$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: mKf3ZqzIFVR5JJ2Oyg5uxcBbeCAyKP886RVy7t+rzgc= Subject key identifier: 3B:E1:2E:F1:ED:28:94:C9:2D:84:0D:CE:6A:D1:60:81:37:67:5D:6F Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0A8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0A85 Signing time: Fri 22 Nov 2024 19:21:38 +0000 Manifest this update: Fri 22 Nov 2024 19:21:37 +0000 Manifest next update: Fri 29 Nov 2024 19:21:37 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: sie+cRpHE5VMyIjNP2SKg+ehPZQ83Fa9xFS5RA49kmI=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: cYqevdGEQNUI+tqiOOupeUJHH2ci29RPMSLOld+zvmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Nov 22 19:21:37 2024 GMT Not After : Nov 29 19:21:37 2024 GMT Subject: CN=6740d9c1-1369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:54:9b:0c:ad:b3:9a:9d:66:cd:1b:91:c4: ca:35:87:aa:f5:c8:20:a9:a4:3d:5b:27:33:a2:a1: d9:1e:58:10:45:1f:4a:67:66:20:3a:cb:a2:a6:d1: 68:85:22:15:de:59:a9:e2:25:96:72:9c:b0:2b:79: 97:42:ff:4b:43:76:3f:14:70:d7:5c:25:95:76:1e: da:f8:59:80:e1:74:9d:bf:51:fe:8d:d1:68:47:09: ea:16:68:b0:57:ab:7d:1f:9c:77:1b:09:4e:ae:5b: c9:e1:3c:01:5b:d5:fa:93:31:0b:f4:af:af:bb:b7: a0:c2:ae:42:bc:8c:ec:4f:c4:75:34:2c:c4:a3:6e: e3:62:78:f1:b8:e4:ff:5c:a4:b8:92:5f:eb:50:eb: 01:46:56:23:18:72:39:d1:bf:d4:66:ac:63:ca:01: bd:af:c8:55:88:87:99:43:7a:c9:ac:79:6d:cc:e9: 1f:67:39:35:02:13:cb:51:a4:03:87:76:5d:b3:1d: 27:3e:57:50:ec:3b:bf:5a:8c:9a:f6:fa:c3:f9:c9: 6e:e6:96:42:b7:d5:42:9b:13:b6:0a:e2:c1:4d:4a: 31:67:5f:4e:2c:cf:7a:b7:6e:ab:b4:f2:75:ae:3b: a1:c4:ee:e3:68:e8:27:74:56:f8:79:64:25:56:45: 8e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E1:2E:F1:ED:28:94:C9:2D:84:0D:CE:6A:D1:60:81:37:67:5D:6F X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3a:1e:fd:6b:67:de:d1:1d:21:f2:6e:33:d2:21:6c:bd:b7: ec:16:42:73:2f:58:06:82:c2:aa:20:06:2c:02:e9:43:6b:ea: 80:39:5b:4f:32:ff:d4:65:d3:aa:43:c8:d3:a4:92:13:0f:8b: 35:04:21:ed:73:4b:27:d3:71:8a:6f:8c:34:b8:c8:68:da:04: 0f:6b:f0:48:18:34:38:11:1e:85:84:d8:60:27:29:88:37:f2: 4e:e7:d1:93:b6:f2:e5:61:2c:d5:59:ed:07:78:f4:86:86:38: 62:da:fa:6c:f4:02:71:94:40:17:ff:b2:3e:90:f1:54:64:2c: 4c:45:a4:c8:96:3f:58:e0:65:0e:fd:b2:a0:8c:91:96:79:c9: da:98:38:d2:f8:9d:a9:97:35:ad:16:58:9b:75:88:37:06:43: 2f:be:61:4c:e0:08:f2:5d:58:1f:89:14:16:a4:1c:bd:9e:0f: 58:e0:e0:9c:c5:c9:2b:b2:8b:f4:78:2e:6b:b2:22:42:a8:50: 66:71:6c:e4:4e:cf:f8:95:d9:e5:13:63:30:e9:d5:9d:54:b6: d1:66:62:18:10:cd:07:4f:e9:ff:11:08:45:3c:a8:a4:c6:df: 2f:11:74:2b:03:c7:1b:e3:41:62:0e:1f:64:c3:3e:2c:7c:4f: 2b:71:2e:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjQxMTIyMTkyMTM3WhcNMjQxMTI5MTkyMTM3WjAYMRYwFAYD VQQDEw02NzQwZDljMS0xMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWFUmwyts5qdZs0bkcTKNYeq9cggqaQ9WyczoqHZHlgQRR9KZ2YgOsuiptFo hSIV3lmp4iWWcpywK3mXQv9LQ3Y/FHDXXCWVdh7a+FmA4XSdv1H+jdFoRwnqFmiw V6t9H5x3GwlOrlvJ4TwBW9X6kzEL9K+vu7egwq5CvIzsT8R1NCzEo27jYnjxuOT/ XKS4kl/rUOsBRlYjGHI50b/UZqxjygG9r8hViIeZQ3rJrHltzOkfZzk1AhPLUaQD h3Zdsx0nPldQ7Du/Woya9vrD+clu5pZCt9VCmxO2CuLBTUoxZ19OLM96t26rtPJ1 rjuhxO7jaOgndFb4eWQlVkWOkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvhLvHt KJTJLYQNzmrRYIE3Z11vMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxOh79a2fe0R0h8m4z0iFsvbfsFkJzL1gGgsKqIAYsAulDa+qAOVtP Mv/UZdOqQ8jTpJITD4s1BCHtc0sn03GKb4w0uMho2gQPa/BIGDQ4ER6FhNhgJymI N/JO59GTtvLlYSzVWe0HePSGhjhi2vps9AJxlEAX/7I+kPFUZCxMRaTIlj9Y4GUO /bKgjJGWecnamDjS+J2plzWtFlibdYg3BkMvvmFM4AjyXVgfiRQWpBy9ng9Y4OCc xckrsov0eC5rsiJCqFBmcWzkTs/4ldnlE2Mw6dWdVLbRZmIYEM0HT+n/EQhFPKik xt8vEXQrA8cb40FiDh9kwz4sfE8rcS7q -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org