$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: HUOopogoFjVf6wlJJVSXsSGhKT8dko8czWSleIAivhQ= Subject key identifier: BF:24:4B:5A:48:16:7E:2E:D0:70:75:11:96:F2:8B:CA:6C:57:63:76 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0374 Signing time: Fri 03 May 2024 02:53:17 +0000 Manifest this update: Fri 03 May 2024 02:53:16 +0000 Manifest next update: Fri 10 May 2024 02:53:16 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: o4aMWjLsIXgVAHFz9SDEF0mlFfWtHH+GCSrXTP0+Mp4=) 2: 0B80B7885D7511ECB1D03353C4F9AE02.roa (hash: TY5wK3sITN+OKgt/XJL0req3LEPsgcIED4VdaLYdaoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 888 (0x378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: May 3 02:53:16 2024 GMT Not After : May 10 02:53:16 2024 GMT Subject: CN=6634519d-5da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ed:71:06:cc:31:03:5c:0d:72:e2:e6:d3:cc: 6a:c8:1c:80:e3:a4:73:ea:9b:cd:69:dc:42:ce:6c: 0c:ff:cf:52:36:cd:b1:13:fc:93:81:21:42:3a:ba: 3d:93:68:b5:87:21:ea:17:5f:69:21:c9:1e:ac:08: d3:3a:9c:2d:5f:0a:d9:f4:91:9c:2c:05:9f:28:d3: 23:50:5e:41:08:8e:a7:18:79:0d:f2:4e:90:1a:ec: 3e:86:e1:40:17:50:8e:b8:64:e2:b1:36:e8:a6:45: ef:30:38:93:f8:c2:e8:c3:44:86:b3:b1:53:07:7a: ab:a9:27:3c:cb:5c:3b:2d:f6:f6:88:53:46:dc:90: 46:98:5a:c0:69:27:3f:28:9a:89:61:88:51:a4:56: 08:f3:94:31:f1:cc:e8:3d:f2:26:2a:c9:a2:c0:92: 2c:68:cf:91:2b:5f:09:11:97:c4:59:66:ee:85:26: 35:c4:25:dc:02:0f:b7:6f:cd:77:fc:ed:1c:3e:b0: 31:b0:1f:3e:a1:65:74:a9:73:e2:1e:71:84:df:57: 64:93:80:90:33:dd:eb:50:64:3a:a8:38:3b:32:a9: 99:ae:1b:7e:50:54:0d:ee:2f:9f:5f:ed:0e:11:e8: 55:65:5c:93:c6:c9:5e:d6:a4:f8:ec:d1:9f:53:14: 0d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:24:4B:5A:48:16:7E:2E:D0:70:75:11:96:F2:8B:CA:6C:57:63:76 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:48:fb:3b:e9:78:eb:b7:c9:31:4b:b4:94:0c:38:2a:8b:ed: 54:fb:c1:c0:1b:06:e1:d0:4c:bf:ea:f7:73:69:85:70:3d:0f: d7:dc:23:65:89:c5:46:b2:23:54:fd:09:de:a9:f9:d9:13:2d: ed:c6:a5:f6:a7:14:99:7f:ee:96:db:8c:50:89:a7:d7:c4:b5: a8:94:a1:aa:ac:ea:0f:a6:f3:a0:90:01:65:d6:e6:be:71:58: db:95:b8:11:78:e0:49:d1:18:6e:b9:2e:31:95:ec:b7:e0:8e: b1:d8:c4:37:33:f4:c5:5a:9f:8c:9e:96:e5:42:12:3b:ec:8e: 2e:ef:86:d1:7e:9e:59:82:e5:13:6c:d9:23:b1:84:f7:dc:d9: c9:47:8a:ca:5e:95:3f:ca:ef:f5:e7:2b:a2:a4:ea:9f:a5:f3: 80:7f:16:c1:e9:0b:ce:e1:d6:11:41:41:52:5a:54:a4:1e:4d: 65:20:92:7c:29:28:87:92:77:9f:d2:d3:f6:2f:99:4d:68:6f: 63:3e:32:9a:f7:19:b5:95:01:aa:32:5a:c7:32:fd:2e:32:e4: a7:8c:73:4e:31:08:7c:8b:e1:d5:88:0c:9b:47:27:e4:9e:68: c4:9b:92:a4:d6:de:35:f1:3f:e9:eb:5d:60:f7:3d:b8:1c:ed: 88:96:7b:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjQwNTAzMDI1MzE2WhcNMjQwNTEwMDI1MzE2WjAYMRYwFAYD VQQDEw02NjM0NTE5ZC01ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzO1xBswxA1wNcuLm08xqyByA46Rz6pvNadxCzmwM/89SNs2xE/yTgSFCOro9 k2i1hyHqF19pIckerAjTOpwtXwrZ9JGcLAWfKNMjUF5BCI6nGHkN8k6QGuw+huFA F1COuGTisTbopkXvMDiT+MLow0SGs7FTB3qrqSc8y1w7Lfb2iFNG3JBGmFrAaSc/ KJqJYYhRpFYI85Qx8czoPfImKsmiwJIsaM+RK18JEZfEWWbuhSY1xCXcAg+3b813 /O0cPrAxsB8+oWV0qXPiHnGE31dkk4CQM93rUGQ6qDg7MqmZrht+UFQN7i+fX+0O EehVZVyTxsle1qT47NGfUxQNdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8kS1pI Fn4u0HB1EZbyi8psV2N2MB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGSPs76Xjrt8kxS7SUDDgqi+1U+8HAGwbh0Ey/6vdzaYVwPQ/X3CNl icVGsiNU/QneqfnZEy3txqX2pxSZf+6W24xQiafXxLWolKGqrOoPpvOgkAFl1ua+ cVjblbgReOBJ0RhuuS4xley34I6x2MQ3M/TFWp+MnpblQhI77I4u74bRfp5ZguUT bNkjsYT33NnJR4rKXpU/yu/15yuipOqfpfOAfxbB6QvO4dYRQUFSWlSkHk1lIJJ8 KSiHknef0tP2L5lNaG9jPjKa9xm1lQGqMlrHMv0uMuSnjHNOMQh8i+HViAybRyfk nmjEm5Kk1t418T/p611g9z24HO2Ilnsf -----END CERTIFICATE-----Generated at Fri May 3 04:45:29 2024 by rpki-client on console-fra.rpki-client.org