$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: zn8shvLCGg/PkbaLTSTkTmDlx62+4WcXVjTm7bJmqSE= Subject key identifier: D2:D8:53:A4:21:C7:08:B3:62:12:25:04:CE:92:7A:30:03:D2:20:AF Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 15D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 15C2 Signing time: Fri 22 Nov 2024 16:46:06 +0000 Manifest this update: Fri 22 Nov 2024 16:46:05 +0000 Manifest next update: Fri 29 Nov 2024 16:46:05 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: Rv/FnEtKTOU6cVU85ok+Z/mKv575ZUlhb737pCo+iQ8=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: w3oachy62b9vS7wqwD6D3HohJubENRLKhLvYOw/CqsQ=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: P/jVLVKJm35tcLY3WNaJuQCIeip3WppGMETv/Tz90FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5586 (0x15d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Nov 22 16:46:05 2024 GMT Not After : Nov 29 16:46:05 2024 GMT Subject: CN=6740b54e-af45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:bd:e3:df:87:a9:6d:13:29:61:be:c6:a6: f6:fa:29:aa:b1:36:a5:3d:17:05:8b:d6:7a:7c:70: 27:41:f9:3c:b3:56:6b:a0:c8:c3:7e:84:82:f0:4e: 73:00:e7:bf:29:c8:e6:c1:62:0e:1e:43:b4:3e:6f: f8:3b:cf:be:4e:3d:7f:33:d2:38:d4:c0:99:f1:a6: c7:e8:4c:82:1e:ab:d8:57:e7:e6:a5:47:17:12:e1: 05:c5:65:2b:5c:ed:cc:d1:15:cf:1f:0c:9b:02:03: 7a:f8:4d:ef:aa:63:b2:bb:45:14:d0:04:8b:c7:5f: 1e:46:0e:14:71:7c:65:ac:c6:22:82:8b:93:c7:d6: cf:1e:e5:55:16:38:61:89:9f:39:16:5a:73:17:7c: f8:ca:64:3c:2c:0f:fb:6a:64:78:7f:07:d0:e9:7d: 39:54:2b:12:75:cd:79:f7:1e:4c:78:db:4a:46:a5: 04:a1:0c:ba:fc:9f:42:6c:47:a9:14:66:e6:50:9b: 50:25:e3:00:43:e8:de:cb:0c:bc:75:79:b2:2b:c0: 59:25:01:e5:47:d0:f1:41:32:7d:a1:d3:2b:bf:7e: 44:17:16:41:93:53:d5:30:7e:0b:7a:b2:7e:df:35: 76:76:d2:e8:28:bc:cd:80:7e:75:2c:a7:f4:42:91: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D8:53:A4:21:C7:08:B3:62:12:25:04:CE:92:7A:30:03:D2:20:AF X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:cd:61:fe:f2:cd:b9:0c:cc:e8:1d:b8:29:fb:08:05:c0:8d: cb:c6:45:52:dd:6b:ed:f3:91:5c:c1:f1:60:06:9e:93:3a:3c: 94:94:d8:70:30:64:23:bc:59:2d:62:f6:d8:13:5f:97:87:25: b8:24:04:ec:72:96:c1:5b:c4:ed:67:c9:a2:1f:d0:92:72:5f: 3c:14:18:26:ea:4b:e6:41:d9:49:05:f1:80:37:4a:fb:90:aa: dd:e7:f8:35:b1:20:d4:54:e6:cb:77:6e:65:d5:82:3d:45:00: 98:c3:42:c7:f9:96:8c:9a:85:73:9c:07:71:36:af:26:af:88: 0f:75:7e:6b:3b:53:f0:63:f9:26:b2:c0:5c:e2:95:01:54:18: dd:f8:0c:00:b3:02:be:b9:7f:e3:32:2d:07:18:83:f2:57:b7: 75:31:a2:da:a6:57:ca:29:49:5a:74:24:c6:80:5d:98:ef:96: 05:27:96:a3:17:e9:23:30:e3:8d:02:a7:5b:1f:f6:67:3e:13: e8:8e:a4:3d:c5:ce:05:18:f7:e7:8f:18:73:77:14:67:98:4b: 64:33:34:b0:8b:aa:28:8d:90:d7:64:ef:29:5b:96:19:41:12: 48:31:32:d6:2f:03:85:56:2c:81:55:47:f5:e1:48:95:e2:43: ce:ba:6d:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjQxMTIyMTY0NjA1WhcNMjQxMTI5MTY0NjA1WjAYMRYwFAYD VQQDEw02NzQwYjU0ZS1hZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGq949+HqW0TKWG+xqb2+imqsTalPRcFi9Z6fHAnQfk8s1ZroMjDfoSC8E5z AOe/KcjmwWIOHkO0Pm/4O8++Tj1/M9I41MCZ8abH6EyCHqvYV+fmpUcXEuEFxWUr XO3M0RXPHwybAgN6+E3vqmOyu0UU0ASLx18eRg4UcXxlrMYigouTx9bPHuVVFjhh iZ85FlpzF3z4ymQ8LA/7amR4fwfQ6X05VCsSdc159x5MeNtKRqUEoQy6/J9CbEep FGbmUJtQJeMAQ+jeywy8dXmyK8BZJQHlR9DxQTJ9odMrv35EFxZBk1PVMH4LerJ+ 3zV2dtLoKLzNgH51LKf0QpEd3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLYU6Qh xwizYhIlBM6SejAD0iCvMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdzWH+8s25DMzoHbgp+wgFwI3LxkVS3Wvt85FcwfFgBp6TOjyUlNhw MGQjvFktYvbYE1+XhyW4JATscpbBW8TtZ8miH9CScl88FBgm6kvmQdlJBfGAN0r7 kKrd5/g1sSDUVObLd25l1YI9RQCYw0LH+ZaMmoVznAdxNq8mr4gPdX5rO1PwY/km ssBc4pUBVBjd+AwAswK+uX/jMi0HGIPyV7d1MaLaplfKKUladCTGgF2Y75YFJ5aj F+kjMOONAqdbH/ZnPhPojqQ9xc4FGPfnjxhzdxRnmEtkMzSwi6oojZDXZO8pW5YZ QRJIMTLWLwOFViyBVUf14UiV4kPOum0K -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org