$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: +Ed7YjRGuiMhTbrRTsmZlWUCQ3G4NHRxCeGWrInsB6k= Subject key identifier: C8:90:0A:EA:2F:C2:CE:D1:BC:59:D4:90:FF:08:83:AE:86:8D:FB:13 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 01C5 Signing time: Sun 05 May 2024 04:32:41 +0000 Manifest this update: Sun 05 May 2024 04:32:40 +0000 Manifest next update: Sun 12 May 2024 04:32:40 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: 1h21/2k9KEcZrCb1ZJ961UvYPcvgzg1Ro7Rg5mOajBg=) 2: 98D755EC05B311ED99658959C4F9AE02.roa (hash: uwLp1/Q6G+FuSFkcfPepkB3cVRgLufL9+AUBfneegzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: May 5 04:32:40 2024 GMT Not After : May 12 04:32:40 2024 GMT Subject: CN=66370be8-484c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:06:6b:44:21:1d:16:ac:b3:87:b7:89:cc:f9: f6:ed:66:ec:d5:c6:67:24:42:b0:fb:38:74:5b:52: a8:7f:d8:a2:51:dd:60:6d:24:80:1b:e0:6c:c5:10: 25:37:5e:8e:33:34:db:35:48:fc:b0:8e:0c:97:8d: 1b:f5:20:3f:eb:1f:9d:5b:f9:f6:b4:3d:72:8c:8e: 5c:5b:0f:fd:a7:93:cc:fa:99:b9:2f:64:17:e4:42: dc:89:8a:74:48:83:23:af:58:1b:76:30:0e:02:6a: 24:88:19:9e:f3:c1:15:cc:25:67:ce:69:ca:cf:53: f0:be:7f:2d:8b:1c:78:7e:d6:d8:4f:60:1c:14:62: 8c:19:d7:c4:8d:10:8b:f7:80:f6:78:31:d4:56:94: 03:73:cf:3e:83:b3:b3:4d:15:2b:02:cf:49:e4:be: ee:6a:2f:e1:a4:a6:aa:dd:69:ca:0b:4c:39:85:fb: 76:bd:19:c0:4e:fa:fb:2b:00:45:95:3d:17:5a:2a: b1:60:4a:e9:08:37:47:e7:94:a6:ed:32:30:fe:0f: 33:c3:93:11:20:f6:54:69:4c:1f:02:2d:3a:20:fa: d0:1e:1f:b5:72:0f:9f:a0:f1:82:be:5c:b2:43:cd: 77:17:33:50:9a:7b:14:0f:06:13:bb:20:9b:0a:63: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:90:0A:EA:2F:C2:CE:D1:BC:59:D4:90:FF:08:83:AE:86:8D:FB:13 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:0a:58:75:b5:21:86:4c:46:f4:11:3c:6d:c7:48:b2:61:b0: be:77:22:17:d9:87:d4:df:c7:4b:6a:20:29:00:e1:04:9e:37: 7a:4c:6e:4d:0e:1e:ea:9c:78:7e:be:91:b6:bf:6f:04:12:52: ae:10:52:8c:15:30:81:16:81:99:55:ac:15:12:2b:54:9f:05: fb:da:14:97:4c:e4:fb:6e:6c:48:a7:d8:72:19:7a:c9:ff:48: bd:7e:ba:e8:cd:3a:fe:80:7b:e0:d0:97:c8:a0:e4:7b:2f:bc: 7c:e7:c4:a6:ef:b4:a8:62:ec:9e:8b:73:b9:82:d6:38:bd:ce: b4:b5:c1:c4:35:18:96:fa:84:37:e8:70:4c:5b:7e:93:a0:5c: 3d:a9:96:51:41:c5:ae:4a:e4:81:85:c0:bf:ff:41:b4:40:8b: a7:74:f5:d0:ea:54:c0:77:02:ac:17:ff:94:ea:2b:91:5b:9a: cf:5e:65:34:42:ad:cf:e9:09:0c:29:db:db:1b:32:f8:e2:5d: c2:e3:cb:af:b9:dd:aa:8c:4b:4a:3b:64:7a:d6:80:7e:e9:69: a4:1f:30:5c:3f:c8:0c:4b:fc:74:6c:73:15:3f:75:e4:3e:02: 65:87:5b:64:be:eb:a7:dd:f9:0d:a3:39:ef:55:98:fa:20:26: 9c:93:79:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjQwNTA1MDQzMjQwWhcNMjQwNTEyMDQzMjQwWjAYMRYwFAYD VQQDEw02NjM3MGJlOC00ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQZrRCEdFqyzh7eJzPn27Wbs1cZnJEKw+zh0W1Kof9iiUd1gbSSAG+BsxRAl N16OMzTbNUj8sI4Ml40b9SA/6x+dW/n2tD1yjI5cWw/9p5PM+pm5L2QX5ELciYp0 SIMjr1gbdjAOAmokiBme88EVzCVnzmnKz1Pwvn8tixx4ftbYT2AcFGKMGdfEjRCL 94D2eDHUVpQDc88+g7OzTRUrAs9J5L7uai/hpKaq3WnKC0w5hft2vRnATvr7KwBF lT0XWiqxYErpCDdH55Sm7TIw/g8zw5MRIPZUaUwfAi06IPrQHh+1cg+foPGCvlyy Q813FzNQmnsUDwYTuyCbCmMkUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiQCuov ws7RvFnUkP8Ig66GjfsTMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHClh1tSGGTEb0ETxtx0iyYbC+dyIX2YfU38dLaiApAOEEnjd6TG5N Dh7qnHh+vpG2v28EElKuEFKMFTCBFoGZVawVEitUnwX72hSXTOT7bmxIp9hyGXrJ /0i9frrozTr+gHvg0JfIoOR7L7x858Sm77SoYuyei3O5gtY4vc60tcHENRiW+oQ3 6HBMW36ToFw9qZZRQcWuSuSBhcC//0G0QIundPXQ6lTAdwKsF/+U6iuRW5rPXmU0 Qq3P6QkMKdvbGzL44l3C48uvud2qjEtKO2R61oB+6WmkHzBcP8gMS/x0bHMVP3Xk PgJlh1tkvuun3fkNoznvVZj6ICack3lo -----END CERTIFICATE-----Generated at Sun May 5 05:30:51 2024 by rpki-client on console-ams.rpki-client.org