$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: c3FO7VnZX30SU7OhBe5Js/WNtVRGL913ZbVnh8gIjoY= Subject key identifier: 98:8A:E8:D7:64:40:E4:F4:21:E3:7D:3C:94:F1:4D:A6:B5:57:40:3F Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 04B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 04B0 Signing time: Sat 01 Jun 2024 02:30:58 +0000 Manifest this update: Sat 01 Jun 2024 02:30:58 +0000 Manifest next update: Sat 08 Jun 2024 02:30:58 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: cszx6X5ysPiBQxEVi0zv3H3zFXL2Lw6oCX9RY/RjLNU=) 2: 0D0106EAE5BF11EB801D410DC4F9AE02.roa (hash: 3jMfh6JrAWUp0w/oStB2daKxlSbx8MU7h4k/yNQbZVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Validity Not Before: Jun 1 02:30:58 2024 GMT Not After : Jun 8 02:30:58 2024 GMT Subject: CN=665a87e2-5098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a8:68:c8:2b:27:0f:81:6b:62:be:0d:d6:18: ff:a8:ae:f4:a9:d5:9b:d2:ba:13:56:0c:e7:2b:7c: 96:29:71:21:e4:3c:94:1d:6b:32:60:fe:48:f7:2b: 13:64:21:4b:bc:0a:7f:4a:5b:96:52:3d:0c:c6:d1: 3b:91:a5:d5:4d:2a:70:2c:51:84:ea:64:b7:f2:fd: 97:9c:06:45:23:15:87:e4:3a:6e:4c:24:dd:77:98: 30:fc:de:f0:6b:e3:58:29:e5:4c:f2:17:f9:70:52: b4:fb:88:a6:2a:02:f1:f8:78:ca:ac:ff:61:bf:12: b1:0c:0c:6f:d6:47:27:21:26:13:98:64:a4:28:75: e9:68:cc:e6:6d:ef:96:3b:4c:12:54:57:cf:7e:49: bf:85:0c:70:50:0f:0d:1f:39:46:72:74:89:cd:c3: d8:7d:e3:88:17:7a:c9:ab:6e:5d:7a:d6:29:b4:b9: 0b:42:51:24:7c:0d:6e:19:18:bb:76:5e:8a:ea:35: 21:66:b6:a8:4a:98:3a:7e:e9:ed:80:9b:04:f6:64: 00:81:68:56:a0:fc:8f:e4:ec:aa:1c:7e:c0:5b:60: 40:16:4b:91:83:9c:b9:78:67:68:81:84:3b:b6:aa: 2c:9a:67:d4:f7:4b:a9:8f:53:18:16:d0:fd:5a:a0: f6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8A:E8:D7:64:40:E4:F4:21:E3:7D:3C:94:F1:4D:A6:B5:57:40:3F X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:75:07:01:95:02:93:2d:6b:94:dd:dc:a1:83:0c:35:73:1d: dd:c5:a0:02:ba:e2:7b:09:1f:85:a6:ea:62:ed:5c:14:a3:66: 44:fa:35:fa:96:6d:11:39:e8:45:be:99:6e:d7:bc:b6:a0:fd: 17:f7:4e:9f:4b:e2:49:95:72:41:7f:66:d1:d6:c4:10:66:7a: 42:b1:39:b7:84:28:b5:37:3c:e8:73:8d:52:34:15:9a:3a:84: 99:ad:73:72:87:45:bb:2d:99:ba:43:6a:19:e6:64:39:41:46: 84:9e:0e:9f:30:70:a7:81:4d:59:b6:bc:f0:62:de:fb:19:cc: 77:08:61:9e:70:44:e1:27:03:f0:d0:88:26:12:ca:a0:7f:5b: 51:aa:5c:74:4f:bf:5c:5d:db:c7:86:55:52:17:bc:81:84:b5: aa:be:0f:b7:98:79:6e:07:79:7c:7f:98:54:90:1c:98:5b:fe: 4e:f5:54:e2:ff:59:7a:36:29:0b:ae:ba:bd:f1:fa:5a:72:b7: 4e:16:3c:6f:97:a8:91:d1:c8:26:36:92:4e:94:60:47:1d:1e: d9:64:98:bf:80:08:41:56:d9:c5:6a:a7:ee:c2:a1:a4:40:41: 1d:cf:0a:5f:c0:a9:0d:b0:82:da:00:79:ad:c0:df:6c:d2:63: c0:5a:ad:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjQwNjAxMDIzMDU4WhcNMjQwNjA4MDIzMDU4WjAYMRYwFAYD VQQDEw02NjVhODdlMi01MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKhoyCsnD4FrYr4N1hj/qK70qdWb0roTVgznK3yWKXEh5DyUHWsyYP5I9ysT ZCFLvAp/SluWUj0MxtE7kaXVTSpwLFGE6mS38v2XnAZFIxWH5DpuTCTdd5gw/N7w a+NYKeVM8hf5cFK0+4imKgLx+HjKrP9hvxKxDAxv1kcnISYTmGSkKHXpaMzmbe+W O0wSVFfPfkm/hQxwUA8NHzlGcnSJzcPYfeOIF3rJq25detYptLkLQlEkfA1uGRi7 dl6K6jUhZraoSpg6funtgJsE9mQAgWhWoPyP5OyqHH7AW2BAFkuRg5y5eGdogYQ7 tqosmmfU90upj1MYFtD9WqD2/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiK6Ndk QOT0IeN9PJTxTaa1V0A/MB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLdQcBlQKTLWuU3dyhgww1cx3dxaACuuJ7CR+Fpupi7VwUo2ZE+jX6 lm0ROehFvplu17y2oP0X906fS+JJlXJBf2bR1sQQZnpCsTm3hCi1Nzzoc41SNBWa OoSZrXNyh0W7LZm6Q2oZ5mQ5QUaEng6fMHCngU1ZtrzwYt77Gcx3CGGecEThJwPw 0IgmEsqgf1tRqlx0T79cXdvHhlVSF7yBhLWqvg+3mHluB3l8f5hUkByYW/5O9VTi /1l6NikLrrq98fpacrdOFjxvl6iR0cgmNpJOlGBHHR7ZZJi/gAhBVtnFaqfuwqGk QEEdzwpfwKkNsILaAHmtwN9s0mPAWq3W -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:59 2024 by rpki-client on console-fra.rpki-client.org