$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: SMbuBfLtdpIcwOHCQ7oaCPGntU6x7J2d4OILC+h0nXY= Subject key identifier: 2A:7C:B5:45:92:C2:CB:75:EB:41:1E:77:EF:AB:C0:BD:D0:21:09:10 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A13 Signing time: Fri 22 Nov 2024 19:39:27 +0000 Manifest this update: Fri 22 Nov 2024 19:39:27 +0000 Manifest next update: Fri 29 Nov 2024 19:39:27 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: +Jg9crPddHxAcdtDerXAI1Xe+RMyQFArzuDbZPRoYl8=) 2: 1AD373BAB85911EEAD35104FC4F9AE02.roa (hash: yhDhFNMn6OzfJ6zoaSwzG2e+cVk2z/6FA3i/9aS2LKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Nov 22 19:39:27 2024 GMT Not After : Nov 29 19:39:27 2024 GMT Subject: CN=6740ddef-5048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:69:09:00:ea:9f:c4:cf:bf:cd:a3:6d:4b: 5f:b8:5f:00:c2:e2:9b:84:d2:08:d2:4c:05:74:e7: e9:b7:18:5e:da:12:e6:f5:20:de:3a:cb:e7:05:99: 45:f5:33:a7:a2:60:dc:06:e2:bf:76:56:e1:b3:7b: 81:44:a8:c7:db:7b:56:ab:27:2b:77:b4:94:bc:37: d1:5a:3d:e7:65:d3:9f:c5:12:cd:46:2e:65:3c:f6: 63:37:5f:13:7c:b4:7b:a0:ea:3d:b0:04:2a:a8:04: 7f:25:ff:79:fc:e6:a1:10:fc:5a:21:6a:50:79:08: f6:b9:5e:18:de:23:0b:c6:7a:b2:a2:9a:bb:86:d4: e9:3e:19:86:c4:0b:65:04:bb:c4:e9:72:d5:cc:26: 84:c2:fb:47:56:ac:f9:c9:6a:7e:e5:d2:5b:d1:16: 3e:f4:af:78:84:d7:a7:06:e2:97:64:73:0f:1d:d7: 7e:f2:e5:c4:1a:97:d5:15:e6:1d:cf:f4:0f:34:fe: f0:58:71:f8:eb:11:84:03:c9:aa:3f:da:66:79:c5: 02:c7:bc:59:4b:09:b8:f4:43:e2:b4:f0:4d:bd:50: 94:73:dc:d7:3a:21:d4:f5:84:08:00:a7:b3:02:0c: 7c:a5:60:d9:4a:17:4e:f4:4f:d3:ac:05:d2:61:0b: da:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7C:B5:45:92:C2:CB:75:EB:41:1E:77:EF:AB:C0:BD:D0:21:09:10 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:0b:13:ba:5b:ee:8b:92:0c:45:57:73:e1:82:c4:7d:fa:3e: 0b:5a:e6:9d:86:68:07:38:4e:f3:94:89:d8:5e:4f:c8:bb:29: 08:63:36:4d:12:00:a2:02:43:cd:8c:b7:51:f7:29:49:7f:f6: 14:74:f4:a4:f3:62:fc:c4:a4:e7:86:f8:15:5b:ee:37:f7:bf: c1:d5:c3:c6:61:cc:c3:fd:3e:12:88:cb:d4:d5:bd:1a:90:36: be:8a:a5:65:71:a9:6b:dd:c9:d8:c8:43:c5:6c:7e:28:74:7f: 35:3a:ff:e5:6d:a0:ba:be:d0:4e:da:63:fc:31:65:fe:32:6e: 0c:a8:a1:1d:06:6e:e8:70:38:2f:24:87:7f:d3:f2:b7:9d:11: 9b:55:52:40:dd:a0:83:26:64:ec:e5:99:2c:28:0e:dc:57:d3: fd:4c:55:83:83:56:f3:c0:71:2d:06:6b:e9:c7:b8:c3:cc:4c: b3:c7:82:0e:40:ac:bd:ad:06:99:24:68:1d:37:d9:b3:5c:06: 90:b2:5c:94:b8:43:7f:67:6c:df:a6:01:e2:d3:08:a6:b1:e0: 9d:d2:eb:ee:37:87:cb:1e:c0:42:8f:5d:6a:61:ab:13:7e:a0: 94:9b:3e:38:e3:69:ce:55:50:54:e7:dd:6d:e4:5a:ba:bf:b8: c0:ce:84:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjQxMTIyMTkzOTI3WhcNMjQxMTI5MTkzOTI3WjAYMRYwFAYD VQQDEw02NzQwZGRlZi01MDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupppCQDqn8TPv82jbUtfuF8AwuKbhNII0kwFdOfptxhe2hLm9SDeOsvnBZlF 9TOnomDcBuK/dlbhs3uBRKjH23tWqycrd7SUvDfRWj3nZdOfxRLNRi5lPPZjN18T fLR7oOo9sAQqqAR/Jf95/OahEPxaIWpQeQj2uV4Y3iMLxnqyopq7htTpPhmGxAtl BLvE6XLVzCaEwvtHVqz5yWp+5dJb0RY+9K94hNenBuKXZHMPHdd+8uXEGpfVFeYd z/QPNP7wWHH46xGEA8mqP9pmecUCx7xZSwm49EPitPBNvVCUc9zXOiHU9YQIAKez Agx8pWDZShdO9E/TrAXSYQva9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCp8tUWS wst160Eed++rwL3QIQkQMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFCxO6W+6LkgxFV3PhgsR9+j4LWuadhmgHOE7zlInYXk/IuykIYzZN EgCiAkPNjLdR9ylJf/YUdPSk82L8xKTnhvgVW+4397/B1cPGYczD/T4SiMvU1b0a kDa+iqVlcalr3cnYyEPFbH4odH81Ov/lbaC6vtBO2mP8MWX+Mm4MqKEdBm7ocDgv JId/0/K3nRGbVVJA3aCDJmTs5ZksKA7cV9P9TFWDg1bzwHEtBmvpx7jDzEyzx4IO QKy9rQaZJGgdN9mzXAaQslyUuEN/Z2zfpgHi0wimseCd0uvuN4fLHsBCj11qYasT fqCUmz4442nOVVBU591t5Fq6v7jAzoSR -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org