$ rpki-client -vvf rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft File: oAONXyzMSsJeuvdxJC50MA_PeCw.mft (raw, json) Hash identifier: 4c/o4cXHbXMvvVpOwlC54NNQjP48vAkF5tjjluJO0aQ= Subject key identifier: D8:69:70:8A:45:8B:AA:8B:CE:45:2F:6F:C9:F5:EC:13:A5:59:67:25 Authority key identifier: A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C Certificate issuer: /CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Certificate serial: 096F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft Manifest number: 0965 Signing time: Fri 22 Nov 2024 19:55:14 +0000 Manifest this update: Fri 22 Nov 2024 19:55:13 +0000 Manifest next update: Fri 29 Nov 2024 19:55:13 +0000 Files and hashes: 1: oAONXyzMSsJeuvdxJC50MA_PeCw.crl (hash: VOod2DM6FkdwyujLRIXQlfcG/r/+gnc3qHt651T6jWw=) 2: 1D86F90A988D11EABE02F23DC4F9AE02.roa (hash: eXMB9dV7xihStPr0BmetBSssUWM8QZG3PMbHIo5WHpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2415 (0x96f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Validity Not Before: Nov 22 19:55:13 2024 GMT Not After : Nov 29 19:55:13 2024 GMT Subject: CN=6740e1a2-3fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:a2:24:3e:8e:23:ed:cf:b0:93:e3:2b:4e: b1:88:9e:08:9c:db:72:04:9a:34:d1:e4:1b:89:c8: b5:08:6d:c5:4f:e4:ac:40:8c:b4:08:01:bf:03:09: fd:54:95:3e:43:72:49:ce:9a:55:d0:8d:f9:e7:80: ea:ac:d7:b4:0b:0c:84:0c:e2:95:22:4b:60:e0:20: 2a:84:a9:19:2c:4c:c9:e0:df:c8:6e:f4:9d:6a:30: 08:a2:77:38:ce:68:75:15:36:26:66:da:cc:f7:ca: 74:1a:85:ec:c1:c8:a5:6b:f5:9a:32:17:b7:28:36: 9d:48:cc:d6:3a:6d:d8:0c:c0:49:76:26:27:70:df: 0c:71:3a:c0:af:52:0e:09:fb:97:a9:58:7d:e6:02: e2:f2:fa:82:11:4f:9e:56:53:fe:ba:a0:3d:f1:ca: c4:7f:82:ae:a3:43:9a:1e:f8:b6:bb:cf:3b:6c:24: 25:de:a1:b3:b5:27:fe:de:7d:eb:6c:63:ca:71:61: e5:0c:ec:60:38:a4:56:b4:97:3b:93:56:81:a2:41: bf:81:05:fc:a6:d1:1a:64:73:d3:15:46:ff:ef:a8: 31:5d:1d:38:6b:6a:e4:4a:4c:74:00:74:a0:ff:33: 6b:9e:4a:ee:b6:29:23:8f:7e:de:18:62:8f:e0:fe: 38:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:69:70:8A:45:8B:AA:8B:CE:45:2F:6F:C9:F5:EC:13:A5:59:67:25 X509v3 Authority Key Identifier: keyid:A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e0:11:ca:71:af:e0:37:48:a7:c4:95:3a:0d:49:3a:d7:e3: 2a:1c:ab:fd:22:e2:37:3e:58:3b:73:5f:6d:34:3c:96:cb:3a: a8:e3:ff:5d:73:8d:d8:ae:3c:96:15:da:7d:59:9b:1d:0e:82: 8b:93:e5:0f:7d:39:0c:03:58:48:60:7c:08:c5:a1:6f:fb:58: e1:44:ac:ce:93:96:85:ec:77:53:38:39:1d:22:1a:dc:ef:6c: 90:7b:27:de:67:20:13:4f:f0:2b:98:48:2d:a0:f5:47:b1:9d: f3:66:0a:c7:54:b8:76:89:56:9b:72:0c:f3:f7:30:40:ea:22: 85:f3:5e:24:2e:16:b5:5c:c6:5b:80:fc:d2:bb:64:28:45:ad: 75:23:7e:94:08:33:63:0f:b4:df:f6:a3:e9:6a:df:0f:da:7e: be:ec:90:90:dc:37:d3:98:02:a4:57:13:97:9c:24:17:f7:91: 10:51:54:92:8d:62:66:fc:dd:09:c0:6e:91:fd:00:5c:b2:62: ed:82:d4:a9:3f:51:64:3e:bd:84:17:9b:2e:91:06:ca:7a:30: 32:0f:ea:9b:4f:87:f1:5f:b2:a1:f2:b4:74:27:e0:c5:d2:be: 2e:d4:f1:c2:7e:f6:7a:48:7c:84:b3:ff:95:47:a1:4e:92:8b: 1e:b3:42:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwQTQxMTAvBgNVBAUTKEEwMDM4RDVGMkNDQzRBQzI1RUJBRjc3MTI0MkU3NDMw MEZDRjc4MkMwHhcNMjQxMTIyMTk1NTEzWhcNMjQxMTI5MTk1NTEzWjAYMRYwFAYD VQQDEw02NzQwZTFhMi0zZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+eiJD6OI+3PsJPjK06xiJ4InNtyBJo00eQbici1CG3FT+SsQIy0CAG/Awn9 VJU+Q3JJzppV0I3554DqrNe0CwyEDOKVIktg4CAqhKkZLEzJ4N/IbvSdajAIonc4 zmh1FTYmZtrM98p0GoXswcila/WaMhe3KDadSMzWOm3YDMBJdiYncN8McTrAr1IO CfuXqVh95gLi8vqCEU+eVlP+uqA98crEf4Kuo0OaHvi2u887bCQl3qGztSf+3n3r bGPKcWHlDOxgOKRWtJc7k1aBokG/gQX8ptEaZHPTFUb/76gxXR04a2rkSkx0AHSg /zNrnkrutikjj37eGGKP4P44UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhpcIpF i6qLzkUvb8n17BOlWWclMB8GA1UdIwQYMBaAFKADjV8szErCXrr3cSQudDAPz3gs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjBBNC82QzcxNDBFRTgy OUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNzSmV1dmR4SkM1ME1BX1Bl Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BT05YeXpNU3NKZXV2ZHhKQzUwTUFfUGVDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjBBNC82QzcxNDBFRTgyOUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNz SmV1dmR4SkM1ME1BX1BlQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB34BHKca/gN0inxJU6DUk61+MqHKv9IuI3Plg7c19tNDyWyzqo4/9d c43YrjyWFdp9WZsdDoKLk+UPfTkMA1hIYHwIxaFv+1jhRKzOk5aF7HdTODkdIhrc 72yQeyfeZyATT/ArmEgtoPVHsZ3zZgrHVLh2iVabcgzz9zBA6iKF814kLha1XMZb gPzSu2QoRa11I36UCDNjD7Tf9qPpat8P2n6+7JCQ3DfTmAKkVxOXnCQX95EQUVSS jWJm/N0JwG6R/QBcsmLtgtSpP1FkPr2EF5sukQbKejAyD+qbT4fxX7Kh8rR0J+DF 0r4u1PHCfvZ6SHyEs/+VR6FOkoses0KI -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org