$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: Z4sQIh65ecFheGBf1ttvJNbUnS8q7t1Nf7YOQTeFKcY= Subject key identifier: 1E:51:D8:5C:69:B7:A2:F8:37:46:44:E6:04:E2:9B:85:48:73:8D:7C Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 33C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 33BE Signing time: Sat 04 May 2024 15:02:31 +0000 Manifest this update: Sat 04 May 2024 15:02:30 +0000 Manifest next update: Sat 11 May 2024 15:02:30 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: byKujxdIsjG7un/OEb3bXudF41gLJl46wpOqwwjGH44=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: As2LymjqIDH0cOS124NvImUruw0ZeoIg/jht9yiAhvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13249 (0x33c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: May 4 15:02:30 2024 GMT Not After : May 11 15:02:30 2024 GMT Subject: CN=66364e07-983a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:43:be:1f:db:1c:8c:7d:45:24:91:64:fc: 07:a0:76:b6:a6:d0:d0:33:77:e6:fc:57:0a:32:12: 6e:85:f4:74:f2:36:29:b6:d1:85:46:fc:36:4f:d9: 34:f9:49:58:99:03:22:f2:91:9c:a5:d8:58:a1:3b: 95:94:f4:ae:89:30:cd:92:3d:79:0a:0a:be:5b:5d: 7e:60:12:0d:74:7c:81:36:ac:57:3f:ee:c3:5d:ff: 16:6d:11:4e:64:0e:21:3e:2d:72:3f:4c:ed:c1:6f: e8:41:40:ac:54:9f:6e:7f:a5:0e:4f:2b:f6:63:1f: 20:3d:bf:19:96:87:7f:57:08:a9:26:c2:98:58:eb: fe:0a:63:4f:f7:89:fa:c6:60:70:de:7e:06:a6:06: d1:d4:dc:a9:41:0e:25:b4:3d:e9:e8:8c:85:5e:ef: 75:aa:ef:6d:e4:29:ca:22:b7:16:b7:9d:87:46:b6: 13:41:af:94:ee:3c:9c:54:ad:96:6e:73:e9:31:52: 24:74:2e:7c:5f:b1:15:93:b5:e7:f2:24:05:74:3b: 42:04:20:9b:4b:70:0e:9c:87:63:9c:f6:88:fc:59: 4b:a7:12:d2:61:f5:9d:3b:c9:8e:0a:4b:bf:d3:c4: fc:c7:21:a6:a3:b8:40:27:eb:2c:28:64:40:26:50: 00:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:51:D8:5C:69:B7:A2:F8:37:46:44:E6:04:E2:9B:85:48:73:8D:7C X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:42:84:23:e0:ed:c3:a9:17:b1:59:8b:bf:c8:b6:7a:37:ec: 71:bd:b6:e4:a0:ed:cb:2e:b7:b6:18:13:3a:bf:f3:3e:43:fc: ef:a3:08:22:fc:09:00:68:94:55:32:50:af:3c:6d:b6:c7:ad: f9:e7:e8:95:9d:75:36:3e:83:6a:87:1c:51:63:d7:82:c6:05: 90:63:32:8a:9d:7b:31:1d:bf:0d:7c:e0:94:6d:ea:b7:65:5e: a2:a5:b4:7a:5e:e1:a0:0e:90:e9:3a:7b:70:35:23:db:da:9f: e0:a6:9d:2b:e0:a9:bf:0e:15:6e:fd:42:75:6c:dd:13:e1:7b: 97:31:43:bd:f5:f2:44:83:35:cc:a1:74:8b:a9:7b:76:a1:1c: 9d:b7:f6:04:a8:42:63:e5:64:03:dc:4d:80:b9:e1:ae:5e:bf: 9f:b1:c6:53:87:56:fb:b9:48:3b:24:b2:1c:85:d4:ae:6e:f7: c7:85:2c:ae:3f:01:88:e8:6b:b8:70:3f:86:0a:44:6e:82:b4: 8f:1d:38:90:82:b8:64:54:12:90:ce:2a:4c:9a:c1:35:02:96: 9b:05:39:c8:2b:2a:66:63:a5:01:e7:11:a8:c0:4f:ad:fb:4b: 51:3f:69:86:8a:b4:36:58:ba:81:f2:f2:a5:e5:ce:66:57:7f: f1:0e:18:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjQwNTA0MTUwMjMwWhcNMjQwNTExMTUwMjMwWjAYMRYwFAYD VQQDEw02NjM2NGUwNy05ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNVDvh/bHIx9RSSRZPwHoHa2ptDQM3fm/FcKMhJuhfR08jYpttGFRvw2T9k0 +UlYmQMi8pGcpdhYoTuVlPSuiTDNkj15Cgq+W11+YBINdHyBNqxXP+7DXf8WbRFO ZA4hPi1yP0ztwW/oQUCsVJ9uf6UOTyv2Yx8gPb8Zlod/VwipJsKYWOv+CmNP94n6 xmBw3n4GpgbR1NypQQ4ltD3p6IyFXu91qu9t5CnKIrcWt52HRrYTQa+U7jycVK2W bnPpMVIkdC58X7EVk7Xn8iQFdDtCBCCbS3AOnIdjnPaI/FlLpxLSYfWdO8mOCku/ 08T8xyGmo7hAJ+ssKGRAJlAAMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5R2Fxp t6L4N0ZE5gTim4VIc418MB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALQoQj4O3DqRexWYu/yLZ6N+xxvbbkoO3LLre2GBM6v/M+Q/zvowgi /AkAaJRVMlCvPG22x6355+iVnXU2PoNqhxxRY9eCxgWQYzKKnXsxHb8NfOCUbeq3 ZV6ipbR6XuGgDpDpOntwNSPb2p/gpp0r4Km/DhVu/UJ1bN0T4XuXMUO99fJEgzXM oXSLqXt2oRydt/YEqEJj5WQD3E2AueGuXr+fscZTh1b7uUg7JLIchdSubvfHhSyu PwGI6Gu4cD+GCkRugrSPHTiQgrhkVBKQzipMmsE1ApabBTnIKypmY6UB5xGowE+t +0tRP2mGirQ2WLqB8vKl5c5mV3/xDhja -----END CERTIFICATE-----Generated at Sat May 4 15:45:50 2024 by rpki-client on console-fra.rpki-client.org