$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: h2OYookc5niZDol8kvl1lXSMGIygjX8zwoPmzoXGS44= Subject key identifier: A9:29:80:95:53:B4:F4:EE:44:D4:74:86:2B:D5:47:FE:A7:DC:4A:BF Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 0395 Signing time: Sat 23 Nov 2024 00:20:38 +0000 Manifest this update: Sat 23 Nov 2024 00:20:38 +0000 Manifest next update: Sat 30 Nov 2024 00:20:38 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: RJmMNHi4smvCwK/hNPlna7cOXLAiBlCHUCIU1daQ2+E=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: KW8CZ9txs3YwrvV7wO0SOgdBrRNOn4AvsdkMNqvWRYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Nov 23 00:20:38 2024 GMT Not After : Nov 30 00:20:38 2024 GMT Subject: CN=67411fd6-534d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:1f:a6:86:05:7a:99:d6:94:3c:17:c0:07: 27:da:fc:ac:bf:d0:c4:69:a4:80:80:93:52:2e:1a: ce:dd:42:e2:f1:12:e3:f5:64:e9:56:a1:18:b2:d3: 89:46:8f:44:95:a2:b9:d3:f1:48:51:73:ed:a1:0f: a1:b3:60:46:fe:93:70:55:ac:72:c8:e6:17:9d:c2: 65:34:ad:eb:1a:8d:e4:0e:5a:93:2b:09:1a:c6:9b: 42:01:c8:2c:be:1d:a0:d9:fe:04:42:91:d4:3f:2f: d2:94:89:fc:96:e8:e7:fa:09:17:74:7f:0b:7a:3b: 90:28:2b:88:bb:c0:5f:b5:b8:99:13:63:17:fb:d4: 57:82:44:19:8a:a6:13:60:8f:6f:3e:90:9f:27:9d: 2c:e1:79:da:7c:15:70:2b:61:b8:99:dc:ea:5b:a1: ac:d8:d1:de:f7:af:86:d7:63:8f:43:92:fd:e5:b4: f1:bd:79:9b:ac:31:21:df:ea:1a:4c:57:51:4d:64: 77:fe:0d:ff:18:fd:1c:6e:86:54:6a:2f:1e:95:85: 5f:89:4c:69:28:bb:9c:e8:ee:1f:24:4b:7c:01:4d: f4:d6:36:34:d0:09:76:d9:1b:43:08:9c:ab:52:b8: 1c:fb:7f:83:3d:61:68:13:6f:e4:dd:bf:01:0e:08: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:29:80:95:53:B4:F4:EE:44:D4:74:86:2B:D5:47:FE:A7:DC:4A:BF X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f5:ee:10:ff:79:fd:10:89:a0:6f:54:56:6c:58:23:c6:6e: 0e:d3:7c:c6:88:fe:44:37:9d:15:a4:c2:2d:57:89:d6:3a:3d: 6d:32:85:74:57:cd:f4:e1:47:7a:b9:27:f0:f6:5b:3a:bc:66: 45:db:f7:2f:e6:b5:bd:d8:fa:d4:5c:40:f6:b1:d0:13:50:a9: cb:47:b5:0c:a0:f1:81:36:a3:c2:1b:23:de:e2:25:3a:dd:79: 89:f9:e3:15:53:47:80:ee:44:0d:93:d5:be:90:17:be:97:d5: e9:15:99:95:cc:ec:8b:d4:55:e7:0e:ce:5c:c6:14:01:60:24: ad:87:33:fb:6c:c0:0b:ef:7a:f1:8e:ba:f3:67:5d:d0:20:f3: 25:3d:ba:1b:0a:e8:26:98:f3:d3:86:9e:de:fe:36:0e:99:6d: 8c:a4:85:3b:2d:97:48:24:99:9f:be:94:be:ec:3f:ac:68:6b: e5:ac:f8:42:8d:ab:7b:8a:19:82:61:3f:fc:96:d9:66:da:7f: ad:8d:60:71:42:23:65:86:10:20:56:ca:76:6c:70:b3:da:b7: 31:9a:13:22:c0:2c:5e:05:25:67:29:56:fe:f4:a2:9e:9f:4d: 8b:ea:1d:49:e1:4b:b1:e8:93:22:2f:27:37:ef:bb:3c:e0:c5: 5a:ac:08:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjQxMTIzMDAyMDM4WhcNMjQxMTMwMDAyMDM4WjAYMRYwFAYD VQQDEw02NzQxMWZkNi01MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06wfpoYFepnWlDwXwAcn2vysv9DEaaSAgJNSLhrO3ULi8RLj9WTpVqEYstOJ Ro9ElaK50/FIUXPtoQ+hs2BG/pNwVaxyyOYXncJlNK3rGo3kDlqTKwkaxptCAcgs vh2g2f4EQpHUPy/SlIn8lujn+gkXdH8LejuQKCuIu8BftbiZE2MX+9RXgkQZiqYT YI9vPpCfJ50s4XnafBVwK2G4mdzqW6Gs2NHe96+G12OPQ5L95bTxvXmbrDEh3+oa TFdRTWR3/g3/GP0cboZUai8elYVfiUxpKLuc6O4fJEt8AU301jY00Al22RtDCJyr Urgc+3+DPWFoE2/k3b8BDgiS2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkpgJVT tPTuRNR0hivVR/6n3Eq/MB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/9e4Q/3n9EImgb1RWbFgjxm4O03zGiP5EN50VpMItV4nWOj1tMoV0 V8304Ud6uSfw9ls6vGZF2/cv5rW92PrUXED2sdATUKnLR7UMoPGBNqPCGyPe4iU6 3XmJ+eMVU0eA7kQNk9W+kBe+l9XpFZmVzOyL1FXnDs5cxhQBYCSthzP7bMAL73rx jrrzZ13QIPMlPbobCugmmPPThp7e/jYOmW2MpIU7LZdIJJmfvpS+7D+saGvlrPhC jat7ihmCYT/8ltlm2n+tjWBxQiNlhhAgVsp2bHCz2rcxmhMiwCxeBSVnKVb+9KKe n02L6h1J4Uux6JMiLyc377s84MVarAiw -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org