$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: HcnmGGSmWfncUQF12DshOarGWDZOWsug+WV2ClEvL38= Subject key identifier: 9B:A1:FC:8B:30:33:C0:4E:4A:11:74:5B:8E:27:72:35:47:BE:1D:EF Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0169 Signing time: Sat 23 Nov 2024 02:16:53 +0000 Manifest this update: Sat 23 Nov 2024 02:16:53 +0000 Manifest next update: Sat 30 Nov 2024 02:16:53 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: ms5ldM7TF1UjYwta6Bq1fwDkDrH3zvbcfHdKX5qf+bU=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: 7oLDQldYVyRxi75fB8xX/zbnoY5FIN5G44Xmk4Vonf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Nov 23 02:16:53 2024 GMT Not After : Nov 30 02:16:53 2024 GMT Subject: CN=67413b15-6c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e0:a0:a1:c5:7c:ee:af:9f:f2:f1:ae:6d:c0: 0a:8f:c5:62:f6:8a:27:fc:3b:65:81:c7:82:cd:30: 68:63:31:d6:60:c6:66:86:f3:4a:8e:fe:37:62:76: 09:26:90:d5:89:a3:1c:a6:04:68:d2:2d:8f:cc:18: 1c:2d:a6:45:62:fc:25:49:0a:fb:37:67:4b:79:74: b8:28:a2:92:28:b4:0e:29:10:42:01:30:83:62:e7: 32:1d:97:91:3f:5b:00:6b:f6:b8:38:f9:62:49:85: 2f:3a:9b:b1:f0:3a:46:3a:a4:0b:9e:92:bb:71:98: 9c:64:95:35:01:bb:25:e4:b6:b0:2f:7e:45:17:e8: 25:78:35:a3:0e:0b:19:26:05:f4:c1:ab:41:6b:a4: f6:c4:31:79:68:e8:6a:c6:c1:e0:3a:75:40:74:06: f1:7c:4b:e4:f9:05:34:9e:86:d2:45:de:0e:58:ea: 6b:76:9d:e6:41:42:b5:bc:00:36:f7:bd:4f:d2:5f: eb:75:f4:53:8c:f2:36:f9:2d:29:2a:ea:53:09:a3: 29:ed:12:c1:3e:cb:bd:8d:19:32:5b:29:7c:02:c0: db:90:1d:a6:a2:12:35:d9:a4:a3:82:a1:ed:fd:f6: f1:19:7f:23:f9:bf:8b:55:e3:6b:0d:04:a9:da:67: b5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A1:FC:8B:30:33:C0:4E:4A:11:74:5B:8E:27:72:35:47:BE:1D:EF X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:14:c3:da:3e:a7:1d:01:7f:80:df:75:67:d3:57:65:21:61: 9c:06:07:4e:b9:74:57:ae:cb:58:b4:74:aa:ec:41:53:9f:65: 52:a3:38:31:86:7a:76:86:b6:9d:42:71:ba:a0:b9:cf:45:d6: 89:58:f7:14:90:d6:e9:fb:d2:51:6c:f2:b9:83:e5:40:c5:13: 49:c3:b3:8d:63:14:c0:5a:4b:91:95:f7:90:69:93:8d:33:9b: 19:f7:d2:f2:a4:35:1d:f4:8f:2d:07:2b:bc:60:15:d3:97:30: fa:d3:c7:c5:d8:62:6a:92:fc:d3:ef:d9:0d:c3:b9:d9:09:66: ea:0d:eb:ac:e6:a6:3e:c5:f0:ca:1b:7e:eb:94:03:3f:6b:41: 12:66:60:0f:4a:58:9f:d2:a4:e4:f6:7a:e1:3b:8b:ec:86:66: d1:eb:e6:70:c3:41:27:0a:78:41:4c:19:e0:8f:01:5f:20:9e: 7c:12:9c:c0:5f:d6:ae:b0:7b:dc:eb:cf:1b:ee:cd:5e:d1:cb: fc:68:f5:f7:de:f3:41:9a:ea:79:75:27:e8:05:9a:eb:87:44: 93:8a:3c:a9:75:93:a6:40:41:cd:81:31:d1:5e:4e:fa:39:71: 6b:6c:41:5f:26:a1:98:cb:ab:ab:9b:ba:3f:e4:2b:36:81:57: 95:84:f6:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjQxMTIzMDIxNjUzWhcNMjQxMTMwMDIxNjUzWjAYMRYwFAYD VQQDEw02NzQxM2IxNS02YzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuCgocV87q+f8vGubcAKj8Vi9oon/DtlgceCzTBoYzHWYMZmhvNKjv43YnYJ JpDViaMcpgRo0i2PzBgcLaZFYvwlSQr7N2dLeXS4KKKSKLQOKRBCATCDYucyHZeR P1sAa/a4OPliSYUvOpux8DpGOqQLnpK7cZicZJU1Absl5LawL35FF+gleDWjDgsZ JgX0watBa6T2xDF5aOhqxsHgOnVAdAbxfEvk+QU0nobSRd4OWOprdp3mQUK1vAA2 971P0l/rdfRTjPI2+S0pKupTCaMp7RLBPsu9jRkyWyl8AsDbkB2mohI12aSjgqHt /fbxGX8j+b+LVeNrDQSp2me1qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuh/Isw M8BOShF0W44ncjVHvh3vMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFMPaPqcdAX+A33Vn01dlIWGcBgdOuXRXrstYtHSq7EFTn2VSozgx hnp2hradQnG6oLnPRdaJWPcUkNbp+9JRbPK5g+VAxRNJw7ONYxTAWkuRlfeQaZON M5sZ99LypDUd9I8tByu8YBXTlzD608fF2GJqkvzT79kNw7nZCWbqDeus5qY+xfDK G37rlAM/a0ESZmAPSlif0qTk9nrhO4vshmbR6+Zww0EnCnhBTBngjwFfIJ58EpzA X9ausHvc688b7s1e0cv8aPX33vNBmup5dSfoBZrrh0STijypdZOmQEHNgTHRXk76 OXFrbEFfJqGYy6urm7o/5Cs2gVeVhPbM -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org