$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: gmhusQdOSMeJguJ46lV1Hnd4+7vHXPMDIOUzWg4Zb4k= Subject key identifier: DD:D8:56:C2:77:74:52:2C:83:3A:96:CB:FC:66:B9:C9:95:15:F2:2D Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 02C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 02BA Signing time: Sat 23 Nov 2024 01:00:38 +0000 Manifest this update: Sat 23 Nov 2024 01:00:38 +0000 Manifest next update: Sat 30 Nov 2024 01:00:38 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: 0X+iu4hbHsO7v7UuCJ92gS65lEhPcmHSh6CtabBFSY8=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: eiU7ZSeORX7Nfv/I101YymEKed9tnUaeLJmxcj6rlLI=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: lJKugMMEeA6hotCUmsieh3f9JUtmDi6Rwayct/vX1UY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Nov 23 01:00:38 2024 GMT Not After : Nov 30 01:00:38 2024 GMT Subject: CN=67412936-9702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:7d:ee:6b:f2:a6:c5:f2:1e:71:9a:18:4b: 05:4f:8d:5d:49:30:e9:f5:c8:39:73:59:4d:a6:01: 17:f2:8f:95:fb:1b:5e:6e:7d:2c:d9:88:a6:3b:1a: c5:6c:0b:b0:5a:7c:a6:cb:fa:8a:8d:bf:60:dd:20: 4d:cc:dd:9b:9f:07:a8:a1:45:ad:22:1b:41:c0:d1: 99:fe:e1:0f:63:ed:3b:8b:8a:20:6e:57:90:81:3e: c4:d4:89:00:82:76:d8:e6:fa:cd:dc:f9:0a:20:af: fb:9f:b6:25:20:38:53:16:84:ef:c9:53:05:49:43: 16:f6:c3:37:e9:6d:a5:0e:b1:14:36:4d:35:ac:44: 9c:4b:96:a1:b3:85:03:13:6e:19:fd:df:69:ab:8c: ef:5e:38:9a:6c:19:19:00:7b:76:f0:b6:67:86:72: a3:8a:ec:d8:8a:91:63:c1:df:0d:27:b9:6d:0e:97: fe:c9:4d:28:68:56:8f:42:ac:e2:d0:d2:ac:47:0b: c3:ce:25:02:75:5c:03:b8:69:7a:29:d0:63:2e:6a: 59:86:7c:ef:b5:da:5d:3e:02:e5:96:01:33:21:e8: be:34:f9:cc:91:42:46:e0:ad:b1:70:93:81:42:a8: 6e:df:0e:79:f7:d8:d2:db:83:84:81:3c:d8:eb:8d: 6a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D8:56:C2:77:74:52:2C:83:3A:96:CB:FC:66:B9:C9:95:15:F2:2D X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:50:95:4e:50:f8:70:73:f5:48:ba:da:55:d1:2d:a5:61:fa: 90:49:24:9f:ce:d9:aa:df:5c:31:1e:c3:40:bf:74:03:de:e9: f0:63:90:1f:3a:07:19:3d:6a:bf:db:50:6d:01:a8:13:3a:b6: 00:a0:35:4f:84:46:b4:f3:e7:ae:87:4b:11:7f:26:05:55:44: 8d:dc:92:39:90:ed:13:9b:8f:d9:63:17:31:a3:65:0f:d5:62: 02:8a:8c:bd:ec:22:f5:38:05:51:6c:13:f4:7b:ff:8c:38:d1: 7e:93:0b:fb:54:58:c7:25:14:56:a3:3b:58:d4:99:78:25:aa: 59:34:6a:fc:3c:59:aa:e8:5b:f4:ee:e2:2b:b2:16:0d:9c:f9: 5f:12:26:6d:c0:96:97:f3:92:a9:88:2e:00:0c:68:9c:6c:c9: 54:22:14:fe:0c:32:8c:c7:a8:65:58:52:7c:b1:6d:64:fe:a5: 8e:1f:9d:c0:27:fb:d5:30:83:d3:ab:4c:c0:f7:ca:1e:54:ec: 28:b5:27:ff:67:10:36:e6:d7:86:ab:09:2e:86:a8:f7:66:1d: 17:79:c6:85:3e:47:6e:a4:21:fa:1b:c7:97:c3:8d:ea:a1:4e: 81:2b:23:e4:9a:c0:cb:57:51:b2:1e:2a:81:15:d1:5c:5b:eb: 4a:67:66:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjQxMTIzMDEwMDM4WhcNMjQxMTMwMDEwMDM4WjAYMRYwFAYD VQQDEw02NzQxMjkzNi05NzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhF97mvypsXyHnGaGEsFT41dSTDp9cg5c1lNpgEX8o+V+xtebn0s2YimOxrF bAuwWnymy/qKjb9g3SBNzN2bnweooUWtIhtBwNGZ/uEPY+07i4ogbleQgT7E1IkA gnbY5vrN3PkKIK/7n7YlIDhTFoTvyVMFSUMW9sM36W2lDrEUNk01rEScS5ahs4UD E24Z/d9pq4zvXjiabBkZAHt28LZnhnKjiuzYipFjwd8NJ7ltDpf+yU0oaFaPQqzi 0NKsRwvDziUCdVwDuGl6KdBjLmpZhnzvtdpdPgLllgEzIei+NPnMkUJG4K2xcJOB Qqhu3w5599jS24OEgTzY641qDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3YVsJ3 dFIsgzqWy/xmucmVFfItMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKUJVOUPhwc/VIutpV0S2lYfqQSSSfztmq31wxHsNAv3QD3unwY5Af OgcZPWq/21BtAagTOrYAoDVPhEa08+euh0sRfyYFVUSN3JI5kO0Tm4/ZYxcxo2UP 1WICioy97CL1OAVRbBP0e/+MONF+kwv7VFjHJRRWoztY1Jl4JapZNGr8PFmq6Fv0 7uIrshYNnPlfEiZtwJaX85KpiC4ADGicbMlUIhT+DDKMx6hlWFJ8sW1k/qWOH53A J/vVMIPTq0zA98oeVOwotSf/ZxA25teGqwkuhqj3Zh0XecaFPkdupCH6G8eXw43q oU6BKyPkmsDLV1GyHiqBFdFcW+tKZ2au -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org