$ rpki-client -vvf rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft File: oAONXyzMSsJeuvdxJC50MA_PeCw.mft (raw, json) Hash identifier: 0J6tpty7aZk7A+s6XTdjBAa4EZed/f8XowsWCtAK678= Subject key identifier: 0F:D0:A2:5C:60:9F:A7:2B:F1:26:87:B1:25:F7:1B:9B:84:DB:0D:5F Authority key identifier: A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C Certificate issuer: /CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft Manifest number: 08FC Signing time: Thu 02 May 2024 21:23:25 +0000 Manifest this update: Thu 02 May 2024 21:23:25 +0000 Manifest next update: Thu 09 May 2024 21:23:25 +0000 Files and hashes: 1: oAONXyzMSsJeuvdxJC50MA_PeCw.crl (hash: JyAUQnnNguphssqXvhmznm3MQRScAiOkeybYC94msyk=) 2: 1D86F90A988D11EABE02F23DC4F9AE02.roa (hash: 2i5tzweDlq0zwqxpJQEjncKMamsUL98S0QrfMuLBr/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Validity Not Before: May 2 21:23:25 2024 GMT Not After : May 9 21:23:25 2024 GMT Subject: CN=6634044d-5ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:df:0e:5e:70:d3:95:bc:37:96:b2:f7:32: 85:70:65:46:00:84:3a:3e:fa:84:dc:88:79:5d:1f: 9e:af:f8:f6:84:33:9a:1f:67:f6:76:2e:6c:7a:60: 9f:94:c4:b0:79:34:af:e7:f7:ff:75:65:ce:5f:f8: f0:91:55:ae:5e:37:ac:89:85:06:d9:67:bd:ed:ff: ea:9f:5e:92:e4:e6:0d:b8:d6:63:3b:0d:41:32:e5: a5:42:33:e1:48:3b:55:0b:8d:d0:a2:54:46:46:85: fc:70:7c:f3:76:e8:16:a5:9c:cf:5f:35:04:72:00: bb:38:25:c3:fb:48:52:dc:9a:c6:3b:a1:23:d2:c4: 32:a6:02:b9:0d:f4:d0:cf:ed:b2:00:d1:af:e3:fa: 86:2f:fa:e0:ba:b0:90:00:1c:e2:e6:5c:af:fd:88: 40:57:37:27:77:62:ff:14:94:53:e8:f5:d6:14:0e: 5f:20:f2:01:21:c2:aa:36:1b:a5:08:3f:5b:ad:b9: d5:d4:50:92:20:97:3d:aa:ab:b8:cf:fd:57:03:58: 82:df:f9:f3:d1:1e:94:51:3a:c2:10:db:3b:ef:7c: bd:9b:55:9a:3d:f0:c7:f1:9b:69:eb:a1:be:36:43: 0e:79:d2:dc:53:be:21:11:c1:52:e6:13:85:a5:8b: e7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D0:A2:5C:60:9F:A7:2B:F1:26:87:B1:25:F7:1B:9B:84:DB:0D:5F X509v3 Authority Key Identifier: keyid:A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ae:5e:3e:d7:af:d1:06:16:cb:da:df:ea:1a:0b:5f:45:8b: f2:70:96:81:72:f5:b9:b9:7e:60:1b:cc:0b:81:14:26:b8:e8: 06:e5:ec:19:e5:84:ed:36:03:51:3b:f0:2a:d8:b3:1a:0a:00: ad:f2:5a:fb:0e:09:c8:e5:ec:8c:f2:ac:fc:38:40:f6:63:9e: cf:5d:d1:c6:ae:09:99:f7:96:38:a9:a3:a0:cc:46:bd:cf:9b: 93:1f:2b:0f:1b:73:69:0e:00:97:6f:d3:e5:d8:4c:81:d7:9c: 3b:83:c3:84:5b:fc:5f:f6:0e:3d:29:2a:1a:d5:b5:a1:25:6e: 9d:cd:3b:07:e4:7d:eb:39:47:18:cf:a6:31:30:cd:87:eb:84: 10:83:a8:8d:1a:d3:65:97:cd:31:7d:c6:bf:c3:73:7d:0a:c6: 70:ac:ea:61:82:03:30:03:7c:52:ea:b3:d8:7c:c6:44:31:10: 9d:af:c0:b5:9e:a6:d9:70:e2:e5:4d:a9:43:5b:19:3c:91:90: 72:50:f3:47:a0:4a:f7:bf:36:d4:88:fa:5b:4d:bf:d1:ef:38: 07:48:8f:be:4d:83:01:d0:39:6c:95:d5:df:0e:4d:9b:70:67: eb:3d:6c:cc:1f:7c:d2:ac:1d:a9:32:c0:c9:ea:98:b4:f8:db: 92:b1:39:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwQTQxMTAvBgNVBAUTKEEwMDM4RDVGMkNDQzRBQzI1RUJBRjc3MTI0MkU3NDMw MEZDRjc4MkMwHhcNMjQwNTAyMjEyMzI1WhcNMjQwNTA5MjEyMzI1WjAYMRYwFAYD VQQDEw02NjM0MDQ0ZC01ZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZPfDl5w05W8N5ay9zKFcGVGAIQ6PvqE3Ih5XR+er/j2hDOaH2f2di5semCf lMSweTSv5/f/dWXOX/jwkVWuXjesiYUG2We97f/qn16S5OYNuNZjOw1BMuWlQjPh SDtVC43QolRGRoX8cHzzdugWpZzPXzUEcgC7OCXD+0hS3JrGO6Ej0sQypgK5DfTQ z+2yANGv4/qGL/rgurCQABzi5lyv/YhAVzcnd2L/FJRT6PXWFA5fIPIBIcKqNhul CD9brbnV1FCSIJc9qqu4z/1XA1iC3/nz0R6UUTrCENs773y9m1WaPfDH8Ztp66G+ NkMOedLcU74hEcFS5hOFpYvnyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/Qolxg n6cr8SaHsSX3G5uE2w1fMB8GA1UdIwQYMBaAFKADjV8szErCXrr3cSQudDAPz3gs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjBBNC82QzcxNDBFRTgy OUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNzSmV1dmR4SkM1ME1BX1Bl Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BT05YeXpNU3NKZXV2ZHhKQzUwTUFfUGVDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjBBNC82QzcxNDBFRTgyOUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNz SmV1dmR4SkM1ME1BX1BlQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUrl4+16/RBhbL2t/qGgtfRYvycJaBcvW5uX5gG8wLgRQmuOgG5ewZ 5YTtNgNRO/Aq2LMaCgCt8lr7DgnI5eyM8qz8OED2Y57PXdHGrgmZ95Y4qaOgzEa9 z5uTHysPG3NpDgCXb9Pl2EyB15w7g8OEW/xf9g49KSoa1bWhJW6dzTsH5H3rOUcY z6YxMM2H64QQg6iNGtNll80xfca/w3N9CsZwrOphggMwA3xS6rPYfMZEMRCdr8C1 nqbZcOLlTalDWxk8kZByUPNHoEr3vzbUiPpbTb/R7zgHSI++TYMB0DlsldXfDk2b cGfrPWzMH3zSrB2pMsDJ6pi0+NuSsTkw -----END CERTIFICATE-----Generated at Thu May 2 22:13:24 2024 by rpki-client on console-fra.rpki-client.org