$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: nga+PXgoswHgEUz6ZF+ykk5z6ZakCbl4LqS7Tl6Mh8M= Subject key identifier: 6B:60:96:CC:CF:37:42:F6:71:F4:4F:3C:2B:D7:D0:50:77:34:76:5C Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0BDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0BD5 Signing time: Mon 06 May 2024 19:10:26 +0000 Manifest this update: Mon 06 May 2024 19:10:25 +0000 Manifest next update: Mon 13 May 2024 19:10:25 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: k3LresenH+AeScOv77zewma9WPvIKhkpBHWx5K7g4/s=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: T2/7+GhD0gC7tHcYOfbrfDJ70g/35K+/3DgLmDK20MU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: May 6 19:10:25 2024 GMT Not After : May 13 19:10:25 2024 GMT Subject: CN=66392b21-4673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:47:68:8a:42:35:ea:44:78:0d:c8:88:37:45: 09:8a:49:19:cc:eb:27:25:71:d4:aa:2c:c5:40:4a: f0:43:ea:bc:0a:8c:4f:20:95:d9:21:e0:3f:63:0a: cc:3c:1b:cf:15:df:2d:10:14:86:01:94:56:01:8c: 85:5d:02:bf:24:87:db:c8:41:12:a3:71:8a:4e:65: 73:7a:83:3c:66:f2:af:27:58:16:d5:22:e1:8d:ab: 4c:41:5d:c1:57:36:a0:36:8a:20:2a:35:3d:7d:9f: af:ab:4b:bb:e9:40:6e:23:33:cb:86:39:5e:a7:e8: 15:e1:f9:96:b7:66:82:d2:38:31:13:6a:d6:f8:34: 06:98:ab:22:ec:f0:2f:3e:85:ae:a4:3e:5c:4c:9e: 6a:bd:f2:ab:7f:62:3c:43:31:65:b1:09:b6:f9:ed: bb:45:47:b0:f8:02:76:a7:f8:f0:6e:07:fd:57:dc: 57:be:6d:da:63:65:c4:3d:a7:fa:08:e2:e3:56:2b: 5c:fe:a7:1c:ac:42:7f:8b:c8:7e:38:ec:8f:8e:d8: aa:5e:c6:53:dc:15:5b:c3:fd:5b:8b:e0:4c:db:c5: 1d:a4:d5:29:b1:0e:e1:a6:e3:ac:22:23:11:41:6b: 01:e7:49:6d:5f:50:0d:b6:e5:a9:4c:c9:85:3c:f4: e1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:60:96:CC:CF:37:42:F6:71:F4:4F:3C:2B:D7:D0:50:77:34:76:5C X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f0:dd:6f:db:1c:43:b5:d8:57:c1:e5:6d:a0:f6:5f:c2:3e: e8:ce:4f:b9:95:ed:22:09:f2:d6:74:72:64:02:be:e6:cc:cc: ca:bd:9f:6f:a0:79:34:d0:2b:7c:2a:51:1a:48:69:e9:71:5c: f0:8e:6f:5f:45:c8:38:1d:9f:cc:9c:62:17:75:24:ce:52:2c: 11:f6:ea:df:a1:72:ef:e3:65:93:43:10:c2:22:f9:bc:1e:e6: e6:10:2a:da:1e:02:9a:b2:50:54:5b:02:e6:2a:8c:c2:68:86: 8e:16:82:89:6f:13:1d:8f:8d:23:64:61:2b:74:9f:a8:dd:c1: b2:9d:62:d6:10:d1:cd:c3:26:06:05:13:11:e6:4f:ce:77:70: 77:33:69:97:1c:d4:c9:bc:b4:57:8b:30:1b:88:30:7f:54:20: 06:d5:23:f0:36:9e:3f:41:f1:08:23:b5:3f:d8:a9:f0:e7:00: e9:7f:d9:1f:b6:80:f5:0c:03:63:b7:f9:63:8a:69:36:2d:cf: 3f:5e:fc:7b:e4:50:b8:84:13:a2:ef:f4:9c:fb:0b:a3:9c:b8: 82:d8:78:59:88:fb:d0:03:fe:5c:e9:8c:1f:e5:ff:60:c8:90: 5c:99:fa:10:ae:e8:31:57:e0:62:85:00:06:67:d3:28:74:39: 65:97:f1:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjQwNTA2MTkxMDI1WhcNMjQwNTEzMTkxMDI1WjAYMRYwFAYD VQQDEw02NjM5MmIyMS00NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kdoikI16kR4DciIN0UJikkZzOsnJXHUqizFQErwQ+q8CoxPIJXZIeA/YwrM PBvPFd8tEBSGAZRWAYyFXQK/JIfbyEESo3GKTmVzeoM8ZvKvJ1gW1SLhjatMQV3B VzagNoogKjU9fZ+vq0u76UBuIzPLhjlep+gV4fmWt2aC0jgxE2rW+DQGmKsi7PAv PoWupD5cTJ5qvfKrf2I8QzFlsQm2+e27RUew+AJ2p/jwbgf9V9xXvm3aY2XEPaf6 COLjVitc/qccrEJ/i8h+OOyPjtiqXsZT3BVbw/1bi+BM28UdpNUpsQ7hpuOsIiMR QWsB50ltX1ANtuWpTMmFPPThEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtglszP N0L2cfRPPCvX0FB3NHZcMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA18N1v2xxDtdhXweVtoPZfwj7ozk+5le0iCfLWdHJkAr7mzMzKvZ9v oHk00Ct8KlEaSGnpcVzwjm9fRcg4HZ/MnGIXdSTOUiwR9urfoXLv42WTQxDCIvm8 HubmECraHgKaslBUWwLmKozCaIaOFoKJbxMdj40jZGErdJ+o3cGynWLWENHNwyYG BRMR5k/Od3B3M2mXHNTJvLRXizAbiDB/VCAG1SPwNp4/QfEII7U/2Knw5wDpf9kf toD1DANjt/ljimk2Lc8/Xvx75FC4hBOi7/Sc+wujnLiC2HhZiPvQA/5c6Ywf5f9g yJBcmfoQrugxV+BihQAGZ9ModDlll/FO -----END CERTIFICATE-----Generated at Mon May 6 20:19:46 2024 by rpki-client on console-ams.rpki-client.org