$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: JS64kwk1sGE4jN6VuTKfJ5GpzrxjPRam4yprky5Q14s= Subject key identifier: 33:DC:F4:43:60:A7:A3:9C:D4:3D:4F:B5:8E:B0:DD:09:EF:DD:B6:CA Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0962 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0950 Signing time: Thu 30 May 2024 21:32:58 +0000 Manifest this update: Thu 30 May 2024 21:32:57 +0000 Manifest next update: Thu 06 Jun 2024 21:32:57 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: V0dE7Imt15CcA41UNnRdfhRIcaqPzqey1rzuKAq/wFM=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: fphiTj344DMgLwq6G0nys3hIn88s+iOZ8JrAAtNe+RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 21:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2402 (0x962) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: May 30 21:32:57 2024 GMT Not After : Jun 6 21:32:57 2024 GMT Subject: CN=6658f089-0300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1f:3c:64:fc:57:cb:4d:78:20:fa:ab:9d:9e: 31:2a:a3:60:25:b4:36:e7:39:81:cc:d9:eb:b6:23: f4:d2:3f:b8:a5:29:ad:af:ea:8f:0e:a7:29:a9:cf: fa:a5:8d:50:8b:75:43:78:df:b7:75:b5:8b:ce:c8: cf:f5:d3:71:af:3c:60:34:7d:b3:9e:e3:56:6d:b3: 51:a4:59:2a:83:f3:02:3d:23:e7:8b:d2:23:3a:9f: 59:96:50:c4:30:ef:3e:5a:1d:b4:78:57:4d:3b:80: be:07:8a:8e:81:5b:90:83:c7:b0:60:da:ca:c4:4c: 8f:11:d6:6f:83:54:55:a4:33:70:ad:5c:43:55:fc: 4a:d3:15:25:85:ae:8e:2e:bc:ca:ac:a0:4e:02:00: c5:a7:83:b5:fc:01:ad:4b:64:af:46:a8:b0:16:9f: 28:2c:7c:0a:c6:37:ed:d7:a0:86:e4:15:5c:02:97: 2a:bf:66:8a:0d:6d:8c:f7:26:82:32:b8:0a:db:e9: 8c:2a:ae:47:a9:2a:6b:51:c6:6d:5b:03:2d:fb:89: eb:74:a8:6c:72:73:b0:bc:52:95:8a:d3:3d:9b:69: 06:ea:24:61:df:73:04:59:62:04:db:1a:ff:6f:7a: d5:dd:c3:63:66:ea:22:71:60:56:c4:69:44:f7:f5: f7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DC:F4:43:60:A7:A3:9C:D4:3D:4F:B5:8E:B0:DD:09:EF:DD:B6:CA X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e2:48:b4:3e:3f:e4:91:c3:b7:3e:4e:c2:c3:e2:1a:a5:22: c9:e4:7b:fa:46:d0:31:56:83:a2:9b:eb:46:1d:1b:c3:86:f4: af:02:4b:47:e8:24:aa:ad:58:52:ba:40:09:3d:26:57:ca:b8: ac:1e:8d:8d:09:36:b8:79:14:51:5c:5b:02:4d:33:51:98:48: b4:06:23:8c:55:f1:21:f3:93:34:93:1d:cb:fa:5f:fc:84:a0: 19:57:a1:54:49:77:1c:40:a6:0b:df:94:86:6d:26:bb:1a:7a: b5:b8:26:6e:fe:a1:40:ba:80:44:42:f6:ec:b6:dd:0a:a2:71: 45:1e:23:40:4d:ab:fd:90:6d:e7:f9:14:15:ef:77:86:9a:2d: 7f:6a:d4:9b:96:00:33:f8:c3:5c:66:26:88:00:1a:a8:b8:eb: a7:7b:54:3e:2f:cd:ae:e3:c1:b9:b6:c2:7d:36:f5:0c:37:f9: b1:05:36:ea:1e:b2:81:b6:c5:a5:6b:fa:7a:1a:55:36:67:70: a3:c3:1d:58:5e:b3:73:b8:80:92:d8:bf:9c:4f:9c:97:a9:65: e2:cf:3f:4a:6d:20:01:6f:0c:b4:57:19:ab:36:81:f8:fa:68: 3b:46:6f:8d:f6:c5:da:c5:d6:e0:83:87:3f:2b:c9:5c:28:c5: 9b:fe:26:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjQwNTMwMjEzMjU3WhcNMjQwNjA2MjEzMjU3WjAYMRYwFAYD VQQDEw02NjU4ZjA4OS0wMzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB88ZPxXy014IPqrnZ4xKqNgJbQ25zmBzNnrtiP00j+4pSmtr+qPDqcpqc/6 pY1Qi3VDeN+3dbWLzsjP9dNxrzxgNH2znuNWbbNRpFkqg/MCPSPni9IjOp9ZllDE MO8+Wh20eFdNO4C+B4qOgVuQg8ewYNrKxEyPEdZvg1RVpDNwrVxDVfxK0xUlha6O LrzKrKBOAgDFp4O1/AGtS2SvRqiwFp8oLHwKxjft16CG5BVcApcqv2aKDW2M9yaC MrgK2+mMKq5HqSprUcZtWwMt+4nrdKhscnOwvFKVitM9m2kG6iRh33MEWWIE2xr/ b3rV3cNjZuoicWBWxGlE9/X31QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPc9ENg p6Oc1D1PtY6w3Qnv3bbKMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA14ki0Pj/kkcO3Pk7Cw+IapSLJ5Hv6RtAxVoOim+tGHRvDhvSvAktH 6CSqrVhSukAJPSZXyrisHo2NCTa4eRRRXFsCTTNRmEi0BiOMVfEh85M0kx3L+l/8 hKAZV6FUSXccQKYL35SGbSa7Gnq1uCZu/qFAuoBEQvbstt0KonFFHiNATav9kG3n +RQV73eGmi1/atSblgAz+MNcZiaIABqouOune1Q+L82u48G5tsJ9NvUMN/mxBTbq HrKBtsWla/p6GlU2Z3Cjwx1YXrNzuICS2L+cT5yXqWXizz9KbSABbwy0VxmrNoH4 +mg7Rm+N9sXaxdbgg4c/K8lcKMWb/iZu -----END CERTIFICATE-----Generated at Thu May 30 22:23:42 2024 by rpki-client on console-fra.rpki-client.org