$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: 9S+v7XpFio7mtlin4ceAs3fNxwg0iQ8nmlOgqdiCFNU= Subject key identifier: 36:68:CC:A2:CE:AC:0A:BE:06:8B:9B:7F:13:12:D7:09:63:91:7B:12 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 12E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 12DC Signing time: Tue 30 Apr 2024 17:47:18 +0000 Manifest this update: Tue 30 Apr 2024 17:47:18 +0000 Manifest next update: Tue 07 May 2024 17:47:18 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: 30UZ0q9gs/ltj0pbLIOky2eHv8pEUmrJ26spmJrkPPQ=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: Ul+bpAytsSrAslei8fCnXiucNbOpCjLCdnbXZqwQWLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4837 (0x12e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Apr 30 17:47:18 2024 GMT Not After : May 7 17:47:18 2024 GMT Subject: CN=66312ea6-b042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:16:aa:d3:7a:b3:45:24:2f:29:38:af:f3: 2e:f4:d8:b1:04:1a:85:a1:f3:7d:da:12:75:79:f2: 73:60:70:0b:4d:33:ee:a1:2a:8f:28:39:8c:1a:88: fd:88:d6:43:31:63:32:fe:f0:92:75:2d:84:65:79: 31:42:81:b5:bd:af:8f:b6:98:27:7f:70:62:1d:58: 5b:92:87:bf:ac:5a:19:4d:cf:3f:e3:75:87:07:43: 37:a5:f9:ce:65:e1:38:b3:03:96:e6:8f:0b:e3:68: d0:c8:9d:5d:42:e1:d3:72:72:ca:eb:8d:8b:dd:03: 1a:51:a3:b5:24:b4:fd:cd:96:16:fe:9c:c1:7d:47: 13:be:8d:f1:61:7e:75:c4:dc:81:d1:96:21:0d:6f: 42:dd:d6:58:5d:74:51:36:80:6a:2a:10:9a:95:a3: da:3f:1a:74:8d:74:5a:69:42:a1:ee:cd:70:18:c8: 97:60:0d:d2:70:41:b7:9d:43:08:3a:f1:ed:90:4f: 73:9e:7e:43:0f:8e:92:cb:83:d2:56:24:8b:45:6c: fb:90:7e:3e:82:66:c0:33:f8:10:4a:8e:f6:31:4c: b4:03:40:fd:65:ed:3b:9b:c9:ef:dd:d9:33:47:cb: 8f:35:e9:25:13:ee:56:6d:ad:e1:05:a4:bd:00:2c: 67:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:68:CC:A2:CE:AC:0A:BE:06:8B:9B:7F:13:12:D7:09:63:91:7B:12 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:65:a5:b6:32:a1:b6:da:af:f5:25:48:9e:f6:0f:3b:ca:a9: 60:5e:5b:8a:6e:83:4f:d5:cb:38:3d:e3:5e:7c:05:8c:c1:bc: 1f:42:f3:85:c2:4d:b5:9f:05:de:eb:f1:d8:19:00:e9:bf:15: 4a:42:3c:fe:95:a2:92:94:8a:4d:c4:e6:b0:f3:93:4c:5f:78: a3:ca:30:f7:b2:e4:9b:f8:07:ea:ec:78:43:44:76:ae:86:fb: 1a:1f:fd:da:bf:70:ed:71:a9:ef:0c:a6:53:1b:35:27:4d:60: 07:10:f1:8a:5e:cd:68:62:fd:78:54:97:3f:e1:8a:b8:b1:3a: 04:d4:c3:62:f5:72:90:ea:5f:c1:c5:e9:89:95:53:a5:11:57: 80:5b:a3:2f:e8:ee:07:73:28:0b:5d:36:c6:1c:5d:4f:20:c8: a0:f0:5c:b6:21:ab:02:68:6c:3f:6d:33:b0:e9:58:69:bb:c5: 66:ba:39:83:63:25:e5:70:da:63:c3:ae:31:07:75:21:15:9a: ec:09:68:cb:6f:7f:48:1e:df:10:e6:a2:9f:a9:9d:e2:8c:04: 28:80:2d:51:64:e7:c6:3c:61:88:d0:07:ce:94:98:f2:45:29: 68:07:e4:35:27:6b:d3:a0:e9:8d:4c:83:56:ea:52:65:96:2e: 1d:73:20:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjQwNDMwMTc0NzE4WhcNMjQwNTA3MTc0NzE4WjAYMRYwFAYD VQQDEw02NjMxMmVhNi1iMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurwWqtN6s0UkLyk4r/Mu9NixBBqFofN92hJ1efJzYHALTTPuoSqPKDmMGoj9 iNZDMWMy/vCSdS2EZXkxQoG1va+Ptpgnf3BiHVhbkoe/rFoZTc8/43WHB0M3pfnO ZeE4swOW5o8L42jQyJ1dQuHTcnLK642L3QMaUaO1JLT9zZYW/pzBfUcTvo3xYX51 xNyB0ZYhDW9C3dZYXXRRNoBqKhCalaPaPxp0jXRaaUKh7s1wGMiXYA3ScEG3nUMI OvHtkE9znn5DD46Sy4PSViSLRWz7kH4+gmbAM/gQSo72MUy0A0D9Ze07m8nv3dkz R8uPNeklE+5Wba3hBaS9ACxnhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZozKLO rAq+BoubfxMS1wljkXsSMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFZaW2MqG22q/1JUie9g87yqlgXluKboNP1cs4PeNefAWMwbwfQvOF wk21nwXe6/HYGQDpvxVKQjz+laKSlIpNxOaw85NMX3ijyjD3suSb+Afq7HhDRHau hvsaH/3av3DtcanvDKZTGzUnTWAHEPGKXs1oYv14VJc/4Yq4sToE1MNi9XKQ6l/B xemJlVOlEVeAW6Mv6O4HcygLXTbGHF1PIMig8Fy2IasCaGw/bTOw6Vhpu8VmujmD YyXlcNpjw64xB3UhFZrsCWjLb39IHt8Q5qKfqZ3ijAQogC1RZOfGPGGI0AfOlJjy RSloB+Q1J2vToOmNTINW6lJlli4dcyA3 -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:43 2024 by rpki-client on console-fra.rpki-client.org