$ rpki-client -vvf rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft File: 4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft (raw, json) Hash identifier: ZkCGDkWb8dsi5IcM5rMN0tniK21PXVokEL0M7QNV+7I= Subject key identifier: 65:7F:3C:BE:8B:70:C9:7C:3A:61:D2:46:A9:AB:C1:96:BA:24:26:BC Authority key identifier: E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F Certificate issuer: /CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft Manifest number: 0CB4 Signing time: Thu 30 May 2024 19:14:22 +0000 Manifest this update: Thu 30 May 2024 19:14:22 +0000 Manifest next update: Thu 06 Jun 2024 19:14:22 +0000 Files and hashes: 1: 4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl (hash: FuZvT2la4KvIbvTLOc59GpfRPfzCfLnMcg4EA16t7IE=) 2: 83157C50385711EB86284653C4F9AE02.roa (hash: /kIRKc9Hp6BKGbQAmGX/sRLycI6ZLJ8eBwwo3kAbSw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 19:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Validity Not Before: May 30 19:14:22 2024 GMT Not After : Jun 6 19:14:22 2024 GMT Subject: CN=6658d00e-520b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:b1:40:f7:3f:fb:8c:ea:0c:20:b5:40:40: 65:02:5d:09:57:91:5d:cb:bd:cb:ad:92:40:f8:61: 86:5e:e9:4c:50:16:7c:15:9b:15:e0:3f:f5:8c:ce: 20:9f:2f:1f:b0:c2:6c:29:d9:90:53:81:b8:94:03: 5c:79:5b:e6:d8:b4:55:dd:e1:6c:f8:f8:99:dc:62: c9:41:e7:36:41:ce:27:23:8f:6b:84:c5:84:75:04: 7b:ad:95:56:c7:b0:c5:72:ea:c6:80:17:51:41:da: ec:a9:b1:1c:2d:ab:73:2f:66:99:88:bb:15:d8:3f: da:c4:09:9d:fc:db:3d:6f:d1:5a:c8:e9:8a:bb:94: 87:e5:2e:be:b2:e7:1a:d9:f9:54:82:3e:22:78:94: 28:94:d2:89:61:0b:02:d1:3c:47:e3:9d:d9:18:0a: 81:fb:88:86:0b:35:bc:b4:15:a3:22:a1:09:11:2d: 3c:d8:d0:88:c0:2b:82:14:40:26:8c:2d:d5:63:b1: 70:e2:52:40:aa:3f:74:16:04:3f:59:ff:f8:f2:8b: 1b:7e:5c:a2:0d:e5:b4:71:bf:38:41:a2:12:75:f1: 2c:cb:ed:d0:f8:90:63:6a:d0:11:8e:ab:e5:72:a8: a3:2b:6f:4a:30:52:5f:65:0d:92:c6:f9:70:cd:0e: 14:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7F:3C:BE:8B:70:C9:7C:3A:61:D2:46:A9:AB:C1:96:BA:24:26:BC X509v3 Authority Key Identifier: keyid:E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:40:b2:24:8e:7b:70:86:9f:f8:58:83:4d:40:20:a0:71:11: 3b:f0:73:fe:86:f9:35:ed:16:ae:21:cd:bc:b1:57:2b:5b:ae: 54:a7:dd:aa:61:cc:c3:cc:4a:7b:0b:30:7a:8f:25:88:15:fb: b0:8a:94:12:4a:32:17:8c:16:3e:16:b6:87:0e:b9:11:9a:8f: 64:9e:ec:29:bb:4c:aa:d5:5a:3a:17:a1:1f:ea:ea:1f:fa:85: 55:f4:c9:f3:b6:8e:1f:8a:39:a8:aa:9f:aa:01:e1:ac:b3:90: fb:d2:73:ec:e7:cc:ee:65:58:db:7c:5d:2e:b9:27:f1:95:ea: 77:40:22:44:a5:f3:35:07:32:6a:8e:3c:11:b9:31:6a:99:c0: 94:e0:66:cb:b3:59:0f:88:e2:62:d1:d2:6a:94:79:1b:b9:ef: d9:e3:8b:17:5c:ed:c6:f5:f7:e0:6e:62:6d:38:d0:13:ea:91: 17:cf:7b:fa:74:4d:49:2f:c5:2a:5b:81:f6:ca:36:8d:d6:25: e1:f3:f1:55:81:21:74:d1:b6:46:b9:7f:92:e3:88:de:e6:ce: d2:e4:ae:0b:39:dd:15:a4:4a:c5:65:77:82:b5:1d:90:a5:5d: 31:d6:ef:90:9b:fe:a4:90:3a:82:a0:74:70:2c:6d:76:79:dc: a1:48:b6:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzNjExMTAvBgNVBAUTKEUwQjlBMkU5OTM5RDU1OEYxOEJFNjIxNzVDOTVENzY4 RDI0NUQzMUYwHhcNMjQwNTMwMTkxNDIyWhcNMjQwNjA2MTkxNDIyWjAYMRYwFAYD VQQDEw02NjU4ZDAwZS01MjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf6xQPc/+4zqDCC1QEBlAl0JV5Fdy73LrZJA+GGGXulMUBZ8FZsV4D/1jM4g ny8fsMJsKdmQU4G4lANceVvm2LRV3eFs+PiZ3GLJQec2Qc4nI49rhMWEdQR7rZVW x7DFcurGgBdRQdrsqbEcLatzL2aZiLsV2D/axAmd/Ns9b9FayOmKu5SH5S6+suca 2flUgj4ieJQolNKJYQsC0TxH453ZGAqB+4iGCzW8tBWjIqEJES082NCIwCuCFEAm jC3VY7Fw4lJAqj90FgQ/Wf/48osbflyiDeW0cb84QaISdfEsy+3Q+JBjatARjqvl cqijK29KMFJfZQ2SxvlwzQ4U3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGV/PL6L cMl8OmHSRqmrwZa6JCa8MB8GA1UdIwQYMBaAFOC5oumTnVWPGL5iF1yV12jSRdMf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjM2MS83QzhEODAwQUNB MzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZOFl2bUlYWEpYWGFOSkYw eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRMbWk2Wk9kVlk4WXZtSVhYSlhYYU5KRjB4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjM2MS83QzhEODAwQUNBMzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZ OFl2bUlYWEpYWGFOSkYweDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMQLIkjntwhp/4WINNQCCgcRE78HP+hvk17RauIc28sVcrW65Up92q YczDzEp7CzB6jyWIFfuwipQSSjIXjBY+FraHDrkRmo9knuwpu0yq1Vo6F6Ef6uof +oVV9Mnzto4fijmoqp+qAeGss5D70nPs58zuZVjbfF0uuSfxlep3QCJEpfM1BzJq jjwRuTFqmcCU4GbLs1kPiOJi0dJqlHkbue/Z44sXXO3G9ffgbmJtONAT6pEXz3v6 dE1JL8UqW4H2yjaN1iXh8/FVgSF00bZGuX+S44je5s7S5K4LOd0VpErFZXeCtR2Q pV0x1u+Qm/6kkDqCoHRwLG12edyhSLaN -----END CERTIFICATE-----Generated at Thu May 30 20:35:32 2024 by rpki-client on console-fra.rpki-client.org