$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: bqfvQl0Pn6dl6OrYi9OIXxa3LtbcPW1XSowc2HCycaM= Subject key identifier: EA:B6:CF:24:59:BE:36:56:E8:C3:6D:AA:1B:F6:98:12:B5:72:9D:31 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0A40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0A37 Signing time: Fri 22 Nov 2024 19:32:08 +0000 Manifest this update: Fri 22 Nov 2024 19:32:08 +0000 Manifest next update: Fri 29 Nov 2024 19:32:08 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: +SQkP0EHza9UopL8E1DgZFzGq1XdPOw+FKQsHw3z0DM=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: wEPT/JxoXR8vXmErciWYLyiDrtNHIrJoWWSk93OARbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2624 (0xa40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Nov 22 19:32:08 2024 GMT Not After : Nov 29 19:32:08 2024 GMT Subject: CN=6740dc38-cba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:cf:92:0d:32:d4:7a:6b:90:f0:2a:7f:9d: 70:ca:91:05:e3:f6:38:7e:3a:c5:7b:db:45:21:35: 2c:ab:f7:e2:bf:a4:bd:95:68:96:34:f6:56:5f:f9: 8e:f5:3f:fa:25:de:e1:1e:7f:30:db:18:54:39:0d: 58:d7:10:c8:84:3b:1c:1d:83:5d:70:4c:52:c2:bb: 07:cf:32:f7:aa:09:a0:7d:f2:9a:30:24:bc:61:0f: 97:64:cb:a1:a7:43:3a:9d:b6:d3:72:bf:ba:4f:8c: 4e:fe:a3:22:dc:d9:fa:d7:3f:3d:4d:44:c9:5b:6d: d9:66:0c:9f:cd:f2:cf:54:94:c9:cb:1a:93:ee:5f: 7c:65:56:52:f7:4c:7d:51:59:67:e9:40:12:ed:00: b5:7a:95:3f:12:22:d4:44:eb:cf:80:c4:8d:09:8e: eb:ff:8f:08:5b:cc:09:15:88:3d:e3:7e:a5:5d:29: 04:2b:c0:7d:7a:9e:b2:44:e3:eb:2b:a9:80:a2:8f: 24:2f:84:92:98:ec:57:16:34:ac:7c:d0:2f:9f:29: 74:d4:8e:fb:96:b5:d7:8e:e1:d7:99:0d:10:cc:73: 92:66:20:18:66:82:2b:73:08:ac:78:88:e7:ab:8f: db:61:cf:0f:47:fc:8c:a4:ce:72:be:b0:35:44:fb: b2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B6:CF:24:59:BE:36:56:E8:C3:6D:AA:1B:F6:98:12:B5:72:9D:31 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0a:1b:9b:7d:9a:a2:a0:bf:1a:0b:24:60:1e:f2:b6:d2:80: 0b:51:0c:04:11:05:8b:45:7c:33:d7:37:f2:2a:1c:5f:e7:1e: c8:94:5e:18:bd:ae:b5:2f:f0:d9:cd:83:74:94:95:08:d0:78: 6c:14:0a:bd:fe:15:a2:8a:df:89:ca:12:74:b4:ba:72:fe:54: 4c:87:88:82:60:29:d6:0e:8f:1a:e4:aa:4e:d1:84:f2:21:31: 06:69:d3:79:f9:e2:14:e4:ac:99:b0:b2:b2:53:c3:8a:c8:39: 25:d7:9a:b8:b7:62:f8:a0:1c:1a:3b:c4:0a:6f:61:ed:57:13: 91:d7:50:09:0a:c9:3e:fe:2c:23:c7:46:47:f4:07:97:27:b1: 83:1a:79:9f:51:8b:2a:82:af:8c:1d:be:4b:ba:93:61:6d:12: 91:b8:40:20:9a:e0:b6:31:3d:6f:6a:ad:1a:77:63:e1:b9:00: 4b:ed:df:96:0c:bf:de:26:bf:e3:b0:ce:73:c5:cc:6d:9f:e1: f2:ca:f6:9e:3c:6b:19:2f:9c:90:5f:24:19:7a:30:08:bf:76: 70:28:fd:49:f8:6d:0e:a3:a5:81:32:d8:c0:42:d2:6b:08:c3: 74:54:bb:ec:67:2c:6b:bb:5a:da:0b:7f:eb:29:a2:0b:a4:e6: a3:6c:19:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjQxMTIyMTkzMjA4WhcNMjQxMTI5MTkzMjA4WjAYMRYwFAYD VQQDEw02NzQwZGMzOC1jYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+7Pkg0y1HprkPAqf51wypEF4/Y4fjrFe9tFITUsq/fiv6S9lWiWNPZWX/mO 9T/6Jd7hHn8w2xhUOQ1Y1xDIhDscHYNdcExSwrsHzzL3qgmgffKaMCS8YQ+XZMuh p0M6nbbTcr+6T4xO/qMi3Nn61z89TUTJW23ZZgyfzfLPVJTJyxqT7l98ZVZS90x9 UVln6UAS7QC1epU/EiLUROvPgMSNCY7r/48IW8wJFYg9436lXSkEK8B9ep6yROPr K6mAoo8kL4SSmOxXFjSsfNAvnyl01I77lrXXjuHXmQ0QzHOSZiAYZoIrcwiseIjn q4/bYc8PR/yMpM5yvrA1RPuyzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOq2zyRZ vjZW6MNtqhv2mBK1cp0xMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbChubfZqioL8aCyRgHvK20oALUQwEEQWLRXwz1zfyKhxf5x7IlF4Y va61L/DZzYN0lJUI0HhsFAq9/hWiit+JyhJ0tLpy/lRMh4iCYCnWDo8a5KpO0YTy ITEGadN5+eIU5KyZsLKyU8OKyDkl15q4t2L4oBwaO8QKb2HtVxOR11AJCsk+/iwj x0ZH9AeXJ7GDGnmfUYsqgq+MHb5LupNhbRKRuEAgmuC2MT1vaq0ad2PhuQBL7d+W DL/eJr/jsM5zxcxtn+HyyvaePGsZL5yQXyQZejAIv3ZwKP1J+G0Oo6WBMtjAQtJr CMN0VLvsZyxru1raC3/rKaILpOajbBnv -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org