$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: CNBpLtbFT4REdZ3dloq466Npt0QZr4BVGWGjDeyI/v4= Subject key identifier: 60:D4:E1:77:10:0E:22:99:E0:F1:6E:5E:39:23:B7:99:F1:D2:2E:36 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 82 Signing time: Fri 17 May 2024 07:19:12 +0000 Manifest this update: Fri 17 May 2024 07:19:11 +0000 Manifest next update: Fri 24 May 2024 07:19:11 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: ea2e2Wwhh8q4tLlN8cVlU8Hs3Q/aKk8qyvNFOU5hq84=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: YUSUdSQGsAYrkhG5r+Ikfnd8mpcwF6T3vxWqRkOzHrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: May 17 07:19:11 2024 GMT Not After : May 24 07:19:11 2024 GMT Subject: CN=664704ef-3ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:55:1d:d7:c8:45:71:21:40:e6:67:60:47:13: 26:f7:fc:cf:d2:9b:f5:92:d6:86:80:27:4b:db:c7: cd:be:cb:98:fc:e1:98:17:6b:56:16:0f:50:36:24: 14:bd:39:7a:90:bb:51:de:30:35:62:e0:22:8a:6c: fe:e3:86:35:9a:b1:fe:75:6d:66:67:b0:c2:07:12: 88:c1:d2:98:b6:96:25:b0:11:b0:d6:51:f5:71:d4: 38:c3:a3:f1:2d:fe:e2:29:19:a6:33:19:5d:3f:f9: 5f:f4:d4:fa:f6:1c:54:47:6d:1f:15:a3:bc:80:c9: bd:1e:b1:23:7d:77:12:2a:3d:71:92:56:47:4b:4b: cb:8a:f3:21:17:2b:f0:ae:88:c1:08:27:e4:72:d2: 32:ab:d6:33:67:8c:42:a4:d8:d7:f6:28:ad:4d:7c: b2:3c:b5:9d:aa:4e:66:08:37:28:b1:3e:54:6b:4b: b7:32:23:bf:5c:6f:9c:16:91:75:41:eb:14:f1:ec: 44:4b:2e:e9:d4:02:67:8b:43:37:e4:fa:91:72:bf: ea:45:e1:ac:ea:bb:24:fe:56:87:c2:36:78:47:45: 03:6d:42:0d:c8:0b:20:48:22:ca:1e:15:e1:46:d8: e0:02:63:34:f5:66:44:b3:f3:42:c2:6a:71:8b:6f: 50:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D4:E1:77:10:0E:22:99:E0:F1:6E:5E:39:23:B7:99:F1:D2:2E:36 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:09:1c:c5:e2:e9:21:3d:ef:0f:96:dd:30:1a:e9:2a:08:25: ca:e2:42:81:fc:2f:e0:9f:ec:39:3f:b6:39:74:32:80:15:4d: 13:11:df:b9:40:40:1c:5a:df:1f:54:20:bc:09:9c:38:ca:b6: 34:50:ac:b2:88:8b:c3:c2:83:00:1c:dd:75:21:e6:82:5c:e9: 71:26:8a:68:49:39:c4:00:0a:94:82:02:fd:d6:db:76:62:5c: db:46:18:90:ac:1a:b2:bc:6c:5d:63:7c:11:74:ca:55:7f:8d: ec:bf:6d:22:cf:b9:32:c7:5f:e8:45:22:90:50:33:99:14:e5: 2d:58:dc:53:c4:1d:de:a9:6e:ee:82:ad:6f:83:61:42:84:7a: 51:3c:13:08:99:a5:f8:e0:ec:8b:8b:49:ce:91:23:50:42:c9: 64:57:48:64:e5:bf:86:54:3a:1e:71:c6:cb:62:74:f5:11:a7: 77:7f:f3:fa:76:17:8d:25:66:11:a0:82:91:54:7f:38:a4:a9: 35:05:b0:9a:56:cc:0c:08:08:08:76:6b:f4:ba:95:f3:8a:bd: 25:a1:d5:ff:5e:43:ca:07:3a:9a:e7:a8:f4:ba:e5:f7:ee:c2: ac:7b:5b:27:67:50:e2:4c:ca:4b:77:a6:85:77:5f:3c:da:1f: ea:da:db:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjQwNTE3MDcxOTExWhcNMjQwNTI0MDcxOTExWjAYMRYwFAYD VQQDEw02NjQ3MDRlZi0zYWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lUd18hFcSFA5mdgRxMm9/zP0pv1ktaGgCdL28fNvsuY/OGYF2tWFg9QNiQU vTl6kLtR3jA1YuAiimz+44Y1mrH+dW1mZ7DCBxKIwdKYtpYlsBGw1lH1cdQ4w6Px Lf7iKRmmMxldP/lf9NT69hxUR20fFaO8gMm9HrEjfXcSKj1xklZHS0vLivMhFyvw rojBCCfkctIyq9YzZ4xCpNjX9iitTXyyPLWdqk5mCDcosT5Ua0u3MiO/XG+cFpF1 QesU8exESy7p1AJni0M35PqRcr/qReGs6rsk/laHwjZ4R0UDbUINyAsgSCLKHhXh RtjgAmM09WZEs/NCwmpxi29QnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDU4XcQ DiKZ4PFuXjkjt5nx0i42MB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+CRzF4ukhPe8Plt0wGukqCCXK4kKB/C/gn+w5P7Y5dDKAFU0TEd+5 QEAcWt8fVCC8CZw4yrY0UKyyiIvDwoMAHN11IeaCXOlxJopoSTnEAAqUggL91tt2 YlzbRhiQrBqyvGxdY3wRdMpVf43sv20iz7kyx1/oRSKQUDOZFOUtWNxTxB3eqW7u gq1vg2FChHpRPBMImaX44OyLi0nOkSNQQslkV0hk5b+GVDoeccbLYnT1Ead3f/P6 dheNJWYRoIKRVH84pKk1BbCaVswMCAgIdmv0upXzir0lodX/XkPKBzqa56j0uuX3 7sKse1snZ1DiTMpLd6aFd1882h/q2ttc -----END CERTIFICATE-----Generated at Fri May 17 08:52:56 2024 by rpki-client on console-ams.rpki-client.org