$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: FOnXFN/TxOSFKH4j2dxK9qS2sttMhy9SI/qWB8/pxaA= Subject key identifier: E6:1F:F7:AB:C7:FF:81:B1:5B:DA:43:2C:B9:1D:4A:B7:E7:0B:C7:8F Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 08B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 08AE Signing time: Fri 22 Nov 2024 20:14:48 +0000 Manifest this update: Fri 22 Nov 2024 20:14:48 +0000 Manifest next update: Fri 29 Nov 2024 20:14:48 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: sNUrdzdtpB9t/wM5O3qaFSVW1WLG+XmGonBhmBZUISk=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: itCLnBcL2Gte2voVtQcQvcDsZmsmQBg0colGRKDZXYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Nov 22 20:14:48 2024 GMT Not After : Nov 29 20:14:48 2024 GMT Subject: CN=6740e638-6349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:f4:1e:44:1c:7f:9b:4f:06:95:fd:3a:22: bb:b8:40:63:3a:96:a4:36:e7:f4:9c:ee:63:87:b4: 0c:1b:a1:a2:3a:4f:18:9d:21:a8:b1:28:1a:09:1d: 2d:c1:00:fb:16:fc:46:38:7d:a0:2d:5f:88:04:93: b6:3a:a1:b6:c4:8a:30:d3:c3:9b:8e:65:c8:92:2c: 9b:23:50:77:a9:f9:14:88:1a:aa:13:45:f8:da:b6: 20:77:89:d2:50:09:a0:6e:92:2f:42:2d:da:e7:c8: 38:6d:fa:7a:24:50:b7:1a:02:14:72:14:c2:50:15: c1:06:6f:62:ca:fa:1b:22:d8:d3:9f:1e:cf:d4:67: 0d:96:6f:63:d5:c6:6b:d6:1e:c3:78:52:c7:ac:8d: 9d:2b:06:51:96:bb:cd:57:57:35:97:48:70:27:52: f6:96:6b:74:64:b3:de:fe:bc:de:42:33:98:26:3d: 6a:88:74:63:24:35:69:1a:dc:bf:7e:ee:3d:1a:97: ec:d8:9a:48:92:96:02:f1:08:e9:fb:83:24:4b:21: 80:aa:6e:2f:44:44:d7:0f:9b:81:07:72:b8:7b:a1: 51:9c:6c:7f:60:c7:99:a3:b7:cf:0f:19:49:86:69: 23:e9:95:84:3c:9b:9f:6d:d7:d1:4d:86:d8:76:d4: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1F:F7:AB:C7:FF:81:B1:5B:DA:43:2C:B9:1D:4A:B7:E7:0B:C7:8F X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:75:d4:89:12:96:d3:9c:7c:be:9b:9f:ae:4d:fe:bc:27:01: e3:00:7e:9d:b3:31:52:a4:a2:63:ee:fb:f6:8d:eb:f9:e1:9f: ba:13:52:cf:3b:5a:8a:93:e7:ab:2b:69:85:48:49:c8:32:39: d2:10:35:58:fc:f9:a3:a9:9d:7f:f6:f3:fd:6a:29:fa:4e:0e: 5e:fe:99:c0:a4:e9:38:da:88:6d:15:9d:d2:4b:b3:4a:b6:97: 65:f8:59:7f:df:c7:16:ac:8f:8d:51:6e:da:45:e1:54:0c:c3: c7:28:0a:2a:f1:06:85:24:d6:a7:c8:63:a3:e2:b1:2d:11:92: 17:7d:c9:43:b9:e9:cb:42:ee:58:f1:eb:76:b6:77:33:7d:db: e9:c8:f8:42:3e:60:c6:db:2d:c5:24:2f:bd:22:2b:2f:30:6e: d9:7c:23:45:5f:10:e0:58:d7:07:20:0e:5f:9e:05:18:b9:e3: e1:1a:14:79:01:c8:f8:8a:7f:8e:86:a2:93:78:a0:c4:8c:5b: 04:b4:56:5a:02:b4:1f:40:a0:29:4d:25:95:0d:bc:b1:31:35: 58:39:6d:28:5c:98:1b:bf:8c:47:6c:58:9d:f9:0a:2e:97:62: d9:3b:28:10:ba:36:bc:ca:f2:1d:19:f2:75:f7:c8:76:73:b0: 9a:8a:56:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjQxMTIyMjAxNDQ4WhcNMjQxMTI5MjAxNDQ4WjAYMRYwFAYD VQQDEw02NzQwZTYzOC02MzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnj0HkQcf5tPBpX9OiK7uEBjOpakNuf0nO5jh7QMG6GiOk8YnSGosSgaCR0t wQD7FvxGOH2gLV+IBJO2OqG2xIow08ObjmXIkiybI1B3qfkUiBqqE0X42rYgd4nS UAmgbpIvQi3a58g4bfp6JFC3GgIUchTCUBXBBm9iyvobItjTnx7P1GcNlm9j1cZr 1h7DeFLHrI2dKwZRlrvNV1c1l0hwJ1L2lmt0ZLPe/rzeQjOYJj1qiHRjJDVpGty/ fu49Gpfs2JpIkpYC8Qjp+4MkSyGAqm4vRETXD5uBB3K4e6FRnGx/YMeZo7fPDxlJ hmkj6ZWEPJufbdfRTYbYdtT0swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYf96vH /4GxW9pDLLkdSrfnC8ePMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLddSJEpbTnHy+m5+uTf68JwHjAH6dszFSpKJj7vv2jev54Z+6E1LP O1qKk+erK2mFSEnIMjnSEDVY/PmjqZ1/9vP9ain6Tg5e/pnApOk42ohtFZ3SS7NK tpdl+Fl/38cWrI+NUW7aReFUDMPHKAoq8QaFJNanyGOj4rEtEZIXfclDuenLQu5Y 8et2tnczfdvpyPhCPmDG2y3FJC+9IisvMG7ZfCNFXxDgWNcHIA5fngUYuePhGhR5 Acj4in+OhqKTeKDEjFsEtFZaArQfQKApTSWVDbyxMTVYOW0oXJgbv4xHbFid+Qou l2LZOygQuja8yvIdGfJ198h2c7CailZz -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org