$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft File: owBvXZI9TJzDuBs4ocpnEnR9RAY.mft (raw, json) Hash identifier: Wh3BUe7HMDq2+zMxTBmaA8N92wNsc7Q0RsduBgCWUVY= Subject key identifier: 8A:07:AC:DF:9F:6E:85:EB:03:C7:3A:AD:F3:97:08:CC:01:64:97:5B Authority key identifier: A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 Certificate issuer: /CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft Manifest number: 0140 Signing time: Thu 21 Nov 2024 02:40:30 +0000 Manifest this update: Thu 21 Nov 2024 02:40:30 +0000 Manifest next update: Thu 28 Nov 2024 02:40:30 +0000 Files and hashes: 1: owBvXZI9TJzDuBs4ocpnEnR9RAY.crl (hash: tFDNWzr0LBmizDYj+l4pK/PyLbzRAdPf7wZoTGzXj24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Validity Not Before: Nov 21 02:40:30 2024 GMT Not After : Nov 28 02:40:30 2024 GMT Subject: CN=673e9d9e-1314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:b9:91:83:1a:cd:4c:79:b2:5e:82:a3:02: 66:39:a3:4c:30:51:24:86:3f:4e:85:4f:d7:ae:94: 9f:20:a9:09:5c:f8:42:25:38:47:e7:88:f0:0f:b7: 36:4e:a9:a3:20:59:ef:45:62:90:f6:db:a9:14:1d: 5e:7f:c4:b2:29:92:26:c1:ba:51:27:4f:3c:ab:4a: 99:fb:79:50:ed:bf:fb:f3:d9:af:63:c6:16:58:68: 00:4c:5b:ce:c9:26:2b:44:2b:56:f2:a8:9a:84:25: 2c:8f:b0:66:f7:8e:58:96:95:b8:76:ec:d5:9e:06: 6b:e4:9f:e0:f6:60:f9:f1:7d:74:a7:52:d8:29:cd: a9:ae:51:10:96:f5:43:70:34:d8:5d:cf:8c:27:76: fe:21:f0:fa:dd:0f:3b:75:17:8b:38:6e:ad:94:fd: b0:c5:f8:3f:2d:df:af:b6:02:25:53:03:57:04:ce: 69:75:ff:0c:83:d6:d3:7d:8f:32:a9:81:45:d6:48: 20:d5:26:26:cb:1c:d5:56:b7:31:0e:84:11:d5:be: e8:2f:8f:2f:cf:85:84:3e:a7:b1:6e:ec:a1:aa:f9: 97:e9:b5:dc:37:ce:22:94:60:08:be:1d:73:eb:e9: 12:b0:9d:06:09:cd:ab:46:f9:50:61:7c:e5:0c:e7: 2a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:07:AC:DF:9F:6E:85:EB:03:C7:3A:AD:F3:97:08:CC:01:64:97:5B X509v3 Authority Key Identifier: keyid:A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:64:a8:8f:92:44:52:9e:f8:cb:59:a5:b5:7d:1a:59:21:6e: bb:2b:f2:11:3b:32:47:3d:58:60:0b:8b:ad:cc:d1:11:31:b1: ef:95:0d:92:5f:65:ce:64:72:27:b3:83:b6:55:22:ce:6e:6b: 3f:7a:90:25:0a:2a:dd:9b:5b:78:85:5f:d2:15:a6:6c:c3:57: bd:d8:79:6d:26:bc:2e:e6:e9:1a:af:ea:57:a7:39:e1:99:35: 57:5d:e8:99:ba:65:34:40:bc:80:90:2a:a8:65:f8:76:26:81: d0:b3:c6:f1:fe:5c:46:66:43:09:ae:8a:80:09:9a:35:61:14: fc:e1:d2:76:a5:4c:f4:d7:b1:60:1c:08:c9:5b:34:33:6b:4a: 48:75:b3:d4:34:80:14:28:3a:4d:1b:f1:38:4d:54:87:a0:ea: 71:53:da:91:26:71:b5:93:50:b1:a5:79:32:5a:2b:43:89:ab: c8:9c:47:4e:fc:90:f9:27:3c:0f:65:ba:45:81:6b:fa:a8:62: d7:fc:75:4b:dd:f3:cf:14:b1:a5:4e:03:8d:ac:fc:cd:7b:72: f7:7d:f8:eb:7f:9c:bb:03:b5:a7:69:80:c0:ca:41:ca:45:0e: 7c:59:78:f6:1d:f7:25:d6:d5:60:1e:76:80:a3:17:e5:fd:7c: 09:a3:bd:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKEEzMDA2RjVEOTIzRDRDOUNDM0I4MUIzOEExQ0E2NzEy NzQ3RDQ0MDYwHhcNMjQxMTIxMDI0MDMwWhcNMjQxMTI4MDI0MDMwWjAYMRYwFAYD VQQDEw02NzNlOWQ5ZS0xMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7G5kYMazUx5sl6CowJmOaNMMFEkhj9OhU/XrpSfIKkJXPhCJThH54jwD7c2 TqmjIFnvRWKQ9tupFB1ef8SyKZImwbpRJ088q0qZ+3lQ7b/789mvY8YWWGgATFvO ySYrRCtW8qiahCUsj7Bm945YlpW4duzVngZr5J/g9mD58X10p1LYKc2prlEQlvVD cDTYXc+MJ3b+IfD63Q87dReLOG6tlP2wxfg/Ld+vtgIlUwNXBM5pdf8Mg9bTfY8y qYFF1kgg1SYmyxzVVrcxDoQR1b7oL48vz4WEPqexbuyhqvmX6bXcN84ilGAIvh1z 6+kSsJ0GCc2rRvlQYXzlDOcqaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoHrN+f boXrA8c6rfOXCMwBZJdbMB8GA1UdIwQYMBaAFKMAb12SPUycw7gbOKHKZxJ0fUQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9EOUJGNDM5NEJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRKekR1QnM0b2NwbkVuUjlS QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293QnZYWkk5VEp6RHVCczRvY3BuRW5SOVJBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9EOUJGNDM5NEJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRK ekR1QnM0b2NwbkVuUjlSQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXZKiPkkRSnvjLWaW1fRpZIW67K/IROzJHPVhgC4utzNERMbHvlQ2S X2XOZHIns4O2VSLObms/epAlCirdm1t4hV/SFaZsw1e92HltJrwu5ukar+pXpznh mTVXXeiZumU0QLyAkCqoZfh2JoHQs8bx/lxGZkMJroqACZo1YRT84dJ2pUz017Fg HAjJWzQza0pIdbPUNIAUKDpNG/E4TVSHoOpxU9qRJnG1k1CxpXkyWitDiavInEdO /JD5JzwPZbpFgWv6qGLX/HVL3fPPFLGlTgONrPzNe3L3ffjrf5y7A7WnaYDAykHK RQ58WXj2Hfcl1tVgHnaAoxfl/XwJo70q -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org