$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: yFhTYpHc/qLnDlqKkkJ1rrqYx9cj1qpkjJe8IDjCIbs= Subject key identifier: EA:CF:37:D6:C1:4C:25:52:33:C2:6F:89:FE:28:63:4F:B0:CE:B1:12 Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0B77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0B72 Signing time: Fri 22 Nov 2024 18:48:08 +0000 Manifest this update: Fri 22 Nov 2024 18:48:08 +0000 Manifest next update: Fri 29 Nov 2024 18:48:08 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: UyZIBtC8P/ds1+12be34DfrN+SwxxjLrHc4YZFd6MQU=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: 66LgwR/IO0VDy2UoaFY/y7+7LLQbd/9JqRxVDsCxA1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Nov 22 18:48:08 2024 GMT Not After : Nov 29 18:48:08 2024 GMT Subject: CN=6740d1e8-6eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e0:49:02:e5:5b:fd:a1:fc:8b:45:fa:6f:2b: 32:26:5c:ec:76:4f:1f:c7:cf:19:f4:c7:5f:a1:dd: db:e2:7b:ab:7e:54:b3:cd:88:a0:e0:56:fa:cf:4e: 8f:07:ce:84:76:ef:84:52:e9:f3:3b:9c:0b:ff:f7: 05:e9:b4:46:3c:0a:2f:02:3f:e8:bc:81:3e:7b:ce: ab:34:1d:47:e9:c6:dd:e4:ad:a1:a2:7b:e1:85:11: d3:8e:1f:35:81:9b:6a:62:0a:d8:5f:18:90:63:80: 35:88:83:bc:3c:10:3e:01:a0:c4:f9:dc:4c:62:96: 07:80:12:3c:24:0a:ab:55:3e:d1:e2:8e:4c:bf:1e: cd:01:bb:f8:fd:67:cf:e8:7e:40:0d:40:69:ed:a5: 2c:90:5b:46:fb:55:ef:8f:30:84:dc:ab:e1:3e:8c: 20:68:d0:35:22:db:ce:3d:d1:56:86:fc:7c:dc:41: 45:06:bc:0a:73:f3:cf:d0:35:fd:c9:b4:00:c3:24: 5c:b3:e9:88:f3:91:ab:ee:f4:67:dd:fa:5c:48:89: a5:f7:6c:82:f2:b2:78:4e:6a:7a:6e:8b:b9:ac:03: 76:fb:d6:2c:8e:8d:90:be:4b:12:37:1a:0f:12:56: b5:f5:e5:c3:3a:77:46:81:fd:ae:d0:6d:43:12:18: e3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:CF:37:D6:C1:4C:25:52:33:C2:6F:89:FE:28:63:4F:B0:CE:B1:12 X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:87:db:0f:26:30:02:09:e4:19:d9:da:80:01:d9:d9:a3:16: 01:2d:63:5b:27:1b:c5:dd:d7:ff:4e:e8:45:f3:af:9b:8c:c1: 4c:49:db:ae:41:75:d8:cc:27:11:25:32:63:70:0e:3a:ef:83: 4f:4d:b4:a1:c7:c8:86:b1:21:33:5a:52:45:e4:7e:c1:af:ae: f1:49:de:62:59:d0:5c:2e:c9:c3:46:4b:cd:49:65:75:63:0b: 59:c6:ab:1f:9d:45:fa:e7:cd:01:d9:83:33:e0:38:ea:91:59: 92:a4:a9:c8:e0:dc:39:33:f3:88:43:79:d3:90:5d:11:ac:de: 88:36:17:ba:29:8e:15:73:ae:89:be:35:95:7a:43:9a:8c:df: e7:58:7d:cb:e9:bb:3f:b9:76:94:cc:f5:c5:05:a9:2c:66:bd: f4:fe:2b:50:cf:e5:93:1e:b8:85:e4:09:01:bb:9b:13:8f:38: bd:a3:4b:4a:1e:5e:93:b5:98:4f:1c:81:95:dc:53:37:55:09: 95:31:78:05:07:06:ba:4c:81:f5:68:d0:fc:6b:c5:14:4e:56: 6a:33:5c:5f:cc:bd:37:84:0b:81:d4:24:d5:19:cf:72:86:ca: 4d:81:d2:0b:ab:ed:62:3f:ad:75:34:38:eb:6c:b8:7a:2e:75: 06:3e:e1:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjQxMTIyMTg0ODA4WhcNMjQxMTI5MTg0ODA4WjAYMRYwFAYD VQQDEw02NzQwZDFlOC02ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeBJAuVb/aH8i0X6bysyJlzsdk8fx88Z9Mdfod3b4nurflSzzYig4Fb6z06P B86Edu+EUunzO5wL//cF6bRGPAovAj/ovIE+e86rNB1H6cbd5K2honvhhRHTjh81 gZtqYgrYXxiQY4A1iIO8PBA+AaDE+dxMYpYHgBI8JAqrVT7R4o5Mvx7NAbv4/WfP 6H5ADUBp7aUskFtG+1XvjzCE3KvhPowgaNA1ItvOPdFWhvx83EFFBrwKc/PP0DX9 ybQAwyRcs+mI85Gr7vRn3fpcSIml92yC8rJ4Tmp6bou5rAN2+9Ysjo2QvksSNxoP Ela19eXDOndGgf2u0G1DEhjjwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrPN9bB TCVSM8Jvif4oY0+wzrESMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgh9sPJjACCeQZ2dqAAdnZoxYBLWNbJxvF3df/TuhF86+bjMFMSduu QXXYzCcRJTJjcA4674NPTbShx8iGsSEzWlJF5H7Br67xSd5iWdBcLsnDRkvNSWV1 YwtZxqsfnUX6580B2YMz4DjqkVmSpKnI4Nw5M/OIQ3nTkF0RrN6INhe6KY4Vc66J vjWVekOajN/nWH3L6bs/uXaUzPXFBaksZr30/itQz+WTHriF5AkBu5sTjzi9o0tK Hl6TtZhPHIGV3FM3VQmVMXgFBwa6TIH1aND8a8UUTlZqM1xfzL03hAuB1CTVGc9y hspNgdILq+1iP611NDjrbLh6LnUGPuFI -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org