$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft File: owQJVBg5BUscPhXRmD19vYp9ZII.mft (raw, json) Hash identifier: GstxogB82TJlkVmGOoiUkAchUNGQw82YsTWoxAnvIUo= Subject key identifier: 43:5D:CD:6C:F0:1C:87:CC:4A:B9:A0:E1:01:9E:1A:65:FD:A0:F7:2E Authority key identifier: A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 Certificate issuer: /CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft Manifest number: 02D1 Signing time: Sun 05 May 2024 03:31:36 +0000 Manifest this update: Sun 05 May 2024 03:31:35 +0000 Manifest next update: Sun 12 May 2024 03:31:35 +0000 Files and hashes: 1: owQJVBg5BUscPhXRmD19vYp9ZII.crl (hash: YdCdm3KBgtoXmDXsma3JsKHtdCjwzc+e0JQHuCxoXYk=) 2: 521DCED89C5911EC97E58855C4F9AE02.roa (hash: 1nSOZrZSh7Fty0EmtVxpPkiDwmhLcKhSw4HA6o1gFPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Validity Not Before: May 5 03:31:35 2024 GMT Not After : May 12 03:31:35 2024 GMT Subject: CN=6636fd98-2870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:54:8a:12:a5:92:99:d7:d3:6c:3f:d8:16:62: b3:80:c6:b6:cb:76:00:a4:62:d0:d2:78:4d:3d:16: 69:a7:c9:73:3c:95:8e:aa:36:f9:55:6c:fc:39:ed: dc:01:4a:bf:bc:74:50:c2:ee:de:3d:4f:85:2f:9b: 64:d1:8c:30:4a:f9:52:c3:ee:80:40:56:46:51:c5: 43:3f:55:fc:73:44:12:95:11:e8:0c:44:de:b9:0a: 02:f3:36:bd:03:fc:93:e1:8d:fc:70:89:5d:10:61: 19:19:33:73:99:6d:b7:16:ea:31:fc:ac:7e:44:2a: 7b:94:c1:ab:6c:20:8d:b6:c1:8e:16:30:3b:f4:09: 06:37:f5:2e:95:c7:cf:8d:2e:eb:e9:13:75:f2:f3: 80:83:f7:aa:f9:df:88:2c:f0:6a:2e:6e:4b:a2:a0: 22:ea:8e:33:9b:c5:05:ae:43:9e:d4:4b:35:74:ec: 70:de:fd:f5:2b:c9:31:85:e1:7d:b1:90:85:22:09: 4c:89:6a:d3:c0:97:a4:59:41:c7:11:e7:d0:06:91: f7:1b:b4:a7:f5:51:10:c4:29:91:9b:66:30:ea:2e: 12:ba:47:92:2c:22:25:44:9f:9f:cc:5b:6a:bd:20: 9f:5b:15:bb:12:6e:d9:43:cb:ed:3a:ad:81:4b:7d: 61:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5D:CD:6C:F0:1C:87:CC:4A:B9:A0:E1:01:9E:1A:65:FD:A0:F7:2E X509v3 Authority Key Identifier: keyid:A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:65:e7:04:4d:b4:51:cc:b1:ef:52:4c:d0:4a:c1:bc:1f:29: 3f:6a:ff:ea:c7:43:75:84:8b:19:cd:9b:b3:70:ce:2e:13:3f: 97:68:89:4b:44:d1:ce:71:b9:8f:6e:89:1d:59:73:24:e8:72: 6e:a9:86:a1:c7:0d:d1:01:bf:af:98:76:c8:d7:8e:36:63:4a: 22:a4:d2:8e:f8:c2:70:c0:12:8d:59:f7:1b:a0:8d:72:ba:7a: 00:e0:63:8a:9a:82:c7:c5:45:51:57:af:8d:2a:b4:41:5b:bd: 06:27:e2:51:9a:31:14:da:ea:fc:31:94:9d:65:1f:1e:09:d8: d1:2f:67:07:e8:3d:3c:8a:25:9c:5e:61:79:d2:82:27:21:d2: 5b:cc:93:57:db:6e:e8:0a:d6:1a:7b:4d:1b:55:4a:a1:c9:66: 10:97:90:8c:9b:a8:ab:7a:e6:c4:72:83:03:97:e1:6d:bb:3d: bd:10:65:f4:c4:15:de:c6:03:ef:0f:9b:a3:dd:b7:8e:57:b2: 03:94:54:dc:a0:4e:d3:7c:40:55:48:ab:61:c4:d2:77:3a:8b: 1c:e7:9f:6d:84:72:de:de:da:89:62:8f:8d:59:2c:a0:a1:8f: 9e:6b:05:4a:aa:d7:f8:25:30:b8:27:7c:05:62:5b:4a:bd:ab: d2:40:52:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFMDMxMTAvBgNVBAUTKEEzMDQwOTU0MTgzOTA1NEIxQzNFMTVEMTk4M0Q3REJE OEE3RDY0ODIwHhcNMjQwNTA1MDMzMTM1WhcNMjQwNTEyMDMzMTM1WjAYMRYwFAYD VQQDEw02NjM2ZmQ5OC0yODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplSKEqWSmdfTbD/YFmKzgMa2y3YApGLQ0nhNPRZpp8lzPJWOqjb5VWz8Oe3c AUq/vHRQwu7ePU+FL5tk0YwwSvlSw+6AQFZGUcVDP1X8c0QSlRHoDETeuQoC8za9 A/yT4Y38cIldEGEZGTNzmW23Fuox/Kx+RCp7lMGrbCCNtsGOFjA79AkGN/UulcfP jS7r6RN18vOAg/eq+d+ILPBqLm5LoqAi6o4zm8UFrkOe1Es1dOxw3v31K8kxheF9 sZCFIglMiWrTwJekWUHHEefQBpH3G7Sn9VEQxCmRm2Yw6i4SukeSLCIlRJ+fzFtq vSCfWxW7Em7ZQ8vtOq2BS31hmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENdzWzw HIfMSrmg4QGeGmX9oPcuMB8GA1UdIwQYMBaAFKMECVQYOQVLHD4V0Zg9fb2KfWSC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUUwMy85OTZBN0U4ODlD NTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJVc2NQaFhSbUQxOXZZcDla SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293UUpWQmc1QlVzY1BoWFJtRDE5dllwOVpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUUwMy85OTZBN0U4ODlDNTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJV c2NQaFhSbUQxOXZZcDlaSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACZecETbRRzLHvUkzQSsG8Hyk/av/qx0N1hIsZzZuzcM4uEz+XaIlL RNHOcbmPbokdWXMk6HJuqYahxw3RAb+vmHbI1442Y0oipNKO+MJwwBKNWfcboI1y unoA4GOKmoLHxUVRV6+NKrRBW70GJ+JRmjEU2ur8MZSdZR8eCdjRL2cH6D08iiWc XmF50oInIdJbzJNX227oCtYae00bVUqhyWYQl5CMm6ireubEcoMDl+Ftuz29EGX0 xBXexgPvD5uj3beOV7IDlFTcoE7TfEBVSKthxNJ3Oosc559thHLe3tqJYo+NWSyg oY+eawVKqtf4JTC4J3wFYltKvavSQFKh -----END CERTIFICATE-----Generated at Sun May 5 04:34:57 2024 by rpki-client on console-fra.rpki-client.org