$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: gQVTZiygwCKy6Cxu6qOJoSsjCpODqYje/MV5FEWLe24= Subject key identifier: 77:81:41:6E:A7:E6:6A:06:39:2A:7E:43:B1:9D:F2:ED:71:0E:BE:37 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0C74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0C6D Signing time: Fri 26 Apr 2024 18:53:30 +0000 Manifest this update: Fri 26 Apr 2024 18:53:30 +0000 Manifest next update: Fri 03 May 2024 18:53:30 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: XmB07nAz7ryFyf+I5Hq8TUNp+V1gYQ0ymHs8KO+HupE=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: r4Nn4V4I8uu965S2bp9gePUlDuw+WitBghKmVxEd5Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 18:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Apr 26 18:53:30 2024 GMT Not After : May 3 18:53:30 2024 GMT Subject: CN=662bf82a-78bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:70:22:d2:db:d4:8b:03:f6:2a:79:af:0d:23: db:da:2c:4f:f8:21:70:20:07:da:60:08:7d:4e:97: 62:94:0d:56:f0:22:95:cd:4b:0d:16:4f:b0:27:b0: f1:d7:ad:6f:94:cb:e1:41:af:ed:33:16:5d:09:81: bd:11:e8:55:15:25:36:2b:40:4e:d0:0d:c1:64:e7: 50:7e:9c:bc:3f:de:5c:c7:69:6c:48:96:01:a7:0b: 23:1d:0e:dc:90:e7:99:aa:1f:b1:d8:a8:1a:c8:90: 08:da:bc:66:dc:f0:7f:4e:d9:cb:a4:f3:b9:7b:5b: 91:a5:44:30:30:66:66:f6:71:e9:d5:c0:92:ee:aa: 05:ad:2c:88:9c:92:22:3f:e2:77:f3:54:77:f1:1c: c4:60:a9:77:d9:d4:fb:cd:14:0c:06:7f:4b:d3:9f: c1:29:43:8c:5d:8a:43:81:f3:ae:92:ff:44:25:cf: 8b:7b:f5:fc:b4:be:2b:33:44:1b:b7:24:26:2e:26: b3:66:50:8c:f3:72:a2:bf:c6:c4:b9:03:d3:6f:3c: c7:ac:79:ed:3e:92:43:ba:55:c4:10:52:ff:8e:fc: 69:fc:07:47:cd:87:2c:c0:e5:a4:3f:b3:c9:fa:8f: 18:a5:f1:b3:92:66:6a:04:eb:4d:3a:a7:1f:80:2b: 8f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:81:41:6E:A7:E6:6A:06:39:2A:7E:43:B1:9D:F2:ED:71:0E:BE:37 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ea:2f:f1:59:ce:3a:7b:98:a0:e1:49:5d:2a:c5:50:50:0a: 90:bc:39:48:7e:57:01:98:d3:87:93:c0:a6:89:9b:4b:3f:75: 70:5b:f8:68:2b:5c:dd:20:7c:1a:59:60:a5:92:58:2a:8e:f6: dc:44:41:7b:9b:41:93:11:9b:ff:60:3a:de:3e:f7:5f:b4:66: c6:90:45:41:15:e4:ef:ed:4a:99:1f:7e:ff:e5:a9:9a:ce:0d: 0a:7b:66:da:10:79:2f:cc:5b:7e:7c:2c:bc:8c:dd:a2:1c:d7: 0a:0c:3f:5f:49:d9:7c:82:00:7e:65:20:b7:bd:a7:53:99:2d: 9a:ab:a2:36:ee:9f:9a:67:d7:25:da:ef:0f:53:5e:c6:e9:a4: f8:1c:27:38:32:a9:8c:65:02:b6:51:4b:b9:22:33:66:92:05: c7:69:fc:e1:aa:35:ff:c2:bd:a0:d6:c5:2b:25:9a:c0:dc:00: 81:11:73:24:dc:a6:2b:11:ed:f0:c6:61:e8:4d:82:00:6b:86: 25:85:f6:fa:31:0e:de:70:8c:92:a1:06:98:c2:a9:70:28:ea: 41:16:09:aa:3c:73:61:8b:01:41:2c:97:00:54:f3:b4:61:d7: 3f:6c:96:e5:81:c0:40:dc:6c:7f:74:90:17:b1:9d:16:da:77: bc:44:97:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjQwNDI2MTg1MzMwWhcNMjQwNTAzMTg1MzMwWjAYMRYwFAYD VQQDEw02NjJiZjgyYS03OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnAi0tvUiwP2KnmvDSPb2ixP+CFwIAfaYAh9TpdilA1W8CKVzUsNFk+wJ7Dx 161vlMvhQa/tMxZdCYG9EehVFSU2K0BO0A3BZOdQfpy8P95cx2lsSJYBpwsjHQ7c kOeZqh+x2KgayJAI2rxm3PB/TtnLpPO5e1uRpUQwMGZm9nHp1cCS7qoFrSyInJIi P+J381R38RzEYKl32dT7zRQMBn9L05/BKUOMXYpDgfOukv9EJc+Le/X8tL4rM0Qb tyQmLiazZlCM83Kiv8bEuQPTbzzHrHntPpJDulXEEFL/jvxp/AdHzYcswOWkP7PJ +o8YpfGzkmZqBOtNOqcfgCuPkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeBQW6n 5moGOSp+Q7Gd8u1xDr43MB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa6i/xWc46e5ig4UldKsVQUAqQvDlIflcBmNOHk8CmiZtLP3VwW/ho K1zdIHwaWWClklgqjvbcREF7m0GTEZv/YDrePvdftGbGkEVBFeTv7UqZH37/5ama zg0Ke2baEHkvzFt+fCy8jN2iHNcKDD9fSdl8ggB+ZSC3vadTmS2aq6I27p+aZ9cl 2u8PU17G6aT4HCc4MqmMZQK2UUu5IjNmkgXHafzhqjX/wr2g1sUrJZrA3ACBEXMk 3KYrEe3wxmHoTYIAa4Ylhfb6MQ7ecIySoQaYwqlwKOpBFgmqPHNhiwFBLJcAVPO0 Ydc/bJblgcBA3Gx/dJAXsZ0W2ne8RJch -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:50 2024 by rpki-client on console-ams.rpki-client.org