$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: Qqv9Deyebs7Jvb8p+nwjrGT3g2HPcYUCezy5ElU365o= Subject key identifier: EB:95:77:86:EA:CE:DE:03:92:B7:C7:AA:4C:F2:E6:8F:7E:A4:A9:74 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0B6C Signing time: Wed 20 Nov 2024 18:47:53 +0000 Manifest this update: Wed 20 Nov 2024 18:47:53 +0000 Manifest next update: Wed 27 Nov 2024 18:47:53 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: O7Pblnrmp2TmDV9XM/OnuS/IdUVAJk4QULwSR2TQSEk=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: rIKErlmiWA8+S4ht3UIu2T4gm2uHnfIxSPm+f5gxatE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Nov 20 18:47:53 2024 GMT Not After : Nov 27 18:47:53 2024 GMT Subject: CN=673e2ed9-25c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:6f:5b:3e:4f:4f:fe:03:17:fc:58:0d:e4: 68:14:24:8d:a4:45:1e:74:ce:cf:ba:0a:67:54:aa: 43:2c:71:c2:41:58:02:01:ea:df:44:2f:7f:aa:bf: 9f:bf:ab:46:7c:28:54:66:b9:87:c1:0e:3d:8f:2e: 3a:03:71:4f:c1:82:85:b3:64:4d:d1:92:5a:86:0e: 44:ae:12:b6:b6:dc:f1:9f:24:9b:3b:8d:fa:de:77: 63:25:dc:b0:a7:e3:f7:12:15:68:95:9f:59:e5:7f: ec:6f:05:d0:31:21:8e:2b:56:6d:3b:09:da:11:87: 83:d1:cf:10:de:01:5d:9c:fc:66:36:0b:26:74:65: ad:7b:f8:08:32:e5:d3:9f:ef:c9:55:d6:40:c0:e4: f7:77:35:75:be:b7:33:a2:51:95:c2:cc:53:0f:0e: cb:8d:ae:f3:94:b0:cd:49:49:2d:76:07:b8:04:28: 67:2d:c5:08:0b:95:60:9e:33:35:95:c6:ca:86:ff: 2d:91:7d:ac:e1:23:02:16:76:b2:8f:22:34:a3:90: 20:89:c9:81:a2:db:ce:68:59:00:9b:97:eb:9b:e2: 00:96:ff:39:f3:d1:d1:9d:dd:e8:4d:2c:43:44:6d: 2b:d3:e8:ff:a1:53:d1:be:ac:da:fe:b4:4d:a0:66: 23:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:95:77:86:EA:CE:DE:03:92:B7:C7:AA:4C:F2:E6:8F:7E:A4:A9:74 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f9:f2:b8:09:0a:75:4d:51:93:9b:77:24:0f:a2:0f:eb:d8: ad:f7:b8:ad:74:02:06:25:fa:16:5d:c6:0e:59:66:ea:03:57: 65:37:51:e4:e0:b9:4d:41:95:61:7b:58:7e:d3:7e:66:e2:01: 2e:7b:12:5f:cd:a9:f9:58:bb:89:66:e0:49:71:62:20:a4:75: a2:c6:9f:b9:22:b1:26:49:37:42:c2:8d:d7:5b:9e:3e:96:cb: f4:6b:01:99:79:81:f1:ca:6e:0f:96:8e:80:56:71:c9:80:e9: 40:e9:d2:b5:0e:be:a9:5f:93:86:67:90:66:df:bc:32:00:6a: d5:7f:9e:88:b1:76:a6:e0:b3:fd:cb:7f:62:2e:a5:6a:00:75: e0:ed:5b:fc:b7:eb:64:73:a3:26:a9:a2:4a:13:92:bd:ca:77: 26:68:a8:67:2e:cd:ea:84:8c:4f:b4:f2:58:de:96:24:bd:5d: 45:b6:df:b1:d2:24:bd:2f:c9:c4:29:f0:ec:fe:d4:4a:64:ac: 6d:92:42:f6:7f:2c:e1:3b:a3:a0:83:ab:ae:a4:b9:51:2a:c7: 15:a6:47:07:a8:df:86:da:8c:a0:4e:89:b2:4c:0e:94:e4:fa: c7:fb:22:a1:33:93:cc:9a:e0:6c:b5:54:1a:37:7f:a9:7d:d4: 89:ca:60:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjQxMTIwMTg0NzUzWhcNMjQxMTI3MTg0NzUzWjAYMRYwFAYD VQQDEw02NzNlMmVkOS0yNWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxxvWz5PT/4DF/xYDeRoFCSNpEUedM7PugpnVKpDLHHCQVgCAerfRC9/qr+f v6tGfChUZrmHwQ49jy46A3FPwYKFs2RN0ZJahg5ErhK2ttzxnySbO4363ndjJdyw p+P3EhVolZ9Z5X/sbwXQMSGOK1ZtOwnaEYeD0c8Q3gFdnPxmNgsmdGWte/gIMuXT n+/JVdZAwOT3dzV1vrczolGVwsxTDw7Lja7zlLDNSUktdge4BChnLcUIC5VgnjM1 lcbKhv8tkX2s4SMCFnayjyI0o5AgicmBotvOaFkAm5frm+IAlv8589HRnd3oTSxD RG0r0+j/oVPRvqza/rRNoGYjrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuVd4bq zt4DkrfHqkzy5o9+pKl0MB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0+fK4CQp1TVGTm3ckD6IP69it97itdAIGJfoWXcYOWWbqA1dlN1Hk 4LlNQZVhe1h+035m4gEuexJfzan5WLuJZuBJcWIgpHWixp+5IrEmSTdCwo3XW54+ lsv0awGZeYHxym4Plo6AVnHJgOlA6dK1Dr6pX5OGZ5Bm37wyAGrVf56IsXam4LP9 y39iLqVqAHXg7Vv8t+tkc6MmqaJKE5K9yncmaKhnLs3qhIxPtPJY3pYkvV1Ftt+x 0iS9L8nEKfDs/tRKZKxtkkL2fyzhO6Ogg6uupLlRKscVpkcHqN+G2oygTomyTA6U 5PrH+yKhM5PMmuBstVQaN3+pfdSJymC8 -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:21 2024 by rpki-client on console-fra.rpki-client.org