$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: aD9w1YDgKgD+5Ui0CFPrCkU1kvjNDIu6I/xlzStpQ3M= Subject key identifier: C7:21:4C:09:95:71:8F:61:06:A7:B9:C6:C3:BA:0B:83:A6:54:D4:60 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 06FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 06F7 Signing time: Fri 22 Nov 2024 21:30:24 +0000 Manifest this update: Fri 22 Nov 2024 21:30:23 +0000 Manifest next update: Fri 29 Nov 2024 21:30:23 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: h1S350VY8ymWsU9BzrqlY9iCpdfd2/V20zP5CGTe5W4=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: ZuMU0Sazkhv5Z9hX8y5u26qVA1926pJyXGJmqjuPt0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Nov 22 21:30:23 2024 GMT Not After : Nov 29 21:30:23 2024 GMT Subject: CN=6740f7f0-73e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e2:9c:60:fb:a3:e5:c5:e2:d5:cb:3a:98:49: 7a:55:94:52:d6:b0:5e:de:df:c4:17:44:e6:ab:df: 4a:37:4e:70:5f:4f:5b:d3:8e:da:71:42:63:9b:8e: 33:c6:d8:38:21:87:2f:43:af:1a:c9:b7:f0:5c:43: 68:08:b2:0e:88:d2:a9:34:a7:15:c3:16:ad:8d:d4: 76:a8:00:3c:dd:c8:b3:04:f2:15:9a:80:92:71:9b: de:2a:48:cf:aa:ff:38:33:41:1c:14:5e:99:83:0b: 92:2c:2f:85:da:6e:2e:b1:98:d5:91:9b:ad:d0:d1: 05:e5:6f:28:fd:62:de:7f:52:63:f2:99:9c:71:ab: 65:2f:ce:b5:05:0c:69:74:93:3d:f6:7e:d6:77:32: 61:51:94:82:03:76:28:82:f1:dd:d7:7d:53:2e:ee: 97:c3:cc:a6:8f:40:fc:5c:b6:e6:47:08:38:88:5c: 57:76:43:c3:3b:2a:f9:bb:dc:e1:7d:25:78:fa:39: 9a:0a:9e:85:84:0f:b8:d0:91:13:a2:5d:8a:be:b2: 44:e4:aa:7b:cb:d2:09:ac:29:10:2b:f4:54:47:97: e5:eb:41:51:bf:ec:be:62:18:2f:3a:76:29:2b:a4: e2:0d:cb:3b:00:1a:69:5e:d4:c7:72:23:5a:d0:66: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:21:4C:09:95:71:8F:61:06:A7:B9:C6:C3:BA:0B:83:A6:54:D4:60 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:03:0b:d8:1e:72:90:fa:b7:31:ad:60:94:46:55:50:11:62: 01:08:ef:b9:04:72:13:a8:82:90:54:4e:3f:64:3d:cb:82:b7: 38:bc:d0:5a:5d:6b:99:e4:aa:28:4e:5c:b2:88:9c:d3:6d:0f: f3:d9:3f:a6:67:24:10:92:59:f9:77:ad:3b:f0:03:51:9e:8d: b6:44:6d:13:af:df:99:a3:27:2a:a3:ca:3b:68:2c:e3:b0:38: 0f:1d:e8:79:61:60:5d:9f:b7:1a:75:52:72:f4:de:e8:a9:5b: c4:3d:a4:d2:ac:d8:bd:1d:8b:9f:cf:74:ba:cb:41:93:82:fd: c1:07:2d:ed:39:b0:eb:64:65:7f:12:cc:10:b3:86:c1:c9:d6: 8c:90:ec:61:72:5e:ee:14:80:fb:c2:56:68:0e:6c:82:a9:1e: 72:58:7b:ca:98:7c:ed:09:82:af:06:c0:fc:bd:9c:b2:54:5d: 73:1a:95:d1:4c:55:ae:1a:54:78:17:45:9d:00:92:79:6b:11: 4d:f3:3b:f9:c4:6f:93:6c:b8:b4:86:b8:85:16:68:e0:0e:46: aa:79:38:3b:d9:2d:db:a3:88:e8:ed:c4:d7:c1:28:1a:a8:d4: ca:ce:77:5b:f3:ca:9f:ec:cb:db:9a:7f:43:53:73:56:6d:2b: 12:6d:b4:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjQxMTIyMjEzMDIzWhcNMjQxMTI5MjEzMDIzWjAYMRYwFAYD VQQDEw02NzQwZjdmMC03M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseKcYPuj5cXi1cs6mEl6VZRS1rBe3t/EF0Tmq99KN05wX09b047acUJjm44z xtg4IYcvQ68aybfwXENoCLIOiNKpNKcVwxatjdR2qAA83cizBPIVmoCScZveKkjP qv84M0EcFF6ZgwuSLC+F2m4usZjVkZut0NEF5W8o/WLef1Jj8pmccatlL861BQxp dJM99n7WdzJhUZSCA3YogvHd131TLu6Xw8ymj0D8XLbmRwg4iFxXdkPDOyr5u9zh fSV4+jmaCp6FhA+40JETol2KvrJE5Kp7y9IJrCkQK/RUR5fl60FRv+y+YhgvOnYp K6TiDcs7ABppXtTHciNa0GY0hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMchTAmV cY9hBqe5xsO6C4OmVNRgMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2AwvYHnKQ+rcxrWCURlVQEWIBCO+5BHITqIKQVE4/ZD3Lgrc4vNBa XWuZ5KooTlyyiJzTbQ/z2T+mZyQQkln5d6078ANRno22RG0Tr9+Zoycqo8o7aCzj sDgPHeh5YWBdn7cadVJy9N7oqVvEPaTSrNi9HYufz3S6y0GTgv3BBy3tObDrZGV/ EswQs4bBydaMkOxhcl7uFID7wlZoDmyCqR5yWHvKmHztCYKvBsD8vZyyVF1zGpXR TFWuGlR4F0WdAJJ5axFN8zv5xG+TbLi0hriFFmjgDkaqeTg72S3bo4jo7cTXwSga qNTKzndb88qf7Mvbmn9DU3NWbSsSbbQ2 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org