$ rpki-client -vvf rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft File: J-OLvrji2ycfz6F8E0feawaDRGA.mft (raw, json) Hash identifier: w7RTOrZxfrmYqm3lMOxk5c+ea8P6qS6s9urxD9ll4E0= Subject key identifier: 17:42:5B:19:48:FE:FF:50:66:FE:A6:A3:AC:DC:4F:4F:7B:39:48:C7 Authority key identifier: 27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 Certificate issuer: /CN=A9151E54/serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft Manifest number: 0480 Signing time: Sun 19 May 2024 01:39:10 +0000 Manifest this update: Sun 19 May 2024 01:39:10 +0000 Manifest next update: Sun 26 May 2024 01:39:10 +0000 Files and hashes: 1: J-OLvrji2ycfz6F8E0feawaDRGA.crl (hash: limftWvQuXPfZ6Sr4OkYu9hjkFAxrPp6oRUcjrFUHgs=) 2: 7D20FF46F3E511EBB8BBF720C4F9AE02.roa (hash: znarIi95IxbY5QtfZt5UpV1pUKWZGLwbMyxU7w7HIcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151E54/serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Validity Not Before: May 19 01:39:10 2024 GMT Not After : May 26 01:39:10 2024 GMT Subject: CN=6649583e-b7f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fd:8f:81:8b:51:ee:3c:87:9e:c8:4d:28:a5: f9:7c:d4:fb:25:c6:f2:b6:25:b5:63:bb:d7:b8:65: 09:fc:14:46:96:17:2f:2a:26:a2:39:a2:1e:d9:c0: 6b:97:16:77:e6:0a:53:60:28:5f:04:f1:0e:34:bd: 55:c7:57:e1:4b:78:26:d7:13:76:7c:8f:40:20:31: 34:27:89:07:e1:4e:5e:df:e1:cf:59:b5:72:d5:74: 66:e2:f3:72:6a:70:ce:18:25:02:df:20:a2:ed:56: 35:fd:ab:a9:8b:90:13:79:96:75:c9:e0:5c:a0:be: 39:4a:cb:b7:46:e5:7a:4c:61:65:71:bf:26:9c:7d: 4d:e5:21:66:1b:37:32:36:42:d9:1d:ee:6f:3a:9a: 13:36:5a:5e:4a:cd:6f:88:28:c4:18:05:0f:ed:80: 5f:11:18:c9:76:7a:b4:68:25:9e:8f:28:f6:85:b8: b7:0b:18:a0:5e:5e:06:cf:54:a7:0c:f0:16:86:21: 78:3f:3d:9b:96:18:98:08:ef:c1:ab:75:d6:2e:f0: c7:fa:a7:17:16:e3:a2:74:ad:32:11:f8:4b:f2:68: fb:4c:95:a3:77:70:ce:25:4f:4d:1e:36:3d:26:72: 15:9f:7a:6c:99:72:1b:f3:b5:62:b7:29:74:8e:12: 7a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:42:5B:19:48:FE:FF:50:66:FE:A6:A3:AC:DC:4F:4F:7B:39:48:C7 X509v3 Authority Key Identifier: keyid:27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:98:ea:c4:ef:7d:34:22:1c:24:60:32:ba:a3:41:5d:d2:ba: 08:48:1b:40:65:8e:4b:23:9c:1e:ae:95:9f:5d:99:aa:5b:64: 7f:01:7b:e6:10:b9:86:56:84:e8:c4:cc:39:9d:10:ae:1a:b0: 5c:cc:98:94:2a:8d:6f:ba:4a:71:c1:ad:03:23:bb:5d:4f:18: ef:1a:39:6c:2e:f7:ca:b9:a7:85:51:d4:a1:25:2c:7c:72:9a: a9:d7:7d:2f:8e:7a:98:ad:d8:26:b0:96:f6:e7:de:91:3e:93: 68:19:6f:83:be:d3:87:cb:df:e2:e6:db:39:3a:69:48:1b:ec: 34:a0:35:f3:b9:57:2a:98:a2:86:77:fd:45:e9:2f:42:3e:f4: 39:70:4a:9a:4b:7e:41:08:ef:54:e1:9e:a1:ab:e8:3d:f3:27: 53:81:56:87:a9:13:98:d6:28:65:82:e4:1e:35:e1:c9:11:fd: 70:bf:39:47:37:0a:cb:86:ad:e6:6b:db:57:c7:87:27:96:b7: 66:cf:9a:f5:0c:31:b2:cd:00:f3:4e:b7:da:2f:27:fb:24:6e: e9:e0:b3:10:55:64:46:69:69:90:9f:4c:db:6f:5e:58:3b:f5: de:02:01:b6:fa:f0:1e:ac:00:77:71:c7:b9:d3:58:c9:1b:c1: de:be:7a:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFNTQxMTAvBgNVBAUTKDI3RTM4QkJFQjhFMkRCMjcxRkNGQTE3QzEzNDdERTZC MDY4MzQ0NjAwHhcNMjQwNTE5MDEzOTEwWhcNMjQwNTI2MDEzOTEwWjAYMRYwFAYD VQQDEw02NjQ5NTgzZS1iN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqv2PgYtR7jyHnshNKKX5fNT7JcbytiW1Y7vXuGUJ/BRGlhcvKiaiOaIe2cBr lxZ35gpTYChfBPEONL1Vx1fhS3gm1xN2fI9AIDE0J4kH4U5e3+HPWbVy1XRm4vNy anDOGCUC3yCi7VY1/aupi5ATeZZ1yeBcoL45Ssu3RuV6TGFlcb8mnH1N5SFmGzcy NkLZHe5vOpoTNlpeSs1viCjEGAUP7YBfERjJdnq0aCWejyj2hbi3CxigXl4Gz1Sn DPAWhiF4Pz2blhiYCO/Bq3XWLvDH+qcXFuOidK0yEfhL8mj7TJWjd3DOJU9NHjY9 JnIVn3psmXIb87Vityl0jhJ6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdCWxlI /v9QZv6mo6zcT097OUjHMB8GA1UdIwQYMBaAFCfji7644tsnH8+hfBNH3msGg0Rg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUU1NC9BRkQxN0EzNkYz RTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5Y2Z6NkY4RTBmZWF3YURS R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0otT0x2cmppMnljZno2RjhFMGZlYXdhRFJHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUU1NC9BRkQxN0EzNkYzRTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5 Y2Z6NkY4RTBmZWF3YURSR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEmOrE7300IhwkYDK6o0Fd0roISBtAZY5LI5werpWfXZmqW2R/AXvm ELmGVoToxMw5nRCuGrBczJiUKo1vukpxwa0DI7tdTxjvGjlsLvfKuaeFUdShJSx8 cpqp130vjnqYrdgmsJb2596RPpNoGW+DvtOHy9/i5ts5OmlIG+w0oDXzuVcqmKKG d/1F6S9CPvQ5cEqaS35BCO9U4Z6hq+g98ydTgVaHqROY1ihlguQeNeHJEf1wvzlH NwrLhq3ma9tXx4cnlrdmz5r1DDGyzQDzTrfaLyf7JG7p4LMQVWRGaWmQn0zbb15Y O/XeAgG2+vAerAB3cce501jJG8Hevnpn -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org