$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: sjuZ9KhQJwT526o/mi6OQmlz1AZRMN/0Ild7NI0rwBI= Subject key identifier: BC:73:EA:09:AD:FD:AF:78:BE:13:84:68:D8:D2:80:9F:B0:76:4C:32 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0974 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 0963 Signing time: Fri 22 Nov 2024 19:57:49 +0000 Manifest this update: Fri 22 Nov 2024 19:57:49 +0000 Manifest next update: Fri 29 Nov 2024 19:57:49 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: ebQ6sGSioxFa82xpCYy+0UW0zLzfBAAPNXfbBihhVOA=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: edRF5NmnUhALz+kYtW9yGNAWlG19b9huZPqLRyT0OOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2420 (0x974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Nov 22 19:57:49 2024 GMT Not After : Nov 29 19:57:49 2024 GMT Subject: CN=6740e23d-5b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:b8:38:a5:75:2d:06:d9:52:5e:02:9c:bb: 25:4e:12:e4:a6:a2:b9:73:65:ff:90:8b:f2:1e:b3: 42:b8:9e:b9:ba:e2:ab:c7:ad:f2:ad:76:1c:7e:5c: c0:e8:af:7f:c0:57:32:44:2d:42:31:1f:f3:cd:df: 84:e0:00:5c:53:a9:1a:e2:a2:e1:65:c2:55:3c:20: 4c:7c:ae:55:b5:97:d1:9d:4f:c7:23:7c:bf:1e:6e: f9:d1:b7:c0:09:3c:71:5b:9c:4f:a2:99:64:90:f7: f0:3c:0a:87:df:95:9e:e9:00:50:b0:d9:f0:56:97: a1:d2:00:bf:37:18:37:af:ec:72:51:7e:b6:c4:5d: ba:9f:c7:39:7b:ba:7b:e4:ba:9e:c1:72:eb:14:6d: b9:2c:41:19:1a:e3:a0:de:f3:55:1a:ff:00:79:52: 44:dc:d5:8a:42:7e:5b:05:e9:e9:1f:13:4c:e4:2a: 00:d3:d5:c2:a5:37:30:9b:3a:17:9b:bd:74:f9:4d: 41:2d:0f:c0:71:f8:fa:8c:e4:7f:02:d6:bd:6d:8f: c4:96:06:e5:40:2b:c9:e7:b2:ce:db:8f:d1:8b:85: b9:b8:eb:00:64:4e:60:37:dd:0b:ea:c1:d5:a2:71: 7d:09:91:b4:08:be:1c:2e:bb:b6:76:15:d6:ee:f0: 18:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:73:EA:09:AD:FD:AF:78:BE:13:84:68:D8:D2:80:9F:B0:76:4C:32 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8d:0a:a3:74:48:6f:13:a0:96:eb:de:09:56:ab:a7:5b:90: d8:2d:a3:bc:60:af:09:bb:89:ec:92:2a:c5:56:ce:0a:8b:1e: 59:6f:38:64:9d:a0:f8:e5:41:18:95:ca:8e:59:72:40:4d:e9: 3b:36:77:2c:59:18:b5:f2:dd:f4:9c:56:b6:6d:bc:e6:be:b3: da:42:3d:65:ac:a7:2e:1b:47:bd:dd:ed:a4:b9:7f:60:4f:b3: 59:a1:a5:75:c8:21:bc:ee:7f:72:bb:e8:7f:02:cc:11:54:ac: 63:7f:4f:43:a4:28:bc:61:94:58:77:bb:bb:6d:1d:9a:66:a3: 07:02:03:60:6d:59:8e:3a:5a:1f:64:c1:6a:11:bb:4a:8a:cc: 28:1f:a4:aa:d5:51:37:11:78:49:6d:f7:9f:0b:63:89:2c:4b: 6c:66:e5:85:c8:0e:65:b3:d4:55:5f:d7:aa:77:74:f4:13:c5: e2:29:8a:47:ce:61:05:d1:cd:0b:74:01:c1:37:32:28:e7:63: b7:52:96:40:a7:32:31:d7:36:e4:30:68:5a:6a:8b:51:0d:88: 65:0c:af:9a:9f:8e:63:c2:57:5f:a3:7f:f7:e7:38:0a:25:ed: e4:74:3f:25:e5:aa:99:0f:7c:1c:6b:a0:f2:bd:65:d7:8d:4c: bb:b0:c5:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjQxMTIyMTk1NzQ5WhcNMjQxMTI5MTk1NzQ5WjAYMRYwFAYD VQQDEw02NzQwZTIzZC01YjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Q+4OKV1LQbZUl4CnLslThLkpqK5c2X/kIvyHrNCuJ65uuKrx63yrXYcflzA 6K9/wFcyRC1CMR/zzd+E4ABcU6ka4qLhZcJVPCBMfK5VtZfRnU/HI3y/Hm750bfA CTxxW5xPoplkkPfwPAqH35We6QBQsNnwVpeh0gC/Nxg3r+xyUX62xF26n8c5e7p7 5LqewXLrFG25LEEZGuOg3vNVGv8AeVJE3NWKQn5bBenpHxNM5CoA09XCpTcwmzoX m710+U1BLQ/Acfj6jOR/Ata9bY/ElgblQCvJ57LO24/Ri4W5uOsAZE5gN90L6sHV onF9CZG0CL4cLru2dhXW7vAYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxz6gmt /a94vhOEaNjSgJ+wdkwyMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEjQqjdEhvE6CW694JVqunW5DYLaO8YK8Ju4nskirFVs4Kix5Zbzhk naD45UEYlcqOWXJATek7NncsWRi18t30nFa2bbzmvrPaQj1lrKcuG0e93e2kuX9g T7NZoaV1yCG87n9yu+h/AswRVKxjf09DpCi8YZRYd7u7bR2aZqMHAgNgbVmOOlof ZMFqEbtKiswoH6Sq1VE3EXhJbfefC2OJLEtsZuWFyA5ls9RVX9eqd3T0E8XiKYpH zmEF0c0LdAHBNzIo52O3UpZApzIx1zbkMGhaaotRDYhlDK+an45jwldfo3/35zgK Je3kdD8l5aqZD3wca6DyvWXXjUy7sMUI -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org