$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft File: oAM_SUNjDclOLd9fKmuI6GZGGuc.mft (raw, json) Hash identifier: yM2r2Qiwwe3XenW0tBsu7MKcMv7x004tmb+Tj7i2zmY= Subject key identifier: FB:73:9B:5B:82:06:58:32:59:05:F2:06:80:69:8F:93:95:35:2B:8F Authority key identifier: A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 Certificate issuer: /CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft Manifest number: 10 Signing time: Wed 15 May 2024 09:01:23 +0000 Manifest this update: Wed 15 May 2024 09:01:23 +0000 Manifest next update: Wed 22 May 2024 09:01:23 +0000 Files and hashes: 1: oAM_SUNjDclOLd9fKmuI6GZGGuc.crl (hash: FPEqjgTNGc2yrdh+bgdu1RLYZvS2yippWttRbIfzF8w=) 2: 3C9EEAEAFD7F11EE80AFB05DC4F9AE02.roa (hash: pABTBanLSYzAhPD0hBNEEi3ewEmiL4cKfhpiegHFtgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 09:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Validity Not Before: May 15 09:01:23 2024 GMT Not After : May 22 09:01:23 2024 GMT Subject: CN=664479e3-a109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:86:b6:6c:8c:ec:d1:5b:62:78:a5:84:ee:cc: 62:e8:94:23:80:de:4b:54:ca:27:fd:24:7b:e0:08: 56:22:06:64:ca:b4:e0:cc:69:d6:c5:37:4a:81:68: 8c:46:34:59:b1:52:b7:30:12:a2:28:27:ef:e7:94: 82:df:7b:c9:bd:20:4c:75:c4:12:5e:60:0a:cd:5f: 68:fb:c1:0c:1c:98:35:0e:cb:c9:16:6b:28:86:8d: 26:31:00:ce:49:16:e3:09:af:a4:55:3a:88:2a:02: a4:4d:7d:83:48:d4:84:c2:bd:8c:e9:7c:6e:03:6f: 8a:12:3e:a0:76:2e:7d:9a:43:36:61:c6:1e:2b:4c: cc:98:67:f1:4f:b8:1e:bd:96:0a:61:68:7b:da:5f: df:a5:66:77:c2:01:24:cd:13:53:a6:c5:9c:48:45: a4:18:c4:ab:1a:37:57:a3:74:f4:64:95:1c:bc:e5: d1:f2:af:f9:b3:16:0b:c3:95:d8:37:7a:1b:69:7a: af:90:0e:cc:29:87:ed:b2:5d:ec:05:4e:15:c6:dc: 1e:60:27:08:f0:40:52:c0:ea:79:30:03:e8:71:81: 23:26:20:57:fd:13:f5:b0:21:18:5b:64:dc:8e:e3: 1b:1a:27:9d:a7:39:d2:d3:ff:ff:22:23:85:a2:e0: 46:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:9B:5B:82:06:58:32:59:05:F2:06:80:69:8F:93:95:35:2B:8F X509v3 Authority Key Identifier: keyid:A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:5d:54:ff:df:e1:c5:23:7f:a9:22:70:46:bd:ff:3f:b5:48: a9:ca:e9:87:5a:e4:e4:7c:a9:78:cc:9a:e8:af:54:65:cb:5e: 76:86:0a:61:f0:52:47:48:4e:c7:34:dd:6c:21:0b:bf:ec:4d: e0:b2:61:cb:9d:7b:2c:02:80:d8:3c:14:f7:cb:a8:21:96:f8: 03:c7:01:ef:87:69:40:28:14:5d:d0:b0:2a:a9:ea:d7:08:88: f8:70:14:94:c8:1e:03:88:33:6c:93:d0:43:4c:61:a8:b4:b0: ab:23:7d:8c:16:a7:f2:eb:f6:f7:d0:1c:a2:4b:63:0d:d0:b4: 30:b6:ba:5f:d6:a2:2a:23:52:b6:9e:30:43:88:6e:c6:c0:c5: 9a:26:62:48:df:23:e2:98:bb:fa:72:37:5a:bd:8a:cf:c9:95: d9:4a:81:2a:ce:f1:fe:81:38:77:53:8c:6d:25:b0:c7:86:c8: 1b:3e:7f:64:c9:8d:9a:71:28:2e:86:61:41:fd:16:af:ad:fa: 5d:27:3c:dd:d9:f7:47:27:f3:6d:a8:40:8b:42:a1:d3:5e:de: e0:fc:47:5e:3f:41:96:df:38:55:a4:94:5d:ce:80:95:50:f3: 6e:9c:33:3c:cc:0d:13:c7:09:d5:68:6f:1c:88:f8:46:c0:22: c2:a2:b5:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzBGMjExMC8GA1UEBRMoQTAwMzNGNDk0MzYzMERDOTRFMkRERjVGMkE2Qjg4RTg2 NjQ2MUFFNzAeFw0yNDA1MTUwOTAxMjNaFw0yNDA1MjIwOTAxMjNaMBgxFjAUBgNV BAMTDTY2NDQ3OWUzLWExMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqhrZsjOzRW2J4pYTuzGLolCOA3ktUyif9JHvgCFYiBmTKtODMadbFN0qBaIxG NFmxUrcwEqIoJ+/nlILfe8m9IEx1xBJeYArNX2j7wQwcmDUOy8kWayiGjSYxAM5J FuMJr6RVOogqAqRNfYNI1ITCvYzpfG4Db4oSPqB2Ln2aQzZhxh4rTMyYZ/FPuB69 lgphaHvaX9+lZnfCASTNE1OmxZxIRaQYxKsaN1ejdPRklRy85dHyr/mzFgvDldg3 ehtpeq+QDswph+2yXewFThXG3B5gJwjwQFLA6nkwA+hxgSMmIFf9E/WwIRhbZNyO 4xsaJ52nOdLT//8iI4Wi4Ea9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+3ObW4IG WDJZBfIGgGmPk5U1K48wHwYDVR0jBBgwFoAUoAM/SUNjDclOLd9fKmuI6GZGGucw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMEYyLzdGMzNFRTI0RkQ3 RTExRUVBMUIzNTM1Q0M0RjlBRTAyL29BTV9TVU5qRGNsT0xkOWZLbXVJNkdaR0d1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0FNX1NVTmpEY2xPTGQ5ZkttdUk2R1pHR3VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD MEYyLzdGMzNFRTI0RkQ3RTExRUVBMUIzNTM1Q0M0RjlBRTAyL29BTV9TVU5qRGNs T0xkOWZLbXVJNkdaR0d1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKRdVP/f4cUjf6kicEa9/z+1SKnK6Yda5OR8qXjMmuivVGXLXnaGCmHw UkdITsc03WwhC7/sTeCyYcudeywCgNg8FPfLqCGW+APHAe+HaUAoFF3QsCqp6tcI iPhwFJTIHgOIM2yT0ENMYai0sKsjfYwWp/Lr9vfQHKJLYw3QtDC2ul/WoiojUrae MEOIbsbAxZomYkjfI+KYu/pyN1q9is/JldlKgSrO8f6BOHdTjG0lsMeGyBs+f2TJ jZpxKC6GYUH9Fq+t+l0nPN3Z90cn822oQItCodNe3uD8R14/QZbfOFWklF3OgJVQ 826cMzzMDRPHCdVobxyI+EbAIsKitRA= -----END CERTIFICATE-----Generated at Wed May 15 11:17:44 2024 by rpki-client on console-ams.rpki-client.org