$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: nhfJSu6u8/YGlcHcb4NXuPcyh4NYzX+9vsjZT5/wyoE= Subject key identifier: D3:0F:B0:0E:15:6E:68:25:89:77:9F:D0:13:D3:48:30:4B:AE:34:8E Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 04A4 Signing time: Tue 07 May 2024 01:33:49 +0000 Manifest this update: Tue 07 May 2024 01:33:49 +0000 Manifest next update: Tue 14 May 2024 01:33:49 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: TJaGB1qtmjEBQbrfDsniIBM0lWkZAiCG5Q1D79gYGdo=) 2: 0D0106EAE5BF11EB801D410DC4F9AE02.roa (hash: 3jMfh6JrAWUp0w/oStB2daKxlSbx8MU7h4k/yNQbZVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Validity Not Before: May 7 01:33:49 2024 GMT Not After : May 14 01:33:49 2024 GMT Subject: CN=663984fd-2088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4c:67:20:bf:47:74:80:1a:bb:df:6b:28:d9: 0f:a4:eb:f6:79:69:2f:3f:94:fe:12:88:97:11:56: 89:aa:11:83:13:5b:df:86:31:8a:5c:66:ac:eb:dc: 15:f2:9f:6f:ce:7b:5a:f3:c2:1d:ce:5c:85:d0:ec: bc:c4:ee:26:2a:e3:46:f4:60:b3:ed:89:7f:4b:63: 59:86:a1:d9:f3:ef:21:fd:ee:2e:57:0e:43:bc:b6: 43:50:4d:ac:9c:32:bf:11:94:92:ca:85:28:ad:54: 4f:04:5b:35:fc:ec:59:be:bf:ca:be:18:00:da:af: 2d:30:32:49:0f:42:2a:76:3e:b8:eb:c5:a8:05:1a: 9c:3d:42:c8:57:e9:32:67:68:65:1c:43:fd:ec:8a: 42:10:61:fd:29:78:6d:18:29:4d:4b:e7:a8:f5:3c: 39:a8:b0:34:dc:ab:9f:cb:ea:6a:38:35:67:3a:04: 3d:c0:bb:4a:d1:43:2d:1e:c1:3e:11:94:04:be:50: c7:d5:5a:68:5f:ff:3c:ba:70:60:e0:64:18:7c:98: f3:68:c9:54:9d:23:98:ef:67:fd:5f:89:b3:67:e5: 6d:d1:e6:d5:09:2c:7c:2a:c6:c1:26:36:da:cd:15: 87:18:a1:68:b2:1a:60:88:35:fc:1a:3a:58:cd:6e: ca:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0F:B0:0E:15:6E:68:25:89:77:9F:D0:13:D3:48:30:4B:AE:34:8E X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:33:96:73:27:f5:52:09:7f:ac:cb:5b:09:65:e4:67:e3:18: ee:b0:21:9c:b2:cb:9f:74:d4:e2:f2:f2:82:ab:b8:1f:2c:16: c1:62:45:ad:09:92:d1:4a:f2:b0:3b:5c:a2:17:09:83:42:db: 82:76:36:07:19:0e:c0:52:e2:a6:83:f1:a2:8f:76:42:29:98: 9d:6c:d6:9c:87:b4:1f:40:a9:cc:76:81:4c:08:21:8d:83:e6: cc:3c:a2:c4:b8:4b:f7:18:fd:3b:23:07:2f:18:74:9b:d7:08: 97:37:b2:db:55:09:fc:9b:85:1c:98:47:a0:2d:a6:1b:90:67: dd:bb:4a:bb:b9:fe:44:ee:be:9e:7f:86:0e:d7:01:60:5f:17: f0:57:9e:91:d5:e9:a8:9b:37:ef:ce:4f:b6:4c:80:40:7f:75: ec:a1:0a:6c:b8:d4:43:5b:c3:94:16:67:f6:f3:c9:d4:2b:fb: 1c:5d:f2:e7:51:c8:50:9c:da:a8:bf:2c:cd:a1:34:d0:e8:ed: 41:aa:8f:15:0e:fa:17:80:b6:5a:22:b5:02:59:8f:d1:8d:01: 67:c7:65:75:8f:45:00:75:74:bc:6f:89:b1:93:dd:f2:e8:9f: de:e0:32:9e:84:2a:8a:5c:5a:65:09:d7:52:f6:35:9c:3e:50: 99:b2:b8:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjQwNTA3MDEzMzQ5WhcNMjQwNTE0MDEzMzQ5WjAYMRYwFAYD VQQDEw02NjM5ODRmZC0yMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ExnIL9HdIAau99rKNkPpOv2eWkvP5T+EoiXEVaJqhGDE1vfhjGKXGas69wV 8p9vznta88IdzlyF0Oy8xO4mKuNG9GCz7Yl/S2NZhqHZ8+8h/e4uVw5DvLZDUE2s nDK/EZSSyoUorVRPBFs1/OxZvr/KvhgA2q8tMDJJD0Iqdj6468WoBRqcPULIV+ky Z2hlHEP97IpCEGH9KXhtGClNS+eo9Tw5qLA03Kufy+pqODVnOgQ9wLtK0UMtHsE+ EZQEvlDH1VpoX/88unBg4GQYfJjzaMlUnSOY72f9X4mzZ+Vt0ebVCSx8KsbBJjba zRWHGKFoshpgiDX8GjpYzW7KCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMPsA4V bmgliXef0BPTSDBLrjSOMB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdM5ZzJ/VSCX+sy1sJZeRn4xjusCGcssufdNTi8vKCq7gfLBbBYkWt CZLRSvKwO1yiFwmDQtuCdjYHGQ7AUuKmg/Gij3ZCKZidbNach7QfQKnMdoFMCCGN g+bMPKLEuEv3GP07IwcvGHSb1wiXN7LbVQn8m4UcmEegLaYbkGfdu0q7uf5E7r6e f4YO1wFgXxfwV56R1emomzfvzk+2TIBAf3XsoQpsuNRDW8OUFmf288nUK/scXfLn UchQnNqovyzNoTTQ6O1Bqo8VDvoXgLZaIrUCWY/RjQFnx2V1j0UAdXS8b4mxk93y 6J/e4DKehCqKXFplCddS9jWcPlCZsrgp -----END CERTIFICATE-----Generated at Tue May 7 03:12:17 2024 by rpki-client on console-fra.rpki-client.org