$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: lHznORDRJRu/BwvL/M5l1uZ4FbTVYznl8dyNA2Dq8k4= Subject key identifier: 71:8C:B2:0E:C4:34:DC:26:C1:34:AE:CC:61:2C:20:80:F7:A0:60:99 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: E1 Signing time: Sat 23 Nov 2024 03:33:52 +0000 Manifest this update: Sat 23 Nov 2024 03:33:52 +0000 Manifest next update: Sat 30 Nov 2024 03:33:52 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: pXSdA+zWLswakCDG17QtXcTwzTA7Fl2H9TTCRNSi85c=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: z3jylC3bOFS/QeMNqO6FEMdonfOGPmCY4+yy8XOk4xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Nov 23 03:33:52 2024 GMT Not After : Nov 30 03:33:52 2024 GMT Subject: CN=67414d20-fd80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:74:83:7d:1e:70:02:db:dc:46:83:72:19:67: ab:5a:ff:16:0f:7e:a4:4c:1e:ac:67:7c:99:5e:6a: e1:eb:59:eb:30:bb:42:14:14:0f:3e:60:f6:8f:0d: 71:00:99:05:6e:93:19:09:7c:97:bd:af:92:33:07: b3:18:b0:40:3b:58:c1:27:d1:2d:d4:3c:2b:69:5c: 65:c0:da:88:01:b9:58:e8:01:62:68:ff:bc:3d:23: e5:00:6f:3a:94:04:29:a5:65:14:0e:7c:fa:d5:a3: 0a:2a:ec:0a:cb:3a:05:f9:fc:49:ee:d2:6b:31:6b: 00:cb:34:1f:ec:8f:b9:db:72:64:6a:87:1c:50:e5: e7:ee:d7:fb:a1:bf:28:ec:c3:64:1a:b3:71:f5:c5: 56:fd:a4:dd:50:66:b4:a1:d2:68:5a:1c:27:54:17: 70:fa:e7:ae:fe:d9:29:44:ab:60:3a:27:9c:a3:59: f9:09:84:fc:27:a5:90:3d:23:99:d6:20:13:99:ca: 9d:5a:c2:7b:19:ee:88:68:c5:02:43:51:df:34:c1: 41:e5:26:da:63:65:e4:8c:84:63:69:25:d3:b5:49: 21:aa:1b:cc:be:fa:b1:02:2b:1d:ee:16:c7:3e:44: 64:66:ab:7b:23:22:1d:ae:a8:71:ca:31:8a:a1:b9: f2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8C:B2:0E:C4:34:DC:26:C1:34:AE:CC:61:2C:20:80:F7:A0:60:99 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d1:75:9a:50:5d:f3:dc:59:7c:ac:1c:aa:6b:bd:f4:3d:fb: 93:79:6f:db:85:fe:fc:02:f6:d4:f1:09:d6:a1:b4:d0:f4:cd: 53:2c:0d:65:53:b0:2a:c7:4d:07:13:ac:46:df:c0:6b:ad:f9: 9b:cd:c4:f9:91:66:03:00:e5:ff:eb:3d:9b:d0:93:41:fa:41: 67:07:02:94:75:7b:c0:42:24:ad:7e:9b:cc:74:11:21:26:24: 21:82:91:36:0c:7b:d3:b5:48:df:6c:13:48:a7:db:6c:1e:a4: ee:33:85:0f:ba:02:d6:5e:05:e2:fa:2a:d5:e8:38:7a:15:d9: d0:a8:b7:f2:50:80:27:46:0b:f3:09:97:b1:5c:b8:32:ff:b7: 6e:b7:c0:cc:31:fb:9c:d8:a4:ac:cb:83:82:ba:08:48:16:03: b2:0d:96:8f:9c:bd:26:38:be:f1:26:95:dc:14:f1:8c:7a:49: 6b:7f:b5:7e:96:dd:93:eb:e9:33:c9:b6:69:5a:ad:69:f3:71: 01:fa:da:c4:68:78:e0:42:c9:c0:94:fa:50:f2:83:d0:f9:57: 75:31:65:88:fd:20:a4:2e:24:e3:86:b9:98:6e:e6:2d:97:1a: 76:48:9c:b4:08:d3:0e:74:2b:a8:1f:e4:92:8e:df:05:65:55: 73:36:91:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjQxMTIzMDMzMzUyWhcNMjQxMTMwMDMzMzUyWjAYMRYwFAYD VQQDEw02NzQxNGQyMC1mZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23SDfR5wAtvcRoNyGWerWv8WD36kTB6sZ3yZXmrh61nrMLtCFBQPPmD2jw1x AJkFbpMZCXyXva+SMwezGLBAO1jBJ9Et1DwraVxlwNqIAblY6AFiaP+8PSPlAG86 lAQppWUUDnz61aMKKuwKyzoF+fxJ7tJrMWsAyzQf7I+523JkaoccUOXn7tf7ob8o 7MNkGrNx9cVW/aTdUGa0odJoWhwnVBdw+ueu/tkpRKtgOieco1n5CYT8J6WQPSOZ 1iATmcqdWsJ7Ge6IaMUCQ1HfNMFB5SbaY2XkjIRjaSXTtUkhqhvMvvqxAisd7hbH PkRkZqt7IyIdrqhxyjGKobnyXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGMsg7E NNwmwTSuzGEsIID3oGCZMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy0XWaUF3z3Fl8rByqa730PfuTeW/bhf78AvbU8QnWobTQ9M1TLA1l U7Aqx00HE6xG38BrrfmbzcT5kWYDAOX/6z2b0JNB+kFnBwKUdXvAQiStfpvMdBEh JiQhgpE2DHvTtUjfbBNIp9tsHqTuM4UPugLWXgXi+irV6Dh6FdnQqLfyUIAnRgvz CZexXLgy/7dut8DMMfuc2KSsy4OCughIFgOyDZaPnL0mOL7xJpXcFPGMeklrf7V+ lt2T6+kzybZpWq1p83EB+trEaHjgQsnAlPpQ8oPQ+Vd1MWWI/SCkLiTjhrmYbuYt lxp2SJy0CNMOdCuoH+SSjt8FZVVzNpHI -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:06 2024 by rpki-client on console-ams.rpki-client.org