$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft File: i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json) Hash identifier: VI5GZR4DH8h+ca34L+ZOnn/mrCxRMqRdY0XYKlW1NOA= Subject key identifier: 75:95:53:5C:39:B9:A8:07:E5:9E:33:BD:C4:13:D5:C4:8D:0A:AE:29 Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft Manifest number: 0D Signing time: Wed 23 Oct 2024 06:45:39 +0000 Manifest this update: Wed 23 Oct 2024 06:45:39 +0000 Manifest next update: Wed 30 Oct 2024 06:45:39 +0000 Files and hashes: 1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: T1qt6LqkVQWlU0aIMo4Czi7rqJU7en+jGijXqkTqFRA=) 2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Validity Not Before: Oct 23 06:45:39 2024 GMT Not After : Oct 30 06:45:39 2024 GMT Subject: CN=67189b93-fc0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:94:01:b1:86:2e:3c:e6:05:7e:9a:a9:2a: 09:f9:48:3f:3e:fc:ff:99:a3:d2:d6:30:a2:74:f4: d9:97:21:72:2d:00:c9:df:25:da:65:d8:e1:81:c7: b0:06:a4:b8:3b:f1:a3:cf:a9:d5:52:d3:a7:e0:a3: fa:33:cd:f0:4f:49:0c:01:06:46:1a:a8:0e:2f:bd: a5:24:34:14:eb:4f:0f:47:bc:02:92:3c:5e:0a:97: eb:09:38:8d:66:fd:7e:64:7a:f4:13:88:d5:ae:69: 65:0d:d6:ce:8a:e8:d6:07:1b:16:de:11:30:15:79: 9f:af:96:a4:d7:aa:d1:30:8b:d6:99:a1:ff:31:e4: a3:f3:d8:b4:8a:3c:66:79:2f:24:68:d5:2f:13:6e: a1:2a:f5:4f:22:13:74:b6:a9:e8:6c:43:99:a5:b3: 90:ce:de:cf:61:9d:fe:19:e5:b5:0f:67:32:8b:42: e0:7f:cc:40:c8:0b:e1:04:0f:91:36:de:ff:87:ba: 97:2c:d3:e9:66:16:4b:a1:81:3a:db:6a:cc:12:07: d6:62:6d:cf:f3:8a:0e:94:45:a4:b7:24:e7:b7:e1: 04:7f:f6:2c:77:9e:5b:84:d2:70:3a:98:97:bb:7b: 90:03:a7:ab:3d:5a:aa:12:44:df:86:53:ec:5f:29: cc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:95:53:5C:39:B9:A8:07:E5:9E:33:BD:C4:13:D5:C4:8D:0A:AE:29 X509v3 Authority Key Identifier: keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:1f:e0:79:59:45:28:7d:a0:2b:5f:06:fc:19:64:a7:ef:56: 5e:3d:3a:bb:3b:9c:d4:1d:44:be:bd:a1:bb:c7:81:2c:9d:d8: fb:67:78:9e:ab:7b:2a:5a:54:9c:e5:77:d8:a3:a2:9a:3c:1e: c3:d3:ae:07:12:a3:0e:f7:77:3a:59:db:cc:fe:e6:0b:59:d3: c2:5e:7c:86:fe:74:0a:be:79:89:b6:21:92:ab:c1:b0:9c:b4: 82:a0:4a:41:5e:00:b7:36:58:2b:f9:22:fc:50:5a:9d:35:a1: 0d:5a:2b:fa:e1:1d:7d:c1:66:3e:2c:79:e3:fb:17:76:4f:86: b7:d0:41:41:24:bf:4e:fc:f9:8f:92:1c:80:44:70:32:1b:f3: 27:ca:03:e8:f6:5b:93:ec:65:75:82:0d:3c:ce:aa:56:61:be: 99:b8:3a:dc:a8:eb:7c:36:0b:17:a6:82:9c:0f:f0:73:25:9c: 4b:f8:fb:89:79:1d:a9:d6:19:a1:86:02:7c:69:c8:6c:16:56: a3:c3:59:a0:db:9f:d5:57:23:23:bb:97:3d:52:29:7d:d1:c9: 5e:be:49:9d:b4:ad:d5:a3:bc:40:e5:73:6f:1a:7d:86:d2:31: ad:63:16:17:a0:ee:54:d5:b3:c3:50:88:ac:76:69:f6:04:44: b1:8c:62:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzZERjExMC8GA1UEBRMoOEI1RThFQkFCRTA5QTFGNDkzRDEwMjUzQzFBM0I5Mzkz OUJGQ0E4QTAeFw0yNDEwMjMwNjQ1MzlaFw0yNDEwMzAwNjQ1MzlaMBgxFjAUBgNV BAMTDTY3MTg5YjkzLWZjMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSKJQBsYYuPOYFfpqpKgn5SD8+/P+Zo9LWMKJ09NmXIXItAMnfJdpl2OGBx7AG pLg78aPPqdVS06fgo/ozzfBPSQwBBkYaqA4vvaUkNBTrTw9HvAKSPF4Kl+sJOI1m /X5kevQTiNWuaWUN1s6K6NYHGxbeETAVeZ+vlqTXqtEwi9aZof8x5KPz2LSKPGZ5 LyRo1S8TbqEq9U8iE3S2qehsQ5mls5DO3s9hnf4Z5bUPZzKLQuB/zEDIC+EED5E2 3v+Hupcs0+lmFkuhgTrbaswSB9Zibc/zig6URaS3JOe34QR/9ix3nluE0nA6mJe7 e5ADp6s9WqoSRN+GU+xfKcyHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdZVTXDm5 qAflnjO9xBPVxI0KrikwHwYDVR0jBBgwFoAUi16Our4JofST0QJTwaO5OTm/yoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzNkRGLzFBMzYyQTU2ODEz RjExRUY5Q0NFMUExQUM0RjlBRTAyL2kxNk91cjRKb2ZTVDBRSlR3YU81T1RtX3lv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTE2T3VyNEpvZlNUMFFKVHdhTzVPVG1feW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz NkRGLzFBMzYyQTU2ODEzRjExRUY5Q0NFMUExQUM0RjlBRTAyL2kxNk91cjRKb2ZT VDBRSlR3YU81T1RtX3lvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFgf4HlZRSh9oCtfBvwZZKfvVl49Ors7nNQdRL69obvHgSyd2PtneJ6r eypaVJzld9ijopo8HsPTrgcSow73dzpZ28z+5gtZ08JefIb+dAq+eYm2IZKrwbCc tIKgSkFeALc2WCv5IvxQWp01oQ1aK/rhHX3BZj4seeP7F3ZPhrfQQUEkv078+Y+S HIBEcDIb8yfKA+j2W5PsZXWCDTzOqlZhvpm4Otyo63w2CxemgpwP8HMlnEv4+4l5 HanWGaGGAnxpyGwWVqPDWaDbn9VXIyO7lz1SKX3RyV6+SZ20rdWjvEDlc28afYbS Ma1jFheg7lTVs8NQiKx2afYERLGMYrE= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:48 2024 by rpki-client on console-ams.rpki-client.org