$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: Z+/fot40VckN+2ToRmSMYM17jW5EzP+e4huG8pGFmpM= Subject key identifier: DF:29:59:C6:DA:38:93:D8:E2:55:22:CE:A5:BD:CC:4C:EB:BC:74:B3 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 072C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 0728 Signing time: Fri 22 Nov 2024 21:16:34 +0000 Manifest this update: Fri 22 Nov 2024 21:16:34 +0000 Manifest next update: Fri 29 Nov 2024 21:16:34 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: yijuFVKvE1cAbKZuNNrzDVX97T0nIQW1GkeCPBmVE6c=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 3b53oGZrk5tXtSU6CyAt3h+hYXdnaoLTFM3Jnq/kzQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Nov 22 21:16:34 2024 GMT Not After : Nov 29 21:16:34 2024 GMT Subject: CN=6740f4b2-2498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b4:ad:17:ca:d2:85:89:91:db:d9:b5:2e:ed: b8:67:28:bb:51:44:56:15:41:24:45:de:19:6d:b3: b7:04:ba:e5:b1:29:61:1e:76:5d:d6:ed:17:9c:db: 65:20:b6:18:6c:0f:c6:08:7e:c0:5b:4e:14:59:12: 04:57:5c:90:66:7d:30:b0:7e:28:10:38:c5:7a:2e: c5:c0:15:0a:bb:30:99:06:7a:83:94:39:c4:ae:22: ed:09:2d:9c:c0:72:bc:20:6f:4f:3f:e5:11:9d:18: 76:aa:6f:25:16:3d:40:b7:ba:fa:a0:a7:6f:2a:92: dd:26:4f:1b:dc:61:a4:83:fa:49:40:0f:03:31:cd: 08:4b:4e:44:22:09:39:45:0c:14:ef:f1:e5:92:7c: 13:96:f5:85:f7:d2:a4:37:15:4a:95:a6:4f:54:a4: 9e:12:57:5a:36:03:44:de:99:5e:86:69:1e:9a:a2: 20:3d:b4:b9:94:42:bb:20:08:9a:b7:57:4b:98:50: 08:3d:84:f1:43:7d:1e:ec:d2:f9:ff:c8:92:44:6f: 65:36:b7:da:67:00:7d:3a:b8:75:70:48:dd:72:6f: e9:93:8a:87:de:fd:f2:b7:50:25:cc:8e:33:74:e1: 5e:4c:42:68:d6:7b:bf:8d:18:d2:ca:5b:f3:4d:cc: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:29:59:C6:DA:38:93:D8:E2:55:22:CE:A5:BD:CC:4C:EB:BC:74:B3 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:9b:f2:ab:91:77:f6:39:22:f0:2f:10:db:f7:3e:b9:c3:49: 00:ac:64:c6:93:8d:07:ad:8e:67:7c:21:2e:46:79:4e:0b:41: 71:67:97:a6:23:b3:f6:8e:ef:4e:0d:c2:a6:5f:c6:8c:57:ce: 78:36:0a:b4:db:c6:67:44:31:fd:96:68:7b:00:08:58:91:45: ef:9c:29:f5:8f:8b:e9:37:99:92:bd:f7:47:80:57:92:94:8a: 44:77:5d:dc:37:58:0b:95:4f:df:34:63:4f:7d:cf:d8:e9:4d: 57:da:21:01:8f:77:d8:2f:93:3f:52:e1:02:ce:80:60:00:53: c9:91:11:59:82:fd:9a:0c:c7:a7:83:9e:bf:d3:7b:96:f9:87: d3:8b:84:96:76:a9:80:b8:5c:cc:b3:52:d8:33:8a:9d:01:aa: 50:98:8c:cf:6f:46:12:3d:59:2f:d7:07:96:04:8d:1d:36:dc: ca:fd:24:04:a5:e5:06:ae:ac:f6:f1:0b:b1:ad:26:97:fd:be: f1:5f:ce:11:7f:24:7e:b9:b7:45:07:9c:d7:c9:88:21:83:56: 60:4d:ba:26:f3:cb:77:3d:ec:d5:8f:42:92:c6:f9:ed:80:f1: 54:cc:81:b2:11:76:4d:b8:39:01:22:8a:4a:36:5d:cc:4e:eb: 21:9a:73:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjQxMTIyMjExNjM0WhcNMjQxMTI5MjExNjM0WjAYMRYwFAYD VQQDEw02NzQwZjRiMi0yNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbStF8rShYmR29m1Lu24Zyi7UURWFUEkRd4ZbbO3BLrlsSlhHnZd1u0XnNtl ILYYbA/GCH7AW04UWRIEV1yQZn0wsH4oEDjFei7FwBUKuzCZBnqDlDnEriLtCS2c wHK8IG9PP+URnRh2qm8lFj1At7r6oKdvKpLdJk8b3GGkg/pJQA8DMc0IS05EIgk5 RQwU7/HlknwTlvWF99KkNxVKlaZPVKSeEldaNgNE3plehmkemqIgPbS5lEK7IAia t1dLmFAIPYTxQ30e7NL5/8iSRG9lNrfaZwB9Orh1cEjdcm/pk4qH3v3yt1AlzI4z dOFeTEJo1nu/jRjSylvzTcxTpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8pWcba OJPY4lUizqW9zEzrvHSzMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4m/KrkXf2OSLwLxDb9z65w0kArGTGk40HrY5nfCEuRnlOC0FxZ5em I7P2ju9ODcKmX8aMV854Ngq028ZnRDH9lmh7AAhYkUXvnCn1j4vpN5mSvfdHgFeS lIpEd13cN1gLlU/fNGNPfc/Y6U1X2iEBj3fYL5M/UuECzoBgAFPJkRFZgv2aDMen g56/03uW+YfTi4SWdqmAuFzMs1LYM4qdAapQmIzPb0YSPVkv1weWBI0dNtzK/SQE peUGrqz28QuxrSaX/b7xX84RfyR+ubdFB5zXyYghg1ZgTbom88t3PezVj0KSxvnt gPFUzIGyEXZNuDkBIopKNl3MTushmnNR -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org