$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: pRRDfBZLKuM+jGlRuxRrviy+b0DgZum0aluruubUpnw= Subject key identifier: CE:21:46:B1:30:95:B2:54:8C:89:CE:8C:C1:20:DD:86:B1:7A:89:D2 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0102 Signing time: Sun 05 May 2024 05:38:49 +0000 Manifest this update: Sun 05 May 2024 05:38:48 +0000 Manifest next update: Sun 12 May 2024 05:38:48 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: 05zkGjbRc2Vmz7mJ8V856aWpypkLWzpZTHqf5UVtV3U=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: tJt+79667Wr9dXwlzSf6K30jIUocSu9oo3nmE+lxR9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: May 5 05:38:48 2024 GMT Not After : May 12 05:38:48 2024 GMT Subject: CN=66371b69-dfc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ae:af:21:95:50:0d:0a:59:d9:63:d5:25:a7: 74:f8:36:44:d7:3a:a4:6f:50:5e:11:81:f2:e8:4e: 3f:04:5c:02:f9:69:b8:c3:39:ed:74:cb:88:c4:ec: 39:f1:80:77:1a:ff:11:be:d1:97:c8:2a:b6:42:0b: 95:b8:40:d8:6c:a4:78:e9:26:e0:24:6a:e8:fc:8e: d3:85:15:6f:1f:4a:ce:e4:f9:cf:54:5d:5c:8b:61: ff:58:35:f7:1c:c9:e5:ff:bf:37:23:e4:86:2c:75: ac:67:9a:4b:41:32:6e:77:c3:13:5d:03:79:08:f3: b2:a8:3a:72:4b:7a:62:40:49:de:19:ad:5f:c9:0f: d4:19:cb:66:8c:16:49:f1:e3:36:8d:aa:f6:f7:52: cf:0c:ce:bf:71:75:c5:6c:68:bf:1c:2b:1f:16:c6: f2:bf:0f:4d:ec:6a:b8:1d:22:29:8d:e5:93:8a:00: 14:0a:86:bc:9d:fa:ea:3b:7b:bb:52:f4:5a:ea:e4: 9e:95:d5:8b:f1:16:69:ef:78:e5:6c:d6:b3:3f:08: 32:d2:c5:cb:ec:d5:8d:73:e6:fc:27:d7:80:35:b5: 8d:12:ef:5b:7c:40:59:d0:bf:4a:84:bc:76:f4:37: 06:ea:cd:9a:5d:19:fa:c1:c0:1c:ad:04:f8:9e:d6: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:21:46:B1:30:95:B2:54:8C:89:CE:8C:C1:20:DD:86:B1:7A:89:D2 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:75:6b:87:a2:10:ca:be:84:9a:8c:8f:5a:ef:5a:37:7b:09: 82:82:0b:c0:9d:53:a5:94:68:a5:12:ee:fe:12:25:19:50:f7: 64:97:71:01:9d:37:8f:65:92:7e:45:95:b1:6d:e5:33:45:1a: 69:67:3d:7e:62:00:ce:9b:be:26:f3:2d:5a:25:94:43:91:27: 1f:37:37:a1:bf:2a:80:aa:a7:a4:66:8d:85:09:51:da:67:ea: 9f:61:ae:52:ff:76:19:a5:ab:e1:15:1e:e4:aa:6a:9b:9a:68: 86:9d:26:b0:86:58:9d:06:0e:30:2c:67:78:8f:6c:3a:25:f8: 16:d5:81:18:fb:4b:1d:0c:7f:4a:1c:81:91:b3:eb:f6:0b:53: af:57:da:6b:db:51:b7:1d:ee:7d:5a:6d:9f:f0:40:15:4a:7b: b7:7b:53:62:bb:57:3b:a5:a1:fc:bf:e2:3a:9f:fd:cb:20:e2: d4:71:3a:84:da:9c:b8:53:7f:55:7e:ec:e0:48:e7:9b:e7:a0: 83:8d:fe:09:f7:e8:fb:ab:73:93:08:d7:ea:78:3a:1b:02:a6: fc:4b:6e:a6:08:3d:59:55:1e:d1:aa:bd:ec:80:a1:7e:1d:bb: b3:dd:89:c2:76:b6:0f:51:28:6c:70:02:ed:ee:10:c3:42:5b: e3:15:8f:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjQwNTA1MDUzODQ4WhcNMjQwNTEyMDUzODQ4WjAYMRYwFAYD VQQDEw02NjM3MWI2OS1kZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqK6vIZVQDQpZ2WPVJad0+DZE1zqkb1BeEYHy6E4/BFwC+Wm4wzntdMuIxOw5 8YB3Gv8RvtGXyCq2QguVuEDYbKR46SbgJGro/I7ThRVvH0rO5PnPVF1ci2H/WDX3 HMnl/783I+SGLHWsZ5pLQTJud8MTXQN5CPOyqDpyS3piQEneGa1fyQ/UGctmjBZJ 8eM2jar291LPDM6/cXXFbGi/HCsfFsbyvw9N7Gq4HSIpjeWTigAUCoa8nfrqO3u7 UvRa6uSeldWL8RZp73jlbNazPwgy0sXL7NWNc+b8J9eANbWNEu9bfEBZ0L9KhLx2 9DcG6s2aXRn6wcAcrQT4ntbPZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4hRrEw lbJUjInOjMEg3YaxeonSMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjdWuHohDKvoSajI9a71o3ewmCggvAnVOllGilEu7+EiUZUPdkl3EB nTePZZJ+RZWxbeUzRRppZz1+YgDOm74m8y1aJZRDkScfNzehvyqAqqekZo2FCVHa Z+qfYa5S/3YZpavhFR7kqmqbmmiGnSawhlidBg4wLGd4j2w6JfgW1YEY+0sdDH9K HIGRs+v2C1OvV9pr21G3He59Wm2f8EAVSnu3e1Niu1c7paH8v+I6n/3LIOLUcTqE 2py4U39VfuzgSOeb56CDjf4J9+j7q3OTCNfqeDobAqb8S26mCD1ZVR7Rqr3sgKF+ Hbuz3YnCdrYPUShscALt7hDDQlvjFY9p -----END CERTIFICATE-----Generated at Sun May 5 06:13:37 2024 by rpki-client on console-ams.rpki-client.org