$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: 8HWVZkusGKBA6oN8EJ+9lmZqb3gamVWmI4zDyNi/dGk= Subject key identifier: 7E:85:F2:03:9B:3E:E6:34:78:4E:D9:AA:3C:4D:5A:CA:BB:6F:9E:2A Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0715 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 070E Signing time: Tue 30 Apr 2024 22:55:59 +0000 Manifest this update: Tue 30 Apr 2024 22:55:59 +0000 Manifest next update: Tue 07 May 2024 22:55:59 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: ROa6wfT3T4n0oq3OtB5DkUZnWMJ95It97xeUL3oRfmE=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D3ma4u6sODLuLAngk8FcCD8+uVZql4Y+2zbRzUVe9cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Apr 30 22:55:59 2024 GMT Not After : May 7 22:55:59 2024 GMT Subject: CN=663176ff-106e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:77:50:d6:d9:2c:3b:a1:ca:6e:ef:e6:16:31: e9:13:5c:3d:34:33:d9:3a:c9:87:37:d0:79:3e:12: 4c:42:9c:93:0a:53:0f:e1:ef:dd:d6:99:ab:d3:26: 53:5f:3d:12:e0:cf:e2:8d:92:cf:07:40:21:d1:9f: 59:30:5a:43:6f:96:ee:dd:d8:60:35:97:3e:ad:22: c6:85:7c:fa:b8:c8:5c:bb:35:a6:26:04:9b:7b:27: 64:1e:e5:ae:de:34:98:d2:86:61:23:d5:f3:4e:2a: f5:50:45:15:33:69:b2:2b:75:43:3d:83:99:f9:98: fe:8a:fa:7d:9c:44:eb:85:fb:16:ae:b5:d8:67:1c: 07:a1:6b:53:4e:2a:68:de:04:a3:5f:61:88:54:2d: cc:a9:1e:48:e9:d1:d7:77:01:69:5c:2d:be:28:16: 7d:2d:c1:da:86:c5:6f:d9:34:52:ad:cb:34:f7:bb: 62:b4:ed:15:c4:c8:a0:17:22:d7:69:9a:83:d6:58: d8:ce:61:27:4a:b6:b0:dd:e1:ec:f2:5d:ad:b0:90: 21:c5:7f:c5:73:64:c4:b4:c5:41:60:a8:df:a0:c1: 7b:42:55:07:e4:3c:a9:2f:be:85:3b:8f:b2:e8:13: 78:65:ce:cc:7c:d7:07:98:10:e7:ba:4f:9c:57:f7: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:85:F2:03:9B:3E:E6:34:78:4E:D9:AA:3C:4D:5A:CA:BB:6F:9E:2A X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ef:a0:3e:2c:16:a6:02:a3:ce:45:1f:39:e8:10:ad:91:a4: 9e:08:ca:81:4e:40:e9:1e:b1:9e:ff:40:7f:54:b1:e0:29:52: 7a:69:e8:98:d1:de:3f:5d:21:41:0a:3e:28:93:7d:f8:de:c7: e7:03:06:72:5a:3b:e0:04:38:ff:cf:b4:93:aa:d4:e8:4f:8c: 3e:d9:78:0e:08:94:fb:95:03:3a:84:ac:ba:ec:60:82:d8:bd: e0:7a:57:0c:a3:44:b7:bd:d0:8f:58:b3:99:e5:30:28:cc:9b: f4:ab:c6:b7:47:0b:f6:cc:c4:cf:95:08:49:0e:52:8f:77:fc: 9d:43:bd:a8:ac:d6:8a:db:99:3b:a8:f1:f6:2a:a1:49:4d:90: 20:5a:e6:8b:6c:5b:b9:c4:23:5d:80:c1:cc:ed:f7:a8:da:87: bc:51:47:26:f2:b5:22:1f:c5:c9:15:59:69:1c:24:4d:1b:48: 44:f7:7d:20:02:af:25:fb:2d:56:51:ea:29:9a:42:ec:15:6d: 85:b0:45:29:01:38:68:3d:30:88:3e:e4:e7:75:82:d8:47:16: ef:99:46:f4:34:c0:e0:f2:00:30:f7:3a:7e:5d:9d:bb:da:98: e8:24:ca:4c:2e:4b:00:c9:ae:b4:f9:09:c6:6e:ee:18:f0:f4: 5a:69:a6:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjQwNDMwMjI1NTU5WhcNMjQwNTA3MjI1NTU5WjAYMRYwFAYD VQQDEw02NjMxNzZmZi0xMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXdQ1tksO6HKbu/mFjHpE1w9NDPZOsmHN9B5PhJMQpyTClMP4e/d1pmr0yZT Xz0S4M/ijZLPB0Ah0Z9ZMFpDb5bu3dhgNZc+rSLGhXz6uMhcuzWmJgSbeydkHuWu 3jSY0oZhI9XzTir1UEUVM2myK3VDPYOZ+Zj+ivp9nETrhfsWrrXYZxwHoWtTTipo 3gSjX2GIVC3MqR5I6dHXdwFpXC2+KBZ9LcHahsVv2TRSrcs097titO0VxMigFyLX aZqD1ljYzmEnSraw3eHs8l2tsJAhxX/Fc2TEtMVBYKjfoMF7QlUH5DypL76FO4+y 6BN4Zc7MfNcHmBDnuk+cV/cdCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6F8gOb PuY0eE7ZqjxNWsq7b54qMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe76A+LBamAqPORR856BCtkaSeCMqBTkDpHrGe/0B/VLHgKVJ6aeiY 0d4/XSFBCj4ok3343sfnAwZyWjvgBDj/z7STqtToT4w+2XgOCJT7lQM6hKy67GCC 2L3gelcMo0S3vdCPWLOZ5TAozJv0q8a3Rwv2zMTPlQhJDlKPd/ydQ72orNaK25k7 qPH2KqFJTZAgWuaLbFu5xCNdgMHM7feo2oe8UUcm8rUiH8XJFVlpHCRNG0hE930g Aq8l+y1WUeopmkLsFW2FsEUpAThoPTCIPuTndYLYRxbvmUb0NMDg8gAw9zp+XZ27 2pjoJMpMLksAya60+QnGbu4Y8PRaaaay -----END CERTIFICATE-----Generated at Tue Apr 30 23:52:31 2024 by rpki-client on console-ams.rpki-client.org