$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: Cb+Vc6o3DKUAA3/SJeChs84OswJmXc74LeQvHkN0j8o= Subject key identifier: 24:30:17:4E:01:22:96:54:50:32:19:53:D7:03:BE:63:20:24:08:4D Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0BE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0BDC Signing time: Fri 22 Nov 2024 18:27:22 +0000 Manifest this update: Fri 22 Nov 2024 18:27:22 +0000 Manifest next update: Fri 29 Nov 2024 18:27:22 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: 5yV7ZRdpJUOmFqXDkIZ0s1h/WO6QJonWrANvlGeX/BE=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: tBcP96oatlX28aHZ2XCL2w+PP5ZPCSpD4OOUZWfI8Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3042 (0xbe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Nov 22 18:27:22 2024 GMT Not After : Nov 29 18:27:22 2024 GMT Subject: CN=6740cd0a-fa15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:f6:8e:25:00:da:81:8c:ab:fb:9f:62:16: 28:29:56:e9:ec:7f:ca:01:6e:c8:2b:6c:88:e8:aa: de:8a:a1:80:02:40:0e:66:56:a1:9c:f9:04:de:33: a3:e1:0e:03:91:6a:97:ae:b0:9d:77:87:bd:20:d0: e4:5c:9f:25:d3:e1:6d:41:29:8a:8a:f4:24:6c:be: 65:c8:2d:f6:d5:64:06:74:ef:d3:0a:62:7c:cc:4f: 7e:a4:6b:db:9e:ee:8f:01:26:50:13:3f:93:b3:9b: 29:5c:ca:11:e7:92:49:26:ee:97:fb:c3:d2:d9:95: 68:c3:a6:91:5e:ac:8b:2d:8f:28:78:a7:62:92:10: a2:3f:f8:d5:31:0d:17:b1:9a:37:7a:03:c4:e1:05: ff:69:0a:4b:ef:99:d8:b6:b9:74:93:05:4d:04:9c: de:fe:99:92:35:fb:e0:69:36:80:62:be:4d:5d:8b: be:bc:04:81:1a:3c:94:ba:ad:3f:0b:66:fd:68:60: c6:62:75:22:1f:00:77:b4:a6:8a:eb:b5:b3:aa:64: c4:25:c7:d9:11:86:83:20:19:49:cc:1c:4b:63:07: e2:ce:0b:6a:75:f4:6f:da:00:e5:02:bf:71:79:3e: 7d:38:f6:20:a8:d2:4f:93:b8:51:05:3d:a8:0f:a1: fd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:30:17:4E:01:22:96:54:50:32:19:53:D7:03:BE:63:20:24:08:4D X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8f:4f:f6:13:dc:f9:7f:fd:1f:12:60:45:33:16:75:31:1b: 4c:b4:46:35:87:7e:b8:be:1b:33:05:75:96:1d:54:3f:42:61: 42:15:4f:eb:95:8d:84:b5:ec:af:bf:62:df:d2:21:44:22:fd: 99:80:10:cf:ad:40:13:ba:7d:af:66:e6:c5:04:38:23:d3:c8: e9:ab:5d:55:de:52:b2:a6:99:28:d3:10:54:b6:e2:a8:26:a1: 8c:f8:7f:4e:aa:1b:f8:af:70:3b:80:7f:f3:f7:cf:77:91:5b: 78:58:07:bb:ed:ba:b6:7e:3f:09:50:27:03:9c:41:21:0c:28: fe:b8:58:81:b8:e7:b7:e8:53:9d:b2:4a:72:ea:87:f7:f7:9e: b9:2d:64:33:78:4c:21:97:09:28:99:c3:ee:bc:e6:ce:c6:56: 11:0c:25:8c:10:50:2c:8d:06:34:b7:a4:9a:9d:b3:36:d6:a1: 77:3a:46:e3:ca:31:5f:06:34:9d:20:c9:7c:21:fa:8e:be:46: 11:c1:80:7e:0f:c3:27:ae:99:f7:1e:1a:61:21:f4:bf:b0:6e: bc:d4:49:2a:14:2c:9f:cd:38:67:54:be:0d:e4:d7:29:f5:83: 1b:7b:ed:ca:5a:53:7d:97:3e:b0:ab:3c:50:91:17:45:01:1e: ce:06:e2:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjQxMTIyMTgyNzIyWhcNMjQxMTI5MTgyNzIyWjAYMRYwFAYD VQQDEw02NzQwY2QwYS1mYTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/D2jiUA2oGMq/ufYhYoKVbp7H/KAW7IK2yI6KreiqGAAkAOZlahnPkE3jOj 4Q4DkWqXrrCdd4e9INDkXJ8l0+FtQSmKivQkbL5lyC321WQGdO/TCmJ8zE9+pGvb nu6PASZQEz+Ts5spXMoR55JJJu6X+8PS2ZVow6aRXqyLLY8oeKdikhCiP/jVMQ0X sZo3egPE4QX/aQpL75nYtrl0kwVNBJze/pmSNfvgaTaAYr5NXYu+vASBGjyUuq0/ C2b9aGDGYnUiHwB3tKaK67WzqmTEJcfZEYaDIBlJzBxLYwfizgtqdfRv2gDlAr9x eT59OPYgqNJPk7hRBT2oD6H9YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQwF04B IpZUUDIZU9cDvmMgJAhNMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtj0/2E9z5f/0fEmBFMxZ1MRtMtEY1h364vhszBXWWHVQ/QmFCFU/r lY2Eteyvv2Lf0iFEIv2ZgBDPrUATun2vZubFBDgj08jpq11V3lKyppko0xBUtuKo JqGM+H9Oqhv4r3A7gH/z9893kVt4WAe77bq2fj8JUCcDnEEhDCj+uFiBuOe36FOd skpy6of39565LWQzeEwhlwkomcPuvObOxlYRDCWMEFAsjQY0t6SanbM21qF3Okbj yjFfBjSdIMl8IfqOvkYRwYB+D8Mnrpn3HhphIfS/sG681EkqFCyfzThnVL4N5Ncp 9YMbe+3KWlN9lz6wqzxQkRdFAR7OBuLI -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org