemJPY1llZDIyVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALiAdOzFhDGABzkxZvvw5eQd/ShgEDvT6C3e6QmAz7r7a9D1d+HIQLHE DUR1MgbqFogDIeQIRihwuPIWkUQh7mIzuIKAu6b9/BC3mQJD59wWy3Cfg3wLKxRG lsyoaLtflXyugAAVKeVd9+VpN+NZskd5Kr5WZcG6EEhEVEaV98u+Hmq8xIRUBozE I0Is8WSj9ngLje+L+bUkED2wORd6sGyWsTMbNMFtPHaGXidN+x02vNCH1/oC+/1Z 0BSgov2H0bSe8EGY8Uxh0fBezvixFS5x3wyX1HQw5WBlJuz0ShNEktLpiSJVOAiq 4YQbUJkRp8CKzmevguH0r6szuezk4O0= -----END CERTIFICATE-----Generated at Fri May 17 10:10:53 2024 by rpki-client on console-fra.rpki-client.org