$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: evhEpN6mXKg6qFHZD7TmcxLpdG8XHFkGeTcaTLQEwOU= Subject key identifier: B0:6A:F0:9B:FD:CF:07:14:FE:E9:3F:FC:BB:D5:CD:9F:1A:1A:4E:3B Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 0186 Signing time: Sat 23 Nov 2024 01:59:52 +0000 Manifest this update: Sat 23 Nov 2024 01:59:51 +0000 Manifest next update: Sat 30 Nov 2024 01:59:51 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: JdN7rIsjsp5lOtr+VdQiiUXRfBp3jar/9pRArkCzuv4=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 2bOIvfXxT14VfBuLjn2fK1kMoqNHisqc/b7wGNY7+9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Nov 23 01:59:51 2024 GMT Not After : Nov 30 01:59:51 2024 GMT Subject: CN=67413718-3482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ae:ae:1c:be:b6:24:40:33:eb:3d:b2:58:55: fd:4e:3d:4e:4c:fe:60:08:47:a3:5d:44:cb:e6:d9: 37:d2:7d:1c:79:ed:ee:b3:17:1d:b3:57:b2:10:a0: 06:fe:83:4b:5c:f3:96:4f:59:ec:43:15:e3:84:7d: b3:a9:d6:8b:36:c5:f2:ce:1e:52:c7:95:8d:8f:0c: c7:d1:9c:ae:9a:29:37:34:42:53:9a:33:af:02:89: b6:53:0c:56:87:a4:1f:d1:5f:2c:c8:c1:cb:c4:a1: 2f:c7:a8:4e:57:b0:ca:a2:5e:1c:d9:c6:9a:6c:93: d6:e4:20:52:88:c0:6a:53:89:bc:fb:45:30:2b:df: 4f:d9:08:b6:05:de:90:88:04:d2:38:2a:b8:23:12: 70:e2:26:49:14:36:50:e1:9a:cd:c0:0a:1f:55:e1: 39:c4:05:d2:c4:44:90:cb:b2:ec:8b:4c:2d:32:c2: ea:80:21:03:59:c7:9f:9e:c9:79:41:bb:87:42:d3: d4:36:dc:a4:ad:8b:e3:82:00:97:7e:63:9b:16:2e: b1:30:bc:4b:2d:58:4b:2c:7e:12:5a:3f:fc:a5:1d: 81:99:c7:16:eb:a9:4a:f2:22:a1:77:31:37:11:99: dd:3b:0a:42:7b:0d:4c:4d:90:c9:e5:ba:b3:28:5b: 21:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6A:F0:9B:FD:CF:07:14:FE:E9:3F:FC:BB:D5:CD:9F:1A:1A:4E:3B X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:9f:73:dd:e8:f6:39:d1:ce:07:75:3f:cb:d5:9b:0a:b3:20: eb:c6:29:89:b3:50:e7:c4:ec:5f:1a:28:59:81:50:a9:66:c2: c3:5b:9a:af:02:5b:2d:d0:82:88:ab:6e:99:23:fc:e9:86:03: f6:bf:67:2d:e3:4e:e1:29:6f:60:a5:4d:f0:7c:e4:b2:9f:91: a0:ba:6e:f1:f9:1f:45:fb:54:12:2c:31:86:a5:5b:db:1b:c7: 83:15:7b:c9:00:b1:21:cb:6f:8d:fb:8e:a1:90:f7:f7:e2:60: d0:43:55:8e:8d:5f:86:49:13:9f:06:60:1c:c5:42:4e:48:09: 6b:ca:21:51:f4:eb:31:29:34:58:6a:87:e1:8a:d6:cc:07:bb: 56:ab:73:4f:46:31:f3:c4:58:a0:92:05:75:68:f4:29:e2:dd: 41:15:b3:a7:9b:70:27:d9:16:1a:56:54:ce:7c:8f:55:c6:c1: 74:a4:d9:c0:ed:9c:f3:09:3e:4a:bd:24:1b:28:35:a9:22:cb: a3:b1:c8:b7:90:9f:af:27:2b:1a:81:a9:99:05:9a:1c:d4:2d: 4c:d5:c7:a4:69:b5:55:84:90:6d:b6:ec:07:85:f5:f3:bc:51: 30:c2:27:be:0e:4d:f9:25:e5:f5:cf:4c:49:8e:60:b5:6d:b3: 17:c4:98:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjQxMTIzMDE1OTUxWhcNMjQxMTMwMDE1OTUxWjAYMRYwFAYD VQQDEw02NzQxMzcxOC0zNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmK6uHL62JEAz6z2yWFX9Tj1OTP5gCEejXUTL5tk30n0cee3usxcds1eyEKAG /oNLXPOWT1nsQxXjhH2zqdaLNsXyzh5Sx5WNjwzH0Zyumik3NEJTmjOvAom2UwxW h6Qf0V8syMHLxKEvx6hOV7DKol4c2caabJPW5CBSiMBqU4m8+0UwK99P2Qi2Bd6Q iATSOCq4IxJw4iZJFDZQ4ZrNwAofVeE5xAXSxESQy7Lsi0wtMsLqgCEDWcefnsl5 QbuHQtPUNtykrYvjggCXfmObFi6xMLxLLVhLLH4SWj/8pR2BmccW66lK8iKhdzE3 EZndOwpCew1MTZDJ5bqzKFshzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBq8Jv9 zwcU/uk//LvVzZ8aGk47MB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChn3Pd6PY50c4HdT/L1ZsKsyDrximJs1DnxOxfGihZgVCpZsLDW5qv Alst0IKIq26ZI/zphgP2v2ct407hKW9gpU3wfOSyn5Ggum7x+R9F+1QSLDGGpVvb G8eDFXvJALEhy2+N+46hkPf34mDQQ1WOjV+GSROfBmAcxUJOSAlryiFR9OsxKTRY aofhitbMB7tWq3NPRjHzxFigkgV1aPQp4t1BFbOnm3An2RYaVlTOfI9VxsF0pNnA 7ZzzCT5KvSQbKDWpIsujsci3kJ+vJysagamZBZoc1C1M1cekabVVhJBttuwHhfXz vFEwwie+Dk35JeX1z0xJjmC1bbMXxJgC -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org