$ rpki-client -vvf rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft File: oxnfTQtEZSzooFXCNSUBGLSUBYU.mft (raw, json) Hash identifier: v6+UBOpfETcifRADtlj7LjVt0bsSaNi+QzbJ8nsFFjg= Subject key identifier: B1:F9:93:BA:CD:5F:3C:BD:FE:7C:0F:8D:CE:5B:86:A6:CC:7D:2D:67 Authority key identifier: A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 Certificate issuer: /CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft Manifest number: 0702 Signing time: Fri 22 Nov 2024 21:28:50 +0000 Manifest this update: Fri 22 Nov 2024 21:28:50 +0000 Manifest next update: Fri 29 Nov 2024 21:28:50 +0000 Files and hashes: 1: oxnfTQtEZSzooFXCNSUBGLSUBYU.crl (hash: rOvROCLjunSOEynkDQbxjo72F/Om5C8EchSGKzH0RI0=) 2: 29F6C42C1FD311EBA5D83A1EC4F9AE02.roa (hash: epre9gPrGweKOSwkMZsEVYJd5/RVczknOfwPtxQUKwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Validity Not Before: Nov 22 21:28:50 2024 GMT Not After : Nov 29 21:28:50 2024 GMT Subject: CN=6740f792-11a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:45:b1:28:56:2c:96:50:9f:42:db:b5:1f:36: 33:4c:bb:06:1c:b1:c0:d0:2d:42:83:eb:72:02:8c: 23:a6:c7:52:97:d2:27:29:c3:c1:aa:6a:a6:79:bb: 36:93:a7:46:14:54:7f:b6:71:3f:3b:bc:76:b1:48: b9:82:39:75:11:58:8f:7a:0e:7f:95:02:c7:56:39: 7d:e9:dd:06:c3:95:90:eb:9f:07:f5:59:0e:95:33: 76:ee:59:28:e0:ad:31:85:57:41:86:62:56:69:1d: f0:f3:ec:49:5c:87:ec:7a:31:33:da:60:8e:ed:a8: 22:96:02:86:9b:07:45:6b:7b:ba:ae:b8:13:46:f0: ac:0f:7e:fa:6d:dc:82:4f:de:e5:45:4c:5c:46:9f: f7:9e:36:d8:ac:3e:d8:31:6d:dd:32:fa:f9:46:a7: 95:68:26:5d:d5:cf:94:d5:fd:d4:16:fa:48:41:a2: 44:11:a9:9b:49:4b:20:d4:3c:fc:b3:9a:9b:ce:da: 2b:56:fa:44:12:58:17:46:55:e2:49:f5:29:49:f8: 69:3d:eb:66:fc:b5:fb:dd:0d:e1:56:7d:c9:b7:4e: 9e:6b:3c:e0:92:5b:ac:b8:b6:b6:1b:33:c4:41:68: 35:6a:0a:a2:0e:4e:05:b0:2b:eb:8b:b4:c7:f4:79: 89:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F9:93:BA:CD:5F:3C:BD:FE:7C:0F:8D:CE:5B:86:A6:CC:7D:2D:67 X509v3 Authority Key Identifier: keyid:A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:dc:b1:3a:9c:c0:3c:9c:35:f7:a8:3c:d7:dc:1a:26:6a:67: 4a:1c:4e:00:e5:c1:9a:f1:0a:4c:3f:0d:14:3c:99:32:86:41: e9:ac:80:c6:18:1f:d4:fc:43:23:2b:a6:08:2c:59:6a:1e:59: ff:f5:38:18:f3:60:5f:ee:d1:9e:ce:79:5c:f6:48:2b:45:ce: 59:24:c8:17:7d:b1:01:7e:2c:e6:0e:79:db:98:45:02:c8:f1: 6d:5e:3c:ec:13:fe:33:7f:cd:34:e4:c2:41:51:f1:ad:dc:93: de:2a:23:32:2a:3a:d1:9f:41:37:88:74:5c:4b:c6:01:f7:06: 78:e1:7d:ef:d6:ca:1d:cc:43:26:09:9b:e1:a3:bb:b8:b6:21: 20:d8:75:8b:af:d2:0e:fd:9c:0c:30:64:b1:52:d2:93:8c:97: 14:c3:9b:92:0e:74:b6:bc:8c:fc:1d:b3:d4:b3:9c:57:85:cd: b1:7f:27:8e:0c:81:51:b6:b4:81:a9:83:37:eb:ba:e9:2e:c9: 9c:6b:39:a0:97:8c:88:1e:d3:22:c3:9e:e4:21:94:11:62:95: 46:ec:cb:84:8a:81:ef:f3:11:39:53:4f:15:8c:68:c6:14:6d: 0e:1c:2f:d3:78:84:b0:fc:35:66:e3:f1:24:dd:74:51:a5:a1: ab:2c:e8:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4ODExMTAvBgNVBAUTKEEzMTlERjREMEI0NDY1MkNFOEEwNTVDMjM1MjUwMTE4 QjQ5NDA1ODUwHhcNMjQxMTIyMjEyODUwWhcNMjQxMTI5MjEyODUwWjAYMRYwFAYD VQQDEw02NzQwZjc5Mi0xMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UWxKFYsllCfQtu1HzYzTLsGHLHA0C1Cg+tyAowjpsdSl9InKcPBqmqmebs2 k6dGFFR/tnE/O7x2sUi5gjl1EViPeg5/lQLHVjl96d0Gw5WQ658H9VkOlTN27lko 4K0xhVdBhmJWaR3w8+xJXIfsejEz2mCO7agilgKGmwdFa3u6rrgTRvCsD376bdyC T97lRUxcRp/3njbYrD7YMW3dMvr5RqeVaCZd1c+U1f3UFvpIQaJEEambSUsg1Dz8 s5qbztorVvpEElgXRlXiSfUpSfhpPetm/LX73Q3hVn3Jt06eazzgklusuLa2GzPE QWg1agqiDk4FsCvri7TH9HmJdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH5k7rN Xzy9/nwPjc5bhqbMfS1nMB8GA1UdIwQYMBaAFKMZ300LRGUs6KBVwjUlARi0lAWF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTg4MS8xRTY0MkVFNDFG RDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpTem9vRlhDTlNVQkdMU1VC WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL294bmZUUXRFWlN6b29GWENOU1VCR0xTVUJZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTg4MS8xRTY0MkVFNDFGRDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpT em9vRlhDTlNVQkdMU1VCWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT3LE6nMA8nDX3qDzX3BomamdKHE4A5cGa8QpMPw0UPJkyhkHprIDG GB/U/EMjK6YILFlqHln/9TgY82Bf7tGeznlc9kgrRc5ZJMgXfbEBfizmDnnbmEUC yPFtXjzsE/4zf8005MJBUfGt3JPeKiMyKjrRn0E3iHRcS8YB9wZ44X3v1sodzEMm CZvho7u4tiEg2HWLr9IO/ZwMMGSxUtKTjJcUw5uSDnS2vIz8HbPUs5xXhc2xfyeO DIFRtrSBqYM367rpLsmcazmgl4yIHtMiw57kIZQRYpVG7MuEioHv8xE5U08VjGjG FG0OHC/TeISw/DVm4/Ek3XRRpaGrLOj2 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org