$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: Dv/DxIxxIXhOzwPjhxFFYYYYgmmUdNrpqBP4U3KCjkY= Subject key identifier: 15:B8:D8:78:7C:B0:1A:52:24:B3:59:76:08:23:44:25:07:4E:B2:EE Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0DDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0DD3 Signing time: Thu 02 May 2024 18:33:22 +0000 Manifest this update: Thu 02 May 2024 18:33:22 +0000 Manifest next update: Thu 09 May 2024 18:33:22 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: /ruwo+Po6pXXEyD+YAFR5Btx8TxwXquRnkMPMg1HCJ8=) 2: 5DCDC4FE8E5611E9A403BF44C4F9AE02.roa (hash: ESHAZFQ3N4xus0VWTNPV81i6ivAkzaFgejXUoFrz+sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: May 2 18:33:22 2024 GMT Not After : May 9 18:33:22 2024 GMT Subject: CN=6633dc72-f416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a9:e8:5a:45:c2:0b:f8:b8:fc:e2:7d:ec:cb: 0b:dc:62:19:24:f0:ed:aa:ea:68:ce:5a:fa:f6:40: 80:fb:25:bd:34:d6:ec:69:24:91:09:a8:7c:3c:9a: d3:b9:d4:db:34:0d:48:17:2a:0a:aa:d8:35:41:86: 52:03:ee:91:ce:88:1c:18:c3:07:1e:7c:d7:61:4f: 5b:32:2d:0f:6a:a3:32:09:b5:39:f3:3d:1b:3a:39: de:98:2e:4b:b5:de:a7:04:a1:7a:27:5a:dc:27:65: 7d:e7:63:64:79:43:8d:49:6e:4c:e6:eb:31:bf:e6: f5:d2:02:71:35:c6:b0:13:ac:5c:a5:7a:71:56:73: b5:50:b5:88:19:f0:0e:9b:bf:43:db:a5:3f:d6:30: a8:5c:bb:9a:85:cd:45:dc:7e:15:7a:8a:c8:aa:a5: 42:c2:e5:71:a8:9f:f4:16:ea:59:56:4e:f3:5a:54: 17:33:fb:07:1d:27:db:10:46:04:fb:4a:59:b4:1e: 01:33:da:9c:e3:b2:be:13:e8:a3:d1:e4:08:a5:26: 81:1d:ce:75:d7:e3:0e:bf:c9:63:28:a5:47:ff:c8: e0:5a:1b:fc:26:40:b2:10:13:8d:3e:31:22:25:cb: 03:3d:8c:0f:18:88:05:96:03:df:15:3f:09:4c:5e: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B8:D8:78:7C:B0:1A:52:24:B3:59:76:08:23:44:25:07:4E:B2:EE X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:40:12:2f:1e:78:a6:42:04:1f:14:4d:62:cb:52:c8:5d:f2: aa:46:dc:7a:68:aa:59:60:8b:7d:f5:a8:bd:75:d0:fe:7f:49: 62:b0:41:9d:c1:c4:03:55:f9:46:92:3a:f3:34:28:14:5a:2f: 33:ec:71:92:6f:84:06:67:57:97:aa:c2:23:3c:31:a7:07:07: 0d:1f:d8:a1:05:33:02:e7:09:15:f8:2d:4e:e9:f6:3d:e5:3d: 33:36:4c:01:4e:7e:48:7b:93:6f:a9:81:6f:8a:a2:98:12:16: ee:91:20:f8:8c:f0:5a:3a:47:00:b5:3f:6c:52:95:7c:f9:e0: c3:16:ac:97:5a:9e:de:ae:fc:93:5f:16:18:fc:83:de:8f:57: 51:14:be:e3:f5:23:8f:ca:cc:b3:ce:7e:19:0d:b8:21:ec:0f: 5a:37:97:0d:8f:39:bd:e0:2d:50:3a:1d:77:e8:75:68:f2:b4: f4:4d:6d:9f:5f:63:3f:c6:62:b2:37:95:59:1b:ec:83:ff:18: 8c:c2:22:5b:b6:08:44:30:cc:51:27:f8:bf:af:6f:0f:1c:06: 2a:2d:5e:93:b9:f8:73:52:b4:6f:a0:b4:ae:06:d2:a2:09:2c: 2d:99:40:00:f3:19:a6:dd:17:59:26:11:b7:c1:2b:f8:7c:ce: 6d:7c:ac:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjQwNTAyMTgzMzIyWhcNMjQwNTA5MTgzMzIyWjAYMRYwFAYD VQQDEw02NjMzZGM3Mi1mNDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qnoWkXCC/i4/OJ97MsL3GIZJPDtqupozlr69kCA+yW9NNbsaSSRCah8PJrT udTbNA1IFyoKqtg1QYZSA+6RzogcGMMHHnzXYU9bMi0PaqMyCbU58z0bOjnemC5L td6nBKF6J1rcJ2V952NkeUONSW5M5usxv+b10gJxNcawE6xcpXpxVnO1ULWIGfAO m79D26U/1jCoXLuahc1F3H4VeorIqqVCwuVxqJ/0FupZVk7zWlQXM/sHHSfbEEYE +0pZtB4BM9qc47K+E+ij0eQIpSaBHc511+MOv8ljKKVH/8jgWhv8JkCyEBONPjEi JcsDPYwPGIgFlgPfFT8JTF6rUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBW42Hh8 sBpSJLNZdggjRCUHTrLuMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNQBIvHnimQgQfFE1iy1LIXfKqRtx6aKpZYIt99ai9ddD+f0lisEGd wcQDVflGkjrzNCgUWi8z7HGSb4QGZ1eXqsIjPDGnBwcNH9ihBTMC5wkV+C1O6fY9 5T0zNkwBTn5Ie5NvqYFviqKYEhbukSD4jPBaOkcAtT9sUpV8+eDDFqyXWp7ervyT XxYY/IPej1dRFL7j9SOPysyzzn4ZDbgh7A9aN5cNjzm94C1QOh136HVo8rT0TW2f X2M/xmKyN5VZG+yD/xiMwiJbtghEMMxRJ/i/r28PHAYqLV6TufhzUrRvoLSuBtKi CSwtmUAA8xmm3RdZJhG3wSv4fM5tfKzI -----END CERTIFICATE-----Generated at Thu May 2 20:05:01 2024 by rpki-client on console-ams.rpki-client.org