$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: X0QCiYFFMlsLLHl8EoVNFuBY9B/EuwKZ8hDVJszJPYg= Subject key identifier: C1:A6:CE:AC:F9:07:E4:63:31:34:03:52:6F:39:A8:20:02:5D:8E:90 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0C23 Signing time: Fri 22 Nov 2024 18:19:44 +0000 Manifest this update: Fri 22 Nov 2024 18:19:44 +0000 Manifest next update: Fri 29 Nov 2024 18:19:44 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: 5/JEdelDlpMEzXa6reoW5saJ+4PuXeoCmUVfjjyR0Io=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: TeIPGyGqDRDL84HA9NnAzVJOOMFf2EjmrKH/elumev8=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: lRMtWT21HxefR8cIAkbesXguaIjwdfIuBa6XccIOgBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Nov 22 18:19:44 2024 GMT Not After : Nov 29 18:19:44 2024 GMT Subject: CN=6740cb40-8f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2b:f7:13:6d:bf:95:34:36:0e:9d:c1:cc:c1: 23:d8:da:fd:80:b3:52:80:90:0e:ff:a9:df:bd:70: 2b:4b:8e:fb:45:b3:9a:9a:1c:0b:1f:b4:3d:15:0b: 8e:80:f1:5c:46:b9:81:f6:88:6d:3e:32:42:e5:76: 4c:fb:80:a1:1d:4f:0f:5f:0a:d5:ac:2b:7f:59:17: c6:5e:4b:e6:7c:07:91:49:d6:09:85:0c:9b:5d:da: c7:05:cc:bc:15:47:e9:5a:55:b4:a8:69:1d:b2:04: a0:2c:ab:61:c0:e9:6a:40:80:da:3f:75:f5:8f:0e: 7c:1a:56:cd:b2:44:6e:99:e4:fb:0c:1d:50:23:41: 0f:50:52:98:14:6d:16:3b:b6:f8:4c:2a:00:0b:ee: ee:44:b9:42:08:7e:5d:4a:2f:92:4e:9b:2a:72:cd: 27:0e:8f:60:85:ef:09:e7:a8:5c:fe:3a:b6:30:b8: 83:55:bb:99:1e:b2:cc:60:52:e4:11:93:6a:9c:13: a2:48:2b:81:36:37:16:37:a1:b0:a2:6b:7c:d7:6a: ee:45:58:fe:60:65:a6:bb:34:e6:10:f4:23:0a:95: 7b:aa:f3:97:b1:76:5c:58:f3:39:d1:37:f6:79:c7: 65:f0:32:86:16:02:90:7c:f2:ce:f1:7a:a4:58:f0: 9b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A6:CE:AC:F9:07:E4:63:31:34:03:52:6F:39:A8:20:02:5D:8E:90 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:af:40:78:06:ae:6a:de:4b:c8:69:72:01:29:2c:22:16:f6: cd:df:27:ad:c3:a8:47:0c:e4:51:2a:b1:6e:3f:77:d1:70:e4: be:4f:14:d8:f9:fc:16:e2:98:c2:f4:91:e8:f3:73:46:16:75: 0d:50:91:df:b1:ae:bf:e7:3a:61:8b:73:ff:06:39:b0:9f:ab: 55:10:24:b5:d5:f2:46:fc:5c:41:7a:38:c5:fc:cd:70:a4:d4: 28:ac:f8:7e:c6:9c:0e:28:c0:a7:19:8f:a2:80:7a:6f:44:7f: 46:7a:44:1c:4a:a2:c5:77:9b:af:9b:60:9f:6f:82:e1:0e:79: 7b:4a:5e:83:89:1c:39:99:dc:84:d8:b4:0e:c6:48:7f:da:a6: cb:67:f9:a8:6a:ee:f1:7d:6a:0f:b0:d9:11:18:6d:4f:1d:65: f1:b7:1f:44:87:91:cd:08:69:0d:1c:11:50:f0:9c:3b:23:cd: 5f:46:46:97:dd:e3:1c:2b:8e:b8:dc:ff:cf:19:90:fa:86:95: d9:a7:35:87:54:44:fe:dc:bb:e2:46:42:a6:cd:fd:5e:3d:af: 09:5e:e2:97:e0:86:bd:a6:34:29:79:06:06:e9:a8:ac:1f:12: c0:b1:48:9a:50:b4:13:ac:74:9a:e1:d9:a2:e6:35:51:4c:e5: 31:0a:45:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjQxMTIyMTgxOTQ0WhcNMjQxMTI5MTgxOTQ0WjAYMRYwFAYD VQQDEw02NzQwY2I0MC04ZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiv3E22/lTQ2Dp3BzMEj2Nr9gLNSgJAO/6nfvXArS477RbOamhwLH7Q9FQuO gPFcRrmB9ohtPjJC5XZM+4ChHU8PXwrVrCt/WRfGXkvmfAeRSdYJhQybXdrHBcy8 FUfpWlW0qGkdsgSgLKthwOlqQIDaP3X1jw58GlbNskRumeT7DB1QI0EPUFKYFG0W O7b4TCoAC+7uRLlCCH5dSi+STpsqcs0nDo9ghe8J56hc/jq2MLiDVbuZHrLMYFLk EZNqnBOiSCuBNjcWN6Gwomt812ruRVj+YGWmuzTmEPQjCpV7qvOXsXZcWPM50Tf2 ecdl8DKGFgKQfPLO8XqkWPCbnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGmzqz5 B+RjMTQDUm85qCACXY6QMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYr0B4Bq5q3kvIaXIBKSwiFvbN3yetw6hHDORRKrFuP3fRcOS+TxTY +fwW4pjC9JHo83NGFnUNUJHfsa6/5zphi3P/Bjmwn6tVECS11fJG/FxBejjF/M1w pNQorPh+xpwOKMCnGY+igHpvRH9GekQcSqLFd5uvm2Cfb4LhDnl7Sl6DiRw5mdyE 2LQOxkh/2qbLZ/moau7xfWoPsNkRGG1PHWXxtx9Eh5HNCGkNHBFQ8Jw7I81fRkaX 3eMcK4643P/PGZD6hpXZpzWHVET+3LviRkKmzf1ePa8JXuKX4Ia9pjQpeQYG6ais HxLAsUiaULQTrHSa4dmi5jVRTOUxCkXw -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org