$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: vWVHbbx4HSAUetmC+ecaLOsSeub2mLTBt5w8GfXAN0Y= Subject key identifier: 1B:69:7C:7D:08:A4:94:C3:CE:B2:61:66:18:30:43:E6:EB:E9:A5:1F Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 05DE Signing time: Fri 22 Nov 2024 22:28:13 +0000 Manifest this update: Fri 22 Nov 2024 22:28:12 +0000 Manifest next update: Fri 29 Nov 2024 22:28:12 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: 0igufrsISEdqXqpxQJjsz0LY8bj7kjFW0grngsL0YPg=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: GeZswpwVwmpN5JkYUADU3m9LKzzMiHleESILy/kILG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: Nov 22 22:28:12 2024 GMT Not After : Nov 29 22:28:12 2024 GMT Subject: CN=6741057c-a499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:b1:e5:a8:05:bc:3d:2f:0d:e1:c8:bd:3b: 8e:2d:f4:f0:20:3d:d2:10:7f:fe:f5:ab:33:11:b9: 29:28:9c:05:6d:3c:a5:93:ee:bc:b4:e7:74:66:9d: d1:45:53:d7:10:4a:6b:d7:6a:11:ff:6c:76:8b:8b: 78:06:89:b7:75:7c:10:e7:83:fa:ac:3b:a1:71:29: d9:b8:65:ac:82:a8:8a:2b:fa:10:b9:d6:4e:43:55: 78:92:4e:25:f7:f0:51:7f:60:cc:cc:48:42:66:aa: 7b:0f:46:77:d0:b0:18:f5:55:8b:24:c8:60:39:fb: 59:0f:f7:5c:5e:5f:8a:be:77:6e:23:0d:04:9d:74: 90:98:9d:4f:09:50:ba:a6:d7:c3:21:5e:7e:08:5a: 6b:22:82:a6:67:63:1c:bd:4b:89:5a:00:6c:ff:e2: b2:69:c7:f1:53:9e:99:5e:a3:78:05:f2:6d:b0:4d: ea:ea:88:4b:fe:2a:36:49:3a:ea:db:c7:df:d8:e3: 1c:fb:c4:ff:99:4a:68:03:35:99:bc:3f:91:0f:f9: 69:c7:53:ad:ba:26:7f:84:b2:bd:dc:d0:0c:73:9e: 9b:58:40:c4:92:af:d8:07:7e:dd:96:74:0e:8a:f6: 75:e7:3e:91:94:66:18:e2:4b:30:b8:57:42:c2:fb: 49:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:69:7C:7D:08:A4:94:C3:CE:B2:61:66:18:30:43:E6:EB:E9:A5:1F X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:db:57:9a:b0:a3:34:ab:3c:4e:0a:c7:78:f1:89:e0:fe:a9: 6e:ab:0f:0d:32:4d:21:1b:53:32:2a:46:70:ae:89:d1:7f:91: e5:c2:e2:49:69:9b:49:03:0c:f6:e4:53:a1:78:fe:e1:c9:30: f7:f6:23:0b:7f:3a:13:38:d5:fb:19:45:6f:a3:81:ae:11:fc: 85:3a:43:3f:30:9b:8d:57:26:b4:6a:a1:70:2e:02:99:92:f9: f8:31:95:5e:4d:0c:a5:18:81:a7:ff:5e:e9:6a:a1:64:25:1f: 66:4d:e5:e7:8d:58:c1:45:75:63:21:ac:b5:45:ea:19:e0:b1: 96:f3:34:ad:a9:ae:5f:54:c2:8b:d5:a5:6d:9e:27:3b:88:de: 9f:e9:2b:f7:68:c4:dc:04:ac:0b:8a:b7:38:7c:ab:4e:13:de: 51:60:c0:e8:a3:b4:ce:04:2d:48:31:e3:a0:c9:76:65:6f:31: e2:cc:91:fa:a1:06:b5:5d:7a:84:bd:d6:49:89:7f:0d:43:e3: 6c:d9:2e:b1:c0:59:44:22:f7:5f:df:33:c3:9d:56:e0:00:6b: 36:6a:9e:b6:1d:33:da:19:f6:b9:83:22:df:ac:b1:cb:ec:f0: 09:01:54:e9:e2:df:1f:14:90:5b:50:c8:a0:28:12:7e:97:9e: ae:6f:22:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjQxMTIyMjIyODEyWhcNMjQxMTI5MjIyODEyWjAYMRYwFAYD VQQDEw02NzQxMDU3Yy1hNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaOx5agFvD0vDeHIvTuOLfTwID3SEH/+9aszEbkpKJwFbTylk+68tOd0Zp3R RVPXEEpr12oR/2x2i4t4Bom3dXwQ54P6rDuhcSnZuGWsgqiKK/oQudZOQ1V4kk4l 9/BRf2DMzEhCZqp7D0Z30LAY9VWLJMhgOftZD/dcXl+KvnduIw0EnXSQmJ1PCVC6 ptfDIV5+CFprIoKmZ2McvUuJWgBs/+KyacfxU56ZXqN4BfJtsE3q6ohL/io2STrq 28ff2OMc+8T/mUpoAzWZvD+RD/lpx1OtuiZ/hLK93NAMc56bWEDEkq/YB37dlnQO ivZ15z6RlGYY4kswuFdCwvtJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtpfH0I pJTDzrJhZhgwQ+br6aUfMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA221easKM0qzxOCsd48Yng/qluqw8NMk0hG1MyKkZwronRf5HlwuJJ aZtJAwz25FOheP7hyTD39iMLfzoTONX7GUVvo4GuEfyFOkM/MJuNVya0aqFwLgKZ kvn4MZVeTQylGIGn/17paqFkJR9mTeXnjVjBRXVjIay1ReoZ4LGW8zStqa5fVMKL 1aVtnic7iN6f6Sv3aMTcBKwLirc4fKtOE95RYMDoo7TOBC1IMeOgyXZlbzHizJH6 oQa1XXqEvdZJiX8NQ+Ns2S6xwFlEIvdf3zPDnVbgAGs2ap62HTPaGfa5gyLfrLHL 7PAJAVTp4t8fFJBbUMigKBJ+l56ubyIS -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org