$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: Cv7C/Lv/8dhKh5yDFp4O1HfoZ4DQkAv7l5ciO1hOhv8= Subject key identifier: BC:6C:43:B7:FE:80:89:78:DC:00:2B:0A:5C:71:13:37:F0:1B:6B:65 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 03B2 Signing time: Sun 19 May 2024 02:30:25 +0000 Manifest this update: Sun 19 May 2024 02:30:24 +0000 Manifest next update: Sun 26 May 2024 02:30:24 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: gCkIlpQcer06zpKBEdGs70u+1/EN1fQfGhx0vXjd/cE=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: wse4L0FrmX/tz366IQ6yM7mxwlFwk4RG4pPiF7/7Gs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: May 19 02:30:24 2024 GMT Not After : May 26 02:30:24 2024 GMT Subject: CN=66496440-a903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:f6:5d:53:3b:db:64:5b:ca:6f:3f:17:a2: f9:83:14:84:f0:8b:b4:79:05:3a:d4:cf:0d:75:fc: cc:b8:3b:e9:1d:2b:f6:6c:82:46:15:f3:29:27:10: 12:92:39:df:b3:0b:59:d2:0b:81:61:67:b8:02:11: 58:fa:46:21:b9:55:dd:e3:38:da:25:35:3d:18:f6: 76:77:c5:cd:4b:7a:2b:ef:fe:3a:2b:dc:3f:f2:3e: 4e:4c:e4:7e:65:fe:b3:3b:08:74:d4:63:93:46:d8: 0f:0a:46:7d:62:f5:0c:18:e0:78:b5:ba:76:ff:e9: 92:2f:3d:90:91:28:1e:e0:f3:fb:05:a7:5e:13:c3: 9a:a4:1e:75:5c:35:84:59:3c:d5:95:6d:2c:82:fa: 19:5c:c6:36:3e:f8:59:ab:05:b4:95:98:6e:dd:57: c5:3d:00:e9:cc:2e:89:92:ec:8d:fd:39:8d:04:cd: a4:7a:51:3b:0d:8c:44:19:35:c9:fa:8b:f5:56:ff: b9:7c:4a:ee:69:77:69:92:0e:5b:3c:88:0d:7e:86: 15:42:eb:22:8f:78:da:77:05:76:f3:6b:12:ab:e6: 27:54:9d:5a:03:ae:f7:1c:e6:3a:9c:9f:18:93:ad: eb:ef:53:f6:bd:71:38:f5:d4:9b:79:be:62:e6:5d: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:6C:43:B7:FE:80:89:78:DC:00:2B:0A:5C:71:13:37:F0:1B:6B:65 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:eb:1a:d0:5d:e6:14:5f:a0:21:ea:1e:b4:1f:67:9a:73:1c: c2:07:5a:fa:01:63:47:2f:78:43:04:25:bd:e5:d4:bb:82:f3: c8:7f:44:67:3d:1c:65:d4:05:44:2e:5f:5c:66:56:78:7b:e2: 5b:d8:91:ad:eb:7d:36:e3:26:73:8f:26:ee:95:15:c3:bf:d6: d5:65:d8:43:db:08:89:5f:b0:77:46:47:34:76:64:5c:17:50: 3f:37:82:6f:6d:7e:2a:12:65:e5:03:d3:6c:b6:4e:8b:d6:99: 60:83:93:e8:30:6c:31:a5:1a:04:69:02:3e:af:06:99:b8:80: 6e:32:51:f1:83:a5:f8:08:74:cb:72:cc:16:48:0e:d4:f1:44: d3:96:48:e9:e8:3e:bd:b0:ea:62:b8:5e:f5:91:09:b9:4a:59: e0:58:69:c5:67:96:d6:64:42:0e:a3:f4:3a:6e:b0:d1:0b:90: f3:fd:fd:d2:2f:8d:dc:87:ae:cb:48:28:8d:f8:8e:51:73:30: c7:26:a5:d7:14:1b:d4:aa:ed:a0:7d:1b:2c:5a:0f:c9:d6:94: 4c:34:2b:32:7f:ef:33:a6:3b:04:9c:e1:a6:71:42:77:78:44: cd:82:84:58:f7:10:66:c8:34:5d:31:13:bb:60:7c:98:fb:b4: f6:7a:7b:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjQwNTE5MDIzMDI0WhcNMjQwNTI2MDIzMDI0WjAYMRYwFAYD VQQDEw02NjQ5NjQ0MC1hOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMr2XVM722Rbym8/F6L5gxSE8Iu0eQU61M8NdfzMuDvpHSv2bIJGFfMpJxAS kjnfswtZ0guBYWe4AhFY+kYhuVXd4zjaJTU9GPZ2d8XNS3or7/46K9w/8j5OTOR+ Zf6zOwh01GOTRtgPCkZ9YvUMGOB4tbp2/+mSLz2QkSge4PP7BadeE8OapB51XDWE WTzVlW0sgvoZXMY2PvhZqwW0lZhu3VfFPQDpzC6JkuyN/TmNBM2kelE7DYxEGTXJ +ov1Vv+5fEruaXdpkg5bPIgNfoYVQusij3jadwV282sSq+YnVJ1aA673HOY6nJ8Y k63r71P2vXE49dSbeb5i5l2/IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxsQ7f+ gIl43AArClxxEzfwG2tlMB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr6xrQXeYUX6Ah6h60H2eacxzCB1r6AWNHL3hDBCW95dS7gvPIf0Rn PRxl1AVELl9cZlZ4e+Jb2JGt63024yZzjybulRXDv9bVZdhD2wiJX7B3Rkc0dmRc F1A/N4JvbX4qEmXlA9Nstk6L1plgg5PoMGwxpRoEaQI+rwaZuIBuMlHxg6X4CHTL cswWSA7U8UTTlkjp6D69sOpiuF71kQm5SlngWGnFZ5bWZEIOo/Q6brDRC5Dz/f3S L43ch67LSCiN+I5RczDHJqXXFBvUqu2gfRssWg/J1pRMNCsyf+8zpjsEnOGmcUJ3 eETNgoRY9xBmyDRdMRO7YHyY+7T2enu1 -----END CERTIFICATE-----Generated at Sun May 19 03:38:14 2024 by rpki-client on console-ams.rpki-client.org