$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: iHLrYP4jWCewZgHZ2k9PJ5gnRCBdRnX5L2ywR2IkEyg= Subject key identifier: 0B:D9:37:55:68:DD:A8:99:A7:64:44:30:07:7C:51:83:E6:64:01:97 Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 2012 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 200B Signing time: Fri 22 Nov 2024 15:58:55 +0000 Manifest this update: Fri 22 Nov 2024 15:58:54 +0000 Manifest next update: Fri 29 Nov 2024 15:58:54 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: NfHAeQprrKlo7+hufF+XC8xCXCECGih7NLrhuyHh2eQ=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: hFvoTK4OtAWXeUzfRY08E0R6vhbINiOuVhDEOiD6rEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8210 (0x2012) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Nov 22 15:58:54 2024 GMT Not After : Nov 29 15:58:54 2024 GMT Subject: CN=6740aa3f-2b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:90:05:0e:92:e8:59:c2:8c:d2:5e:5e:96:af: fd:c7:05:37:6b:d9:8a:6b:c2:cc:26:f2:cf:21:66: 5b:28:3c:74:2d:36:fb:52:28:26:4a:be:ac:00:2e: 50:42:4c:4c:7c:9c:fe:73:cb:cd:9a:45:01:18:b3: 1d:38:6e:2d:5a:e5:79:89:ae:89:7e:14:9b:ab:7e: bc:5c:35:1a:7b:cd:a2:14:35:3a:78:12:a6:83:8a: db:61:76:94:33:90:15:ec:96:c1:25:cf:62:0b:6c: ba:ad:cc:e4:a3:e5:02:1c:04:bb:92:a4:39:de:02: 0a:2e:e8:7d:32:91:46:99:38:5d:a1:58:b1:ee:bf: 7a:43:6a:4c:83:c4:54:8f:a1:26:c4:96:a8:df:02: 5c:44:fd:3f:44:f7:f6:7c:94:3c:3f:79:e5:bb:af: 76:a5:2f:1a:ad:8f:3f:62:9f:cd:c3:87:b9:0e:45: 4e:40:75:07:22:f2:83:f3:df:d4:2a:e9:b4:69:91: f8:46:d7:ff:72:cc:41:63:4f:36:2c:8c:b7:2c:b2: 64:56:c5:ac:68:21:a8:88:6b:44:8d:d6:21:5f:3e: 90:2e:39:89:c7:05:e1:28:9f:26:d1:00:ee:7d:ca: ef:9a:f1:d8:47:af:6f:de:30:04:7c:16:5c:66:e2: a2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D9:37:55:68:DD:A8:99:A7:64:44:30:07:7C:51:83:E6:64:01:97 X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:8a:21:53:e6:42:da:78:2c:2e:86:3a:6b:f6:33:ef:0a:19: 18:24:a5:8a:61:01:8c:2a:b3:43:a6:6e:76:cd:46:91:47:31: d6:75:57:ee:a7:02:60:04:07:3d:98:32:a8:8f:6c:3d:77:ee: a0:a9:81:eb:ab:82:f4:ab:d0:9c:bc:f9:fd:fe:c3:9b:c2:24: 58:26:ca:02:9b:6a:e3:97:89:e0:5f:e2:88:12:e5:6c:42:92: 6e:18:b2:5b:b5:c0:f1:f5:73:12:f9:5a:48:c8:bf:e4:1d:9a: c0:05:30:66:72:28:42:64:76:27:3d:9c:63:a4:d9:99:18:36: b5:a8:13:e2:dd:12:31:f6:cf:09:ee:4b:62:50:7d:f1:86:f9: 43:c0:e8:61:46:87:47:65:df:1b:25:ec:89:ee:5f:e0:8d:af: 99:b7:f4:5f:ee:60:db:3a:99:9f:2f:71:35:ba:3c:60:b5:c1: 42:5d:1e:17:60:1a:bf:b9:3d:39:12:ee:4e:47:40:17:f5:c8: 83:a7:d0:9e:3c:b9:6f:29:28:a7:fe:df:b9:7a:61:1e:53:00: 8a:4d:a5:27:53:b7:50:b8:3e:34:fa:60:66:5b:20:d2:cc:97: 15:d4:3b:26:88:da:26:bb:3e:40:a1:1d:7f:a4:c3:d9:bb:11: 69:2a:6a:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjQxMTIyMTU1ODU0WhcNMjQxMTI5MTU1ODU0WjAYMRYwFAYD VQQDEw02NzQwYWEzZi0yYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJAFDpLoWcKM0l5elq/9xwU3a9mKa8LMJvLPIWZbKDx0LTb7UigmSr6sAC5Q QkxMfJz+c8vNmkUBGLMdOG4tWuV5ia6JfhSbq368XDUae82iFDU6eBKmg4rbYXaU M5AV7JbBJc9iC2y6rczko+UCHAS7kqQ53gIKLuh9MpFGmThdoVix7r96Q2pMg8RU j6EmxJao3wJcRP0/RPf2fJQ8P3nlu692pS8arY8/Yp/Nw4e5DkVOQHUHIvKD89/U Kum0aZH4Rtf/csxBY082LIy3LLJkVsWsaCGoiGtEjdYhXz6QLjmJxwXhKJ8m0QDu fcrvmvHYR69v3jAEfBZcZuKiIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvZN1Vo 3aiZp2REMAd8UYPmZAGXMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADiiFT5kLaeCwuhjpr9jPvChkYJKWKYQGMKrNDpm52zUaRRzHWdVfu pwJgBAc9mDKoj2w9d+6gqYHrq4L0q9CcvPn9/sObwiRYJsoCm2rjl4ngX+KIEuVs QpJuGLJbtcDx9XMS+VpIyL/kHZrABTBmcihCZHYnPZxjpNmZGDa1qBPi3RIx9s8J 7ktiUH3xhvlDwOhhRodHZd8bJeyJ7l/gja+Zt/Rf7mDbOpmfL3E1ujxgtcFCXR4X YBq/uT05Eu5OR0AX9ciDp9CePLlvKSin/t+5emEeUwCKTaUnU7dQuD40+mBmWyDS zJcV1DsmiNomuz5AoR1/pMPZuxFpKmq4 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org