$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: rdH8qitclHB0bfaCdb5CiKqQGCCVjQooeG8jC/9VKPY= Subject key identifier: 3D:0B:75:86:0B:1B:47:AE:E6:E1:56:E7:EE:62:2E:66:32:D1:A2:5C Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 3F Signing time: Fri 17 May 2024 08:14:08 +0000 Manifest this update: Fri 17 May 2024 08:14:08 +0000 Manifest next update: Fri 24 May 2024 08:14:07 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: wnGexr8GPVFTq2jmHXX7kHPlQqr2PLmVIPxUiz3XlQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: May 17 08:14:08 2024 GMT Not After : May 24 08:14:07 2024 GMT Subject: CN=664711d0-c7e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:30:ed:a0:3d:20:6d:dd:b6:ac:a2:f0:5e:b7: 06:f7:24:7b:86:81:fe:77:40:f3:81:fc:5e:fa:00: 39:57:e4:bb:db:86:45:1e:58:08:65:c0:8f:33:bd: eb:c8:f0:d7:53:d6:96:f9:1b:47:71:c0:38:24:21: 68:6c:e9:88:e2:0d:5e:56:3a:e2:aa:50:3e:af:50: 23:32:74:9c:64:f8:f7:d4:94:08:04:8a:a2:6a:5a: f3:92:96:64:a6:61:d7:0c:4e:5e:25:8e:eb:55:b8: 97:d3:65:a0:3b:f3:f1:ec:26:cd:9f:64:6d:48:b4: 5d:0c:43:55:51:31:39:d9:0b:b5:a0:18:af:18:98: 63:aa:52:71:96:5a:cc:44:2e:72:c7:ac:24:79:16: 04:29:74:eb:4b:c3:5d:d3:c1:52:63:7e:03:ee:57: fb:74:91:0c:55:05:c1:31:c2:03:ba:7e:da:24:9a: c8:9c:a1:d0:6f:91:e4:3c:8c:7f:86:bc:00:08:b8: b1:61:ec:a6:8f:eb:69:b7:b5:ed:42:94:6c:f8:6c: 24:b3:62:7b:d6:74:b4:61:ee:92:92:7f:f8:41:19: 96:05:8d:35:16:72:4a:56:03:5b:d9:e7:a9:62:ca: 24:7b:60:23:20:bc:74:21:1e:e0:63:16:14:62:f7: 0e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:0B:75:86:0B:1B:47:AE:E6:E1:56:E7:EE:62:2E:66:32:D1:A2:5C X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:3f:85:41:2f:e0:1c:84:db:8c:88:9e:b1:95:95:e5:69:42: 49:77:72:d1:b8:6b:a3:60:db:86:77:3a:f1:af:61:8a:fd:91: 24:62:a7:87:a9:93:b7:af:29:88:46:a7:9d:0b:b4:42:e8:c6: b5:62:0d:d7:15:1e:ef:fc:92:60:fe:38:62:59:0d:fc:32:32: a7:ac:24:0e:9c:66:cf:97:db:00:51:59:e2:91:d5:e6:7a:be: 7f:9b:91:38:0e:87:33:76:dc:01:1e:78:80:e0:5a:5e:37:0e: 54:22:7b:c2:30:01:35:ac:36:99:27:72:4a:44:97:95:1b:c2: 16:4e:bf:7e:79:e4:43:18:ba:29:4c:30:c9:86:18:52:d1:68: 26:33:2d:01:87:83:63:10:01:ec:e4:e7:60:18:36:bf:7f:32: e4:54:4f:47:a2:7b:62:b3:5a:0e:f7:31:ea:25:ea:0a:63:70: 40:e6:af:82:a4:91:d5:4b:84:ee:91:07:58:2f:b7:32:fd:ba: 11:b0:b3:e2:c5:cc:cb:fd:38:bb:7c:ff:ab:fa:f2:ae:d5:f4: 75:e3:e9:d5:35:56:2b:78:f0:40:20:d6:66:c4:c4:37:78:bb: bc:ac:31:da:94:c0:6f:9d:38:40:91:f6:10:17:0a:c4:97:8c: ee:ff:07:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Mzc3RDExMC8GA1UEBRMoQTFGQUQ1NDJFOTFFMDE3RDI1N0Q1MUIxNEZGNUMzNUI4 OTQyOUVGNTAeFw0yNDA1MTcwODE0MDhaFw0yNDA1MjQwODE0MDdaMBgxFjAUBgNV BAMTDTY2NDcxMWQwLWM3ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNMO2gPSBt3basovBetwb3JHuGgf53QPOB/F76ADlX5LvbhkUeWAhlwI8zvevI 8NdT1pb5G0dxwDgkIWhs6YjiDV5WOuKqUD6vUCMydJxk+PfUlAgEiqJqWvOSlmSm YdcMTl4ljutVuJfTZaA78/HsJs2fZG1ItF0MQ1VRMTnZC7WgGK8YmGOqUnGWWsxE LnLHrCR5FgQpdOtLw13TwVJjfgPuV/t0kQxVBcExwgO6ftokmsicodBvkeQ8jH+G vAAIuLFh7KaP62m3te1ClGz4bCSzYnvWdLRh7pKSf/hBGZYFjTUWckpWA1vZ56li yiR7YCMgvHQhHuBjFhRi9w7XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPQt1hgsb R67m4Vbn7mIuZjLRolwwHwYDVR0jBBgwFoAUofrVQukeAX0lfVGxT/XDW4lCnvUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNzdELzlGN0M4MTUyQjRC MTExRUVCMEFERTM1MkM0RjlBRTAyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2ZyVlF1a2VBWDBsZlZHeFRfWERXNGxDbnZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NzdELzlGN0M4MTUyQjRCMTExRUVCMEFERTM1MkM0RjlBRTAyL29mclZRdWtlQVgw bGZWR3hUX1hEVzRsQ252VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALg/hUEv4ByE24yInrGVleVpQkl3ctG4a6Ng24Z3OvGvYYr9kSRip4ep k7evKYhGp50LtELoxrViDdcVHu/8kmD+OGJZDfwyMqesJA6cZs+X2wBRWeKR1eZ6 vn+bkTgOhzN23AEeeIDgWl43DlQie8IwATWsNpknckpEl5UbwhZOv3555EMYuilM MMmGGFLRaCYzLQGHg2MQAezk52AYNr9/MuRUT0eie2KzWg73Meol6gpjcEDmr4Kk kdVLhO6RB1gvtzL9uhGws+LFzMv9OLt8/6v68q7V9HXj6dU1Vit48EAg1mbExDd4 u7ysMdqUwG+dOECR9hAXCsSXjO7/B+8= -----END CERTIFICATE-----Generated at Fri May 17 08:52:50 2024 by rpki-client on console-ams.rpki-client.org