$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: IxZYZzNud1Cy/EgvhsFMGF7GuTuxdswyv35OXeek4K4= Subject key identifier: 23:84:6B:04:64:CE:72:5A:A0:40:C2:90:FA:9D:FE:29:F3:8F:A3:92 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 0149 Signing time: Sat 23 Nov 2024 02:32:51 +0000 Manifest this update: Sat 23 Nov 2024 02:32:51 +0000 Manifest next update: Sat 30 Nov 2024 02:32:51 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: tP/gs23Hh8tcyV/bKVIEgDXGxrQnlJyDAKEHKhT7MYs=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: slKeOYWzdmCkmau8RJhvHLGPejq9dHSW1eCqA45Ri5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Nov 23 02:32:51 2024 GMT Not After : Nov 30 02:32:51 2024 GMT Subject: CN=67413ed3-350e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:cb:f6:40:da:49:55:ec:15:f2:43:eb:2e: c0:18:65:76:ef:71:b7:1b:3d:39:da:e7:38:6c:e2: 9b:5f:42:b9:20:33:95:31:a1:90:ac:f5:77:ad:30: db:ce:42:1c:48:f4:7b:13:36:b0:e1:ca:d4:6f:77: 6a:a8:e0:48:7b:49:de:11:41:56:1e:33:98:1b:a5: db:85:8d:6e:61:06:e7:dc:7c:b5:67:0e:cf:be:fb: d5:a7:fb:f3:74:f4:60:2d:a2:c8:8e:a5:66:34:61: bd:2f:e9:b3:b2:74:63:44:ac:fd:51:d4:49:31:22: ec:43:ed:cb:c2:2c:22:1d:14:47:79:96:e6:38:68: 13:b2:79:b2:04:68:36:8e:11:03:a0:73:31:d9:d6: f6:11:74:16:89:ae:d4:6e:d8:5e:dd:95:19:05:29: 9b:84:ff:d8:05:de:7b:4b:54:7b:b4:7d:e8:14:2a: 46:bd:d6:9f:b2:42:89:23:dd:fe:87:64:e8:a1:99: b7:80:b9:89:11:49:e9:2e:3c:38:5d:72:e3:af:b2: ab:6f:a0:db:40:1c:a4:a2:b7:ad:79:44:48:5c:ae: 7c:e5:7a:c4:14:5e:26:91:07:07:bf:7b:aa:89:4a: 0c:b8:c5:e8:79:87:21:45:7f:b6:9f:49:a9:78:17: c1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:84:6B:04:64:CE:72:5A:A0:40:C2:90:FA:9D:FE:29:F3:8F:A3:92 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:03:ca:25:4d:75:c9:66:1f:2e:77:69:19:66:c9:75:05:59: f6:ed:49:97:6a:2b:3f:f3:8d:fa:09:1f:30:e0:40:32:0a:7e: 9b:87:00:a7:0c:1b:e9:c8:97:e8:79:18:11:34:ef:8e:23:37: 3b:6d:ce:1c:30:12:3d:16:3f:f5:56:a0:9c:89:36:ad:c3:ac: 31:d1:d6:f3:91:70:32:c9:58:b9:c5:7e:46:bc:0f:c6:36:47: ab:81:62:e2:2a:55:0b:60:f2:1c:4c:ce:41:ab:a3:5d:95:ef: 2c:79:0d:e8:76:ce:90:b1:cd:de:22:3c:f4:f9:6f:7c:be:55: 07:37:ee:2e:4c:af:e7:85:4c:cd:d0:fc:35:db:9f:a5:b2:aa: a7:4b:ad:c0:88:71:d8:e0:19:c4:73:72:76:9b:64:86:dd:97: 00:1d:1f:0d:27:e3:73:c0:3a:89:e1:34:f7:ae:cf:41:61:f5: b4:5e:e3:f7:2b:90:33:1e:9f:20:c3:6a:97:e0:84:82:50:c6: 3b:a4:de:36:a8:10:46:b1:44:85:ae:71:50:a0:08:46:da:2b: 70:02:82:ba:fe:57:1d:4f:f1:54:05:4f:27:d6:48:80:48:e2: c3:46:82:fb:a4:56:95:78:ff:aa:39:46:13:4f:d0:d1:6f:31: b9:53:e4:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjQxMTIzMDIzMjUxWhcNMjQxMTMwMDIzMjUxWjAYMRYwFAYD VQQDEw02NzQxM2VkMy0zNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf3L9kDaSVXsFfJD6y7AGGV273G3Gz052uc4bOKbX0K5IDOVMaGQrPV3rTDb zkIcSPR7Ezaw4crUb3dqqOBIe0neEUFWHjOYG6XbhY1uYQbn3Hy1Zw7PvvvVp/vz dPRgLaLIjqVmNGG9L+mzsnRjRKz9UdRJMSLsQ+3LwiwiHRRHeZbmOGgTsnmyBGg2 jhEDoHMx2db2EXQWia7Ubthe3ZUZBSmbhP/YBd57S1R7tH3oFCpGvdafskKJI93+ h2TooZm3gLmJEUnpLjw4XXLjr7Krb6DbQBykoreteURIXK585XrEFF4mkQcHv3uq iUoMuMXoeYchRX+2n0mpeBfB7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOEawRk znJaoEDCkPqd/inzj6OSMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrA8olTXXJZh8ud2kZZsl1BVn27UmXais/8436CR8w4EAyCn6bhwCn DBvpyJfoeRgRNO+OIzc7bc4cMBI9Fj/1VqCciTatw6wx0dbzkXAyyVi5xX5GvA/G NkergWLiKlULYPIcTM5Bq6Ndle8seQ3ods6Qsc3eIjz0+W98vlUHN+4uTK/nhUzN 0Pw125+lsqqnS63AiHHY4BnEc3J2m2SG3ZcAHR8NJ+NzwDqJ4TT3rs9BYfW0XuP3 K5AzHp8gw2qX4ISCUMY7pN42qBBGsUSFrnFQoAhG2itwAoK6/lcdT/FUBU8n1kiA SOLDRoL7pFaVeP+qOUYTT9DRbzG5U+Qs -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org