$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: CKx42RRimx/HB9TgpCPs/wt8ZcfiVBtHe6klsI6bkjo= Subject key identifier: C4:12:79:70:22:2D:D0:2E:2E:60:C6:ED:A4:50:E3:F4:D5:5A:0B:DE Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 14A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 149B Signing time: Fri 22 Nov 2024 16:52:24 +0000 Manifest this update: Fri 22 Nov 2024 16:52:23 +0000 Manifest next update: Fri 29 Nov 2024 16:52:23 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: ZhWgO9oOqv8iu6btB36NK9jVEJEt8BgUHTtW2Kcuezg=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: wyU9pinjd2UbUaW4sVOJH2OwbvM9u93WKqi90XHcaFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5285 (0x14a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Nov 22 16:52:23 2024 GMT Not After : Nov 29 16:52:23 2024 GMT Subject: CN=6740b6c7-ffaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1e:82:b3:4b:64:63:52:40:18:07:af:6f:e1: 7c:46:53:b6:be:d0:d7:7e:3b:be:37:a3:17:d9:7f: ce:e9:30:09:93:98:2b:3a:5b:9b:b1:07:5e:22:56: a2:f8:ff:61:a2:10:e7:53:95:d5:9d:39:20:62:58: d3:ae:03:51:e6:43:38:2e:04:f9:e8:cd:f1:e6:e6: 06:5c:49:3a:2c:1a:b7:f1:09:b7:26:ee:67:14:4c: 83:dc:54:dc:9f:8f:f4:c7:2a:58:22:85:4e:4d:e1: 16:e5:00:16:c8:04:4e:83:7d:55:83:55:41:b0:90: 1f:eb:ab:69:f9:ef:f4:c2:09:a2:0d:c6:9b:09:16: 52:83:32:2a:cf:6f:62:d7:b9:55:e1:ae:d5:57:bf: 67:ee:5c:4a:ae:ff:65:ee:37:84:bb:4b:5a:09:9e: 74:ea:01:6a:f7:c7:d0:4f:aa:35:01:5c:32:a0:79: 2e:76:00:ea:b6:06:f6:35:99:04:b2:0b:75:59:c9: 36:da:15:6f:3c:d2:f8:70:3a:41:e4:5b:c0:0c:dd: a1:65:03:3b:81:40:84:b8:8c:ab:2d:4e:a8:23:a0: fe:55:a8:dc:e5:7b:e2:cf:d4:18:de:8d:a6:f2:2d: 87:f0:ce:24:3b:58:0b:c9:7d:c0:26:ad:3e:7c:e9: 25:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:12:79:70:22:2D:D0:2E:2E:60:C6:ED:A4:50:E3:F4:D5:5A:0B:DE X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:e8:ce:4c:3f:9b:bc:7e:35:95:b8:f7:33:62:cf:d2:e7:4c: 9b:18:ac:4b:0c:34:f5:67:b9:9e:6e:f8:b2:fa:df:cd:3c:71: 53:1d:b4:8a:0e:4c:1f:81:45:2c:b7:e9:35:ef:73:10:2d:25: 6b:57:4c:2d:31:35:c5:5b:c8:e9:02:33:a5:bd:2f:14:8d:04: 4c:2a:71:14:b9:7d:6a:c0:4d:fc:a7:2a:69:79:b1:c1:50:60: 9d:88:10:86:a5:49:41:77:e0:e9:04:1c:f6:7e:5c:d1:52:34: d3:7e:44:af:f9:ad:54:49:4d:7f:83:be:9b:f8:b0:ab:cb:a0: 30:05:8e:98:63:1e:12:c0:70:0a:16:8a:df:fa:64:8d:cf:93: 85:03:c3:64:30:4c:7e:b8:5e:fd:56:c6:df:85:3f:18:55:2b: 39:83:9c:84:96:72:4b:9e:b5:33:c6:57:2f:da:94:85:09:9a: 37:9e:9f:d8:61:dc:61:ca:16:e0:47:9b:03:37:e0:c6:72:9d: 07:9f:10:ec:0d:15:f4:fc:46:3b:90:86:8d:a1:67:da:74:b2: b4:89:60:ed:0d:68:f9:57:6c:6d:be:df:b1:40:fd:0f:b1:60: 5f:9b:d0:83:d4:e9:96:a4:49:40:52:bf:f9:56:a5:94:56:53: 16:f9:4f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjQxMTIyMTY1MjIzWhcNMjQxMTI5MTY1MjIzWjAYMRYwFAYD VQQDEw02NzQwYjZjNy1mZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux6Cs0tkY1JAGAevb+F8RlO2vtDXfju+N6MX2X/O6TAJk5grOlubsQdeIlai +P9hohDnU5XVnTkgYljTrgNR5kM4LgT56M3x5uYGXEk6LBq38Qm3Ju5nFEyD3FTc n4/0xypYIoVOTeEW5QAWyAROg31Vg1VBsJAf66tp+e/0wgmiDcabCRZSgzIqz29i 17lV4a7VV79n7lxKrv9l7jeEu0taCZ506gFq98fQT6o1AVwyoHkudgDqtgb2NZkE sgt1Wck22hVvPNL4cDpB5FvADN2hZQM7gUCEuIyrLU6oI6D+Vajc5Xviz9QY3o2m 8i2H8M4kO1gLyX3AJq0+fOklEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQSeXAi LdAuLmDG7aRQ4/TVWgveMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ6M5MP5u8fjWVuPczYs/S50ybGKxLDDT1Z7mebviy+t/NPHFTHbSK DkwfgUUst+k173MQLSVrV0wtMTXFW8jpAjOlvS8UjQRMKnEUuX1qwE38pyppebHB UGCdiBCGpUlBd+DpBBz2flzRUjTTfkSv+a1USU1/g76b+LCry6AwBY6YYx4SwHAK Forf+mSNz5OFA8NkMEx+uF79VsbfhT8YVSs5g5yElnJLnrUzxlcv2pSFCZo3np/Y YdxhyhbgR5sDN+DGcp0HnxDsDRX0/EY7kIaNoWfadLK0iWDtDWj5V2xtvt+xQP0P sWBfm9CD1OmWpElAUr/5VqWUVlMW+U89 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org