$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: HkKczjS3FBDfudlG9c9ITx4zJ1MVImc+oOp2krsqdk0= Subject key identifier: E1:CA:AC:47:A1:4E:68:77:69:2D:E9:63:2C:94:67:56:99:84:A4:E3 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 16DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 16CB Signing time: Fri 22 Nov 2024 16:39:51 +0000 Manifest this update: Fri 22 Nov 2024 16:39:51 +0000 Manifest next update: Fri 29 Nov 2024 16:39:51 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: LldLbdtZNuOexLzfg6bAa9HjXfZ8y+EYCOB19cc146s=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5855 (0x16df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Nov 22 16:39:51 2024 GMT Not After : Nov 29 16:39:51 2024 GMT Subject: CN=6740b3d7-d126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0b:3d:8e:43:83:fc:64:37:da:01:d5:ca:63: 92:7b:5f:67:17:69:11:5c:95:52:db:81:ab:88:9c: 02:f6:bd:16:24:9d:0a:84:ce:de:e6:ed:ad:3d:ab: 43:b3:a0:76:21:a0:52:82:59:35:7b:5b:7a:73:45: d9:02:08:fa:fe:96:be:0b:25:f6:05:db:0d:2f:8d: 63:26:84:af:e3:cf:71:cd:3c:57:9b:a3:87:1a:fb: 4a:9e:e8:51:83:c0:66:cd:9f:6e:36:a3:65:f2:96: 59:69:e4:ef:3c:35:a2:52:7a:b3:45:c9:f7:b1:8e: 14:7e:81:70:3d:5b:eb:e7:6e:0a:90:01:f9:22:d8: 26:0a:f3:00:ff:05:3d:e9:96:1c:74:2d:c9:f7:60: 0d:c3:bc:02:d3:24:8c:e0:6c:37:7b:ba:77:95:92: d6:16:26:14:d9:b4:59:2a:6c:cc:48:8c:a2:74:65: a2:78:fc:10:f9:aa:d3:de:1d:cb:15:72:5d:d1:94: 3c:48:25:49:80:85:5d:82:59:13:33:ad:f1:ae:d9: f7:77:ac:10:ac:3f:c3:e8:ac:71:74:e6:85:13:a8: b9:c0:27:73:91:6e:fb:cb:4b:1c:c6:42:5f:2c:53: f2:c0:a3:cf:0f:7b:82:20:55:de:35:67:e8:57:bc: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:CA:AC:47:A1:4E:68:77:69:2D:E9:63:2C:94:67:56:99:84:A4:E3 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c3:31:41:21:69:dd:5b:6d:78:07:55:79:3b:f5:83:12:ee: e8:f5:01:11:ac:23:02:ce:0f:b3:a7:d5:fd:a5:c5:44:2d:b3: 30:d2:a5:d3:6b:62:ad:68:3d:d2:24:f3:b9:f6:b5:27:a6:a5: 2e:30:14:dd:ac:39:69:db:f6:b0:77:b1:74:ba:e4:ff:bd:83: 62:e1:c6:93:3f:76:e3:76:40:b7:a0:9b:f0:a6:c7:cc:6f:e7: 7e:d1:e7:2f:83:cf:14:51:d3:dd:56:fd:19:32:67:58:60:cf: f7:2e:6e:94:91:1b:47:05:b8:52:ae:3b:39:2a:e7:4f:12:02: 2b:d7:66:f4:81:82:1e:56:d5:69:ea:58:57:b0:95:c4:b0:66: 81:31:58:de:2f:ce:9a:b3:01:eb:fe:9f:97:8b:c9:51:29:75: c9:e5:39:ea:a1:7a:07:6b:65:31:af:6c:d6:38:70:be:2c:f6: 9e:52:55:a9:df:d6:1a:76:ff:dc:c7:3b:0e:4d:f3:a4:ea:0c: 90:e1:b5:13:d2:df:44:03:c8:27:98:ed:be:ec:45:90:3b:25: 0d:8c:02:f3:5e:d6:04:8f:c3:ec:46:71:13:49:18:bd:a5:31: 47:9d:ae:90:a3:ac:f7:85:0f:7e:27:a4:1a:e5:02:54:b2:db: eb:90:47:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjQxMTIyMTYzOTUxWhcNMjQxMTI5MTYzOTUxWjAYMRYwFAYD VQQDEw02NzQwYjNkNy1kMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgs9jkOD/GQ32gHVymOSe19nF2kRXJVS24GriJwC9r0WJJ0KhM7e5u2tPatD s6B2IaBSglk1e1t6c0XZAgj6/pa+CyX2BdsNL41jJoSv489xzTxXm6OHGvtKnuhR g8BmzZ9uNqNl8pZZaeTvPDWiUnqzRcn3sY4UfoFwPVvr524KkAH5ItgmCvMA/wU9 6ZYcdC3J92ANw7wC0ySM4Gw3e7p3lZLWFiYU2bRZKmzMSIyidGWiePwQ+arT3h3L FXJd0ZQ8SCVJgIVdglkTM63xrtn3d6wQrD/D6KxxdOaFE6i5wCdzkW77y0scxkJf LFPywKPPD3uCIFXeNWfoV7y1cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHKrEeh Tmh3aS3pYyyUZ1aZhKTjMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAewzFBIWndW214B1V5O/WDEu7o9QERrCMCzg+zp9X9pcVELbMw0qXT a2KtaD3SJPO59rUnpqUuMBTdrDlp2/awd7F0uuT/vYNi4caTP3bjdkC3oJvwpsfM b+d+0ecvg88UUdPdVv0ZMmdYYM/3Lm6UkRtHBbhSrjs5KudPEgIr12b0gYIeVtVp 6lhXsJXEsGaBMVjeL86aswHr/p+Xi8lRKXXJ5TnqoXoHa2Uxr2zWOHC+LPaeUlWp 39Yadv/cxzsOTfOk6gyQ4bUT0t9EA8gnmO2+7EWQOyUNjALzXtYEj8PsRnETSRi9 pTFHna6Qo6z3hQ9+J6Qa5QJUstvrkEfw -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org