$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: 40AWNu5HQ44TDYKqPtOl3e6Rd8gyywflPHipblZiKXc= Subject key identifier: 4E:11:0A:53:8D:08:78:01:DE:DD:74:71:FB:10:EF:49:B9:2F:FA:8D Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 20CE Signing time: Mon 06 May 2024 16:20:47 +0000 Manifest this update: Mon 06 May 2024 16:20:46 +0000 Manifest next update: Mon 13 May 2024 16:20:46 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: +JmJzQPWOj+r4InAo7WmNd21Pfe63cDWBfgatYZCSFk=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: E2AOiCzgxsLKBTynZ4crXCu8PKZqVtSAJ3spxDFUx2E=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: 2W3oJ+QedRAztUpfSm+tuoCImEjQqqaPV0aL9qo5r3Y=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: XiqM4iGTnXpFWDG16thfGvjUKORVfmwpRddiqwnC71I=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: 0Ucpgjhaf7kx+WxYXGSsBaFJZkKCARop7bQf83/hNh8=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: zAVjBd+c0m9DCMJ+np/cO5W5zk4CfWcDtkInem5xeLI=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9tFXAmM4OkPs0CLNO+5szMsstp127SsFTTf21T1G9Wk=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: WHD8ucoKeZ1K97J6qkuwoCcKwch7wYg6344jbdnFRDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8457 (0x2109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: May 6 16:20:46 2024 GMT Not After : May 13 16:20:46 2024 GMT Subject: CN=6639035f-8b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:11:b5:3c:2f:5b:44:bf:36:da:a3:14:0d:f6: 52:3f:0c:1a:c7:5c:e8:3a:ff:ae:9f:79:71:f9:4f: 41:b8:7b:42:83:96:c3:f0:9a:7c:0e:21:22:85:2a: 5b:4f:9a:df:f9:cd:2c:b7:a0:9d:17:1c:25:a0:1a: a9:19:ea:65:19:fa:3a:13:e2:12:d4:30:9c:db:18: fa:48:5c:5c:ae:da:8e:9c:7a:9a:d8:e6:d3:1a:8a: f2:2d:3f:3c:74:1b:cb:3a:b3:ec:e0:36:95:b7:22: c8:46:f4:36:2b:34:46:ba:1f:9d:c1:b4:0c:eb:8b: 6d:93:a7:e2:c6:c4:52:a4:42:59:44:d6:53:77:94: 0b:09:bc:65:1c:e5:09:27:e3:ea:09:41:cd:fa:27: 50:3f:f8:80:ca:26:6d:d6:0c:62:a2:28:75:2b:ad: 55:0f:22:2e:47:bd:ed:c4:e5:32:9a:cd:05:c5:b1: d8:bc:93:42:c3:c8:38:3e:69:48:2f:c7:d3:8b:ea: 80:bc:b5:6e:09:1d:0d:48:41:5a:ed:9b:25:c0:56: f9:69:ee:15:ca:3f:84:4c:90:d3:5d:34:a6:fd:2b: 06:ec:64:e8:19:24:ef:0c:2f:f0:5d:21:3d:bb:aa: 50:40:af:bb:1d:54:3a:f5:6d:4b:60:69:87:56:ab: 98:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:11:0A:53:8D:08:78:01:DE:DD:74:71:FB:10:EF:49:B9:2F:FA:8D X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:49:18:19:50:31:84:74:a0:d5:29:f6:a5:4a:d3:01:b7:10: ff:d9:f6:c5:2c:10:31:51:b7:fd:4c:4c:69:bf:b2:1b:b5:9b: 93:fa:d0:f3:ab:2e:1a:a7:cf:5f:fc:0b:8c:3a:68:52:ef:82: a8:d1:1f:86:06:16:bd:f8:0a:e6:4b:8d:9a:0b:06:12:6d:93: e5:10:e2:a4:cc:76:55:a0:19:be:ea:d5:4b:60:5c:3c:eb:95: 87:00:0f:27:ea:cc:d7:f8:24:8a:08:a6:57:b9:a6:99:65:b0: c2:a0:57:1a:eb:9e:86:24:22:63:73:0f:3c:5a:1b:54:23:87: a8:0d:48:6a:eb:9f:0c:83:97:12:5b:35:ae:0d:e5:e9:b8:8d: 9a:74:3f:8d:ed:8f:74:cb:ea:51:e3:c2:3b:23:16:a3:66:1b: aa:6b:8b:db:46:82:0b:fd:7e:1b:fd:bc:e1:3c:f5:ec:13:fb: 1a:dc:2e:4b:d6:fa:72:57:43:49:ba:40:ae:dd:7f:53:62:10: c1:4e:63:de:ca:e5:c9:2b:04:53:33:a4:d8:fe:9f:77:76:2d: 77:f9:6b:e7:60:19:60:e9:8d:00:85:41:00:08:16:b9:db:fd: a7:2e:d5:e4:b1:c0:0e:b8:e6:31:69:7e:86:f8:fa:b9:a8:47: 82:69:1a:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQwNTA2MTYyMDQ2WhcNMjQwNTEzMTYyMDQ2WjAYMRYwFAYD VQQDEw02NjM5MDM1Zi04YjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhG1PC9bRL822qMUDfZSPwwax1zoOv+un3lx+U9BuHtCg5bD8Jp8DiEihSpb T5rf+c0st6CdFxwloBqpGeplGfo6E+IS1DCc2xj6SFxcrtqOnHqa2ObTGoryLT88 dBvLOrPs4DaVtyLIRvQ2KzRGuh+dwbQM64ttk6fixsRSpEJZRNZTd5QLCbxlHOUJ J+PqCUHN+idQP/iAyiZt1gxioih1K61VDyIuR73txOUyms0FxbHYvJNCw8g4PmlI L8fTi+qAvLVuCR0NSEFa7ZslwFb5ae4Vyj+ETJDTXTSm/SsG7GToGSTvDC/wXSE9 u6pQQK+7HVQ69W1LYGmHVquYHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4RClON CHgB3t10cfsQ70m5L/qNMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwSRgZUDGEdKDVKfalStMBtxD/2fbFLBAxUbf9TExpv7IbtZuT+tDz qy4ap89f/AuMOmhS74Ko0R+GBha9+ArmS42aCwYSbZPlEOKkzHZVoBm+6tVLYFw8 65WHAA8n6szX+CSKCKZXuaaZZbDCoFca656GJCJjcw88WhtUI4eoDUhq658Mg5cS WzWuDeXpuI2adD+N7Y90y+pR48I7IxajZhuqa4vbRoIL/X4b/bzhPPXsE/sa3C5L 1vpyV0NJukCu3X9TYhDBTmPeyuXJKwRTM6TY/p93di13+WvnYBlg6Y0AhUEACBa5 2/2nLtXkscAOuOYxaX6G+Pq5qEeCaRqe -----END CERTIFICATE-----Generated at Mon May 6 17:43:28 2024 by rpki-client on console-ams.rpki-client.org