$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: fVJTqmz/OSXJz0wLHNKJd3wvGcaVwGDNf5SnNSxldC8= Subject key identifier: F3:46:D7:84:39:12:0B:A6:C5:F8:0D:D6:11:A1:29:69:69:9E:80:C5 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 038B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0387 Signing time: Sat 23 Nov 2024 00:22:29 +0000 Manifest this update: Sat 23 Nov 2024 00:22:28 +0000 Manifest next update: Sat 30 Nov 2024 00:22:28 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: OJFjA6oQnYeBbwaOJZfmS2EQK9pr/IXpfq5iBzPund4=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: oPYfSqxkN8npABudY2l+Ic8/CeJazaNkfy3rG5MWBXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 907 (0x38b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Nov 23 00:22:28 2024 GMT Not After : Nov 30 00:22:28 2024 GMT Subject: CN=67412045-8eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:84:86:a2:d7:63:c6:95:81:ea:37:e2:6c:13: ee:35:2d:dd:a0:cd:2d:b4:33:af:bd:8a:f9:94:c6: 00:09:ab:67:f0:5d:4a:5f:18:28:06:ec:9f:af:24: f6:61:49:7c:27:7f:de:c5:2b:47:30:53:c4:2f:c3: 6b:cf:5c:42:68:ba:12:d0:4f:96:79:83:8f:d0:98: 7d:95:ee:d1:c9:20:40:fe:b7:f5:66:e4:d0:d4:93: 2c:46:50:b3:cb:f1:77:1a:d6:ad:77:9d:c3:ae:95: e6:2f:9a:75:e6:5f:08:05:80:b9:24:13:90:2f:9b: 10:71:1a:1e:49:32:38:1c:49:6b:9e:7b:5a:db:6c: 8f:57:2a:84:1e:4e:e2:81:4e:d0:1a:7d:94:67:81: d7:54:a0:25:b1:4f:68:58:63:b1:bf:dd:f0:dc:dd: e3:b8:7a:2c:37:ce:b0:e1:6b:64:36:0b:18:fc:93: 4e:8e:20:2b:34:47:68:b3:3e:e5:ca:00:d1:ac:06: 9c:9b:71:93:18:b4:92:35:63:f1:53:11:66:08:29: c8:bf:53:38:9e:bb:bb:d8:2f:ac:76:0b:e9:20:29: c1:a4:ef:84:d1:7d:79:b2:5f:08:b1:cc:c3:ba:7f: 17:77:04:3c:1e:0c:52:c4:ea:a7:96:92:4c:af:bd: 70:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:46:D7:84:39:12:0B:A6:C5:F8:0D:D6:11:A1:29:69:69:9E:80:C5 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:89:a0:15:be:44:b0:21:33:23:85:72:6b:89:24:9a:e1:df: 1a:6b:ec:98:f3:e9:b1:26:19:fb:aa:ec:38:43:01:c0:80:b5: 1e:5a:1c:3e:9c:17:17:00:49:03:98:74:54:69:c7:54:5b:ed: 26:cf:27:07:f4:6f:1d:13:b3:53:8f:18:c1:c2:7e:94:11:76: 48:4b:55:48:eb:8d:9f:8e:fd:cf:f2:07:f3:17:7c:90:42:f7: a5:59:35:95:6a:23:0e:14:1f:12:ae:c8:ce:6a:52:20:43:0f: 60:4c:50:ca:1c:6b:83:95:16:bc:0a:22:e6:c7:db:7e:4f:95: d9:d9:01:c7:5e:d3:96:37:49:9c:05:cc:1d:74:68:62:06:20: 2a:64:96:03:0b:28:f5:cd:ed:20:9e:48:32:b1:a8:7c:30:7f: 7c:1d:5a:7d:6e:c9:d1:81:c8:d0:4b:6a:f7:17:dc:a0:3b:ff: 1c:a3:cc:0a:f0:d8:df:ec:0c:54:c0:a2:02:e4:59:fd:1b:c8: 04:53:47:e6:fa:4c:48:f2:ed:af:f8:fa:57:cc:1c:85:de:2b: 96:a2:34:60:4f:e2:44:f4:bd:1a:c9:2f:e6:d0:87:64:b8:e8: 96:50:e3:95:74:9d:8b:98:65:72:7b:25:81:d8:72:d4:bd:17: 45:fd:9b:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjQxMTIzMDAyMjI4WhcNMjQxMTMwMDAyMjI4WjAYMRYwFAYD VQQDEw02NzQxMjA0NS04ZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oSGotdjxpWB6jfibBPuNS3doM0ttDOvvYr5lMYACatn8F1KXxgoBuyfryT2 YUl8J3/exStHMFPEL8Nrz1xCaLoS0E+WeYOP0Jh9le7RySBA/rf1ZuTQ1JMsRlCz y/F3Gtatd53DrpXmL5p15l8IBYC5JBOQL5sQcRoeSTI4HElrnnta22yPVyqEHk7i gU7QGn2UZ4HXVKAlsU9oWGOxv93w3N3juHosN86w4WtkNgsY/JNOjiArNEdosz7l ygDRrAacm3GTGLSSNWPxUxFmCCnIv1M4nru72C+sdgvpICnBpO+E0X15sl8IsczD un8XdwQ8HgxSxOqnlpJMr71w2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNG14Q5 EgumxfgN1hGhKWlpnoDFMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDViaAVvkSwITMjhXJriSSa4d8aa+yY8+mxJhn7quw4QwHAgLUeWhw+ nBcXAEkDmHRUacdUW+0mzycH9G8dE7NTjxjBwn6UEXZIS1VI642fjv3P8gfzF3yQ QvelWTWVaiMOFB8SrsjOalIgQw9gTFDKHGuDlRa8CiLmx9t+T5XZ2QHHXtOWN0mc BcwddGhiBiAqZJYDCyj1ze0gnkgysah8MH98HVp9bsnRgcjQS2r3F9ygO/8co8wK 8Njf7AxUwKIC5Fn9G8gEU0fm+kxI8u2v+PpXzByF3iuWojRgT+JE9L0ayS/m0Idk uOiWUOOVdJ2LmGVyeyWB2HLUvRdF/ZvW -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org