$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: Y7Ymm5AGSEi1sCAYJROxxhhCjUuC5r+yfbSLeA11dXs= Subject key identifier: 77:44:FA:83:91:0E:31:CB:B4:11:9C:72:95:21:9B:6C:3A:F5:1E:87 Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: 90 Signing time: Fri 17 May 2024 07:06:27 +0000 Manifest this update: Fri 17 May 2024 07:06:27 +0000 Manifest next update: Fri 24 May 2024 07:06:27 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: Ck/ypyLCSxn+LDfJ+dJA24o7dtx9KbT5NRtEMmn0Oro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: May 17 07:06:27 2024 GMT Not After : May 24 07:06:27 2024 GMT Subject: CN=664701f3-5f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:20:0d:0f:ec:48:ee:d8:68:3d:18:7f:2a:8d: 54:e2:f6:61:45:9b:cd:af:d0:6d:c5:cc:71:7f:6d: 22:23:18:31:df:b5:ea:f9:64:40:de:ff:cd:f7:bc: 32:e1:26:3e:ee:7d:74:65:c7:a6:58:61:fa:37:87: 6a:f8:a7:f5:66:31:d8:8f:e8:b1:9c:cd:79:f3:73: 54:2b:d9:4b:93:39:9e:b4:0e:ee:ec:9b:ef:06:23: ce:de:03:05:58:7d:76:f0:84:d1:ad:2d:05:0e:30: a2:cf:f3:0c:be:49:6e:3a:d0:9d:6b:db:f6:08:3e: 93:25:76:dd:3a:77:40:1a:71:af:23:30:eb:56:09: 34:8e:9f:3f:8d:4f:46:45:21:86:16:da:a0:f7:a7: 57:01:b2:60:13:af:61:b0:0e:cd:8c:eb:06:74:2f: 21:de:93:c8:eb:f2:46:82:67:2c:4c:1b:df:99:86: 8f:40:7c:50:fe:cf:71:48:02:09:7e:78:3c:d3:77: 07:d9:d3:67:4f:ce:eb:e8:cb:48:f3:89:07:92:bb: 34:5b:3d:48:cf:4a:28:df:a8:ca:ea:90:a0:f1:b4: 71:2b:83:23:a1:c9:e2:5b:f0:0b:e7:31:1f:48:c5: c3:55:dc:a3:0c:80:09:e2:02:d2:8f:58:28:b1:ad: e2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:44:FA:83:91:0E:31:CB:B4:11:9C:72:95:21:9B:6C:3A:F5:1E:87 X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:47:da:73:33:21:07:e7:e1:d7:12:d2:84:9a:3a:36:da:0c: fd:10:d6:65:5f:9d:b2:8d:79:b2:a0:1b:a4:64:ff:dd:37:41: 75:e3:a8:c6:f5:f6:fd:71:d9:05:6a:3b:21:55:6a:0f:d3:ce: 62:c9:df:4e:95:fa:86:e9:d9:1a:d9:60:a4:f5:b9:11:4f:27: 7e:10:3d:64:91:3e:b1:a9:77:0d:1b:08:5a:0f:2f:36:a9:1f: d1:f6:b8:5d:2d:e4:cb:8f:e2:43:dd:e1:5f:db:57:0e:d1:46: 77:2b:59:7a:fc:4f:3a:b6:f4:02:1a:e9:ad:c9:0a:90:c4:c9: 77:06:2a:ff:f6:d0:76:ff:6c:15:66:44:75:60:a7:5c:15:01: f8:ba:5c:76:30:36:8c:b7:96:5e:07:d8:e0:3f:15:98:8b:02: 0a:60:d7:ae:5c:45:7c:d0:24:ce:98:2f:32:fb:e0:b9:06:74: e5:a6:60:24:db:0e:9f:7a:eb:c5:53:3b:f8:52:06:03:e3:0b: 0b:46:03:75:c8:f8:f7:12:83:72:7c:7b:a5:fd:10:9f:c9:f8: c3:97:e8:ea:44:ff:ea:f5:dc:0c:d7:0f:81:f2:eb:55:ff:9d: cc:0d:a3:0c:ab:7a:c0:4f:91:9d:ef:da:f2:61:d1:d8:4c:49: 8c:3c:83:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjQwNTE3MDcwNjI3WhcNMjQwNTI0MDcwNjI3WjAYMRYwFAYD VQQDEw02NjQ3MDFmMy01ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SAND+xI7thoPRh/Ko1U4vZhRZvNr9Btxcxxf20iIxgx37Xq+WRA3v/N97wy 4SY+7n10ZcemWGH6N4dq+Kf1ZjHYj+ixnM1583NUK9lLkzmetA7u7JvvBiPO3gMF WH128ITRrS0FDjCiz/MMvkluOtCda9v2CD6TJXbdOndAGnGvIzDrVgk0jp8/jU9G RSGGFtqg96dXAbJgE69hsA7NjOsGdC8h3pPI6/JGgmcsTBvfmYaPQHxQ/s9xSAIJ fng803cH2dNnT87r6MtI84kHkrs0Wz1Iz0oo36jK6pCg8bRxK4MjocniW/AL5zEf SMXDVdyjDIAJ4gLSj1gosa3iEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdE+oOR DjHLtBGccpUhm2w69R6HMB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWR9pzMyEH5+HXEtKEmjo22gz9ENZlX52yjXmyoBukZP/dN0F146jG 9fb9cdkFajshVWoP085iyd9OlfqG6dka2WCk9bkRTyd+ED1kkT6xqXcNGwhaDy82 qR/R9rhdLeTLj+JD3eFf21cO0UZ3K1l6/E86tvQCGumtyQqQxMl3Bir/9tB2/2wV ZkR1YKdcFQH4ulx2MDaMt5ZeB9jgPxWYiwIKYNeuXEV80CTOmC8y++C5BnTlpmAk 2w6feuvFUzv4UgYD4wsLRgN1yPj3EoNyfHul/RCfyfjDl+jqRP/q9dwM1w+B8utV /53MDaMMq3rAT5Gd79ryYdHYTEmMPIMY -----END CERTIFICATE-----Generated at Fri May 17 08:52:54 2024 by rpki-client on console-ams.rpki-client.org