$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft File: Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft (raw, json) Hash identifier: Buvr53O9S3p+L6ASw5wWKAJB31ZJc/mEc5YurjtXTgs= Subject key identifier: FA:EF:4B:8E:64:38:DC:17:E0:50:2F:33:50:51:EC:2A:18:1E:3C:16 Authority key identifier: 3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C Certificate issuer: /CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft Manifest number: 42 Signing time: Fri 17 May 2024 08:13:57 +0000 Manifest this update: Fri 17 May 2024 08:13:56 +0000 Manifest next update: Fri 24 May 2024 08:13:56 +0000 Files and hashes: 1: Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl (hash: 7sBlbQEk8Wsf5qnF1VQy1EGLz07tmGkK4d9MnnuzWmQ=) 2: BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa (hash: tDzRS9D9LYakwWnsKRwiJRr0iEVNxo6X/cCE3yfKlJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Validity Not Before: May 17 08:13:56 2024 GMT Not After : May 24 08:13:56 2024 GMT Subject: CN=664711c5-eb0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:9a:34:8b:2f:49:cb:dd:7d:a4:11:c3:ea: 6c:1d:14:6f:82:94:c4:a4:63:0e:35:71:86:df:df: 04:6c:57:f8:93:97:31:79:73:74:75:6c:d4:2f:01: 23:2b:5c:b3:9d:bb:d1:8a:77:41:45:62:23:89:60: 2d:09:ec:e9:2b:9e:ee:d5:46:17:7d:9d:61:70:34: db:01:ad:aa:f7:90:fb:c5:b2:bf:75:87:16:ca:7f: dc:12:e3:c6:85:0b:7f:14:a0:33:e6:0c:19:ac:ab: 1c:ae:a6:c8:7e:3d:d5:48:49:d8:05:3d:9b:95:8a: 79:0f:3e:13:be:8d:b5:ca:4f:51:3e:d9:60:ad:b8: f6:8d:f6:db:42:f0:bb:f7:77:17:37:66:85:b8:ab: fd:37:00:a0:3e:2d:a7:5b:fc:6f:0b:3a:a6:ed:df: 30:46:ca:6a:61:6c:56:f3:74:86:b8:70:d9:0c:67: 91:65:0c:e9:a2:b4:3b:dd:93:bc:30:dd:76:ab:0f: a9:bf:35:5e:c2:eb:bb:be:02:ba:d8:b6:a4:20:26: c1:db:62:7a:87:87:69:58:92:f7:59:8e:e9:7b:c9: 4f:04:ac:b2:67:9c:48:38:59:90:ac:ea:5b:51:0a: c5:a8:fc:21:42:33:8b:17:ef:49:c2:c5:50:00:63: 63:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:EF:4B:8E:64:38:DC:17:E0:50:2F:33:50:51:EC:2A:18:1E:3C:16 X509v3 Authority Key Identifier: keyid:3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:fb:fc:27:80:0c:8a:ae:39:ed:fb:11:da:4a:c7:28:ac:22: 73:1b:a2:21:d8:1a:fc:ba:27:81:7d:6c:2a:56:05:9d:ea:05: d0:82:05:7a:80:c0:7d:b0:b3:5f:c9:db:02:fb:53:f1:76:98: e2:65:6e:4d:aa:e9:64:89:ac:7b:2d:ee:37:2f:5a:fe:e9:41: d9:8a:39:a6:7e:d6:84:dc:aa:9b:ba:2d:d6:ea:21:18:82:98: ef:bf:1f:7b:20:61:39:05:de:2c:1d:26:30:f2:62:d2:ad:cf: 1a:92:65:08:3f:bb:e2:b8:ce:ca:83:95:56:01:87:77:51:72: d6:6e:03:7e:82:04:75:fa:c1:a7:20:8e:7b:da:7b:32:d3:43: 48:dd:72:46:80:8e:0a:ec:64:60:24:bb:66:fc:f9:9b:00:d1: 1a:6d:0f:f9:b5:f8:12:11:68:96:f0:76:08:55:45:da:67:21: 32:81:71:cf:7e:e8:26:3d:51:3c:8a:c5:a2:64:74:d7:86:64: c2:0f:ce:76:59:5b:41:4c:ef:b9:76:6c:3b:39:28:ea:d9:e7: f3:ab:ed:59:91:a4:90:11:e7:bd:47:6e:79:2c:4d:fd:67:2a: f5:10:70:fd:ff:1a:5a:76:dd:0d:96:70:60:98:ff:f7:43:c5: bf:0c:b5:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTZDQTExMC8GA1UEBRMoM0IxREIzMTZDMDhEMjkzNkM3NEEzNTZBMjc3RUVBQzQz Q0I3NTI0QzAeFw0yNDA1MTcwODEzNTZaFw0yNDA1MjQwODEzNTZaMBgxFjAUBgNV BAMTDTY2NDcxMWM1LWViMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6G5o0iy9Jy919pBHD6mwdFG+ClMSkYw41cYbf3wRsV/iTlzF5c3R1bNQvASMr XLOdu9GKd0FFYiOJYC0J7Okrnu7VRhd9nWFwNNsBrar3kPvFsr91hxbKf9wS48aF C38UoDPmDBmsqxyupsh+PdVISdgFPZuVinkPPhO+jbXKT1E+2WCtuPaN9ttC8Lv3 dxc3ZoW4q/03AKA+Ladb/G8LOqbt3zBGymphbFbzdIa4cNkMZ5FlDOmitDvdk7ww 3XarD6m/NV7C67u+ArrYtqQgJsHbYnqHh2lYkvdZjul7yU8ErLJnnEg4WZCs6ltR CsWo/CFCM4sX70nCxVAAY2NbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+u9LjmQ4 3BfgUC8zUFHsKhgePBYwHwYDVR0jBBgwFoAUOx2zFsCNKTbHSjVqJ37qxDy3Ukww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNkNBL0RFMEE2RDMyQjQ4 NzExRUU5OURDMEExM0M0RjlBRTAyL094MnpGc0NOS1RiSFNqVnFKMzdxeER5M1Vr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT3gyekZzQ05LVGJIU2pWcUozN3F4RHkzVWt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZB NkNBL0RFMEE2RDMyQjQ4NzExRUU5OURDMEExM0M0RjlBRTAyL094MnpGc0NOS1Ri SFNqVnFKMzdxeER5M1Vrdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABr7/CeADIquOe37EdpKxyisInMboiHYGvy6J4F9bCpWBZ3qBdCCBXqA wH2ws1/J2wL7U/F2mOJlbk2q6WSJrHst7jcvWv7pQdmKOaZ+1oTcqpu6LdbqIRiC mO+/H3sgYTkF3iwdJjDyYtKtzxqSZQg/u+K4zsqDlVYBh3dRctZuA36CBHX6wacg jnvaezLTQ0jdckaAjgrsZGAku2b8+ZsA0RptD/m1+BIRaJbwdghVRdpnITKBcc9+ 6CY9UTyKxaJkdNeGZMIPznZZW0FM77l2bDs5KOrZ5/Or7VmRpJAR571HbnksTf1n KvUQcP3/Glp23Q2WcGCY//dDxb8MtUI= -----END CERTIFICATE-----Generated at Fri May 17 08:52:57 2024 by rpki-client on console-ams.rpki-client.org