$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: J95npexoAHFVu+0fzAOSvc/8dkz1W7Y+howcg7u6n8I= Subject key identifier: 5A:E9:1F:56:80:93:A2:B4:7C:8B:21:45:D3:EF:84:9C:A5:21:35:F6 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 0414 Signing time: Fri 22 Nov 2024 23:57:43 +0000 Manifest this update: Fri 22 Nov 2024 23:57:42 +0000 Manifest next update: Fri 29 Nov 2024 23:57:42 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: 5KyKcuLUF3LJUM0Mmb+Vk/+q8kdtdOqTIUmfBHgkimo=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: w9FaGj3sY61MFEZzIunRrfWZ3OYXoXaJ/HX3XZ5M44M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: Nov 22 23:57:42 2024 GMT Not After : Nov 29 23:57:42 2024 GMT Subject: CN=67411a77-865b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7a:f6:b5:40:59:d1:82:bb:1a:45:99:9f:37: 20:0d:8b:8f:ef:75:07:6c:63:f1:06:c5:1d:57:22: 26:c4:97:39:f2:5d:6a:1d:fc:e8:4e:f3:28:f7:c0: 45:57:80:15:49:8b:17:9b:7c:3e:ed:3d:37:cc:10: 8f:2c:ca:99:f3:67:6f:c5:16:5c:e9:e2:9c:06:d7: 7b:00:2e:03:15:77:27:c6:3a:a5:81:b2:f2:55:7f: c0:92:dc:96:34:41:b8:30:a1:b5:b6:1c:34:92:dc: d1:7f:4f:de:89:af:6c:41:c4:e1:fa:8a:7c:95:6c: 91:cf:d0:85:a3:73:f0:15:d7:4e:2c:46:ed:fd:19: 2d:01:3a:7d:63:30:d6:01:59:bb:7a:d0:90:78:4b: c4:95:a9:49:1b:1f:93:3d:17:d5:61:bf:8d:80:d9: 9c:ff:5b:33:be:ac:c0:bf:73:eb:7b:24:cb:5e:5a: a9:c8:25:99:4e:86:60:62:fa:51:9e:7e:d8:c8:da: 28:c4:c1:41:59:51:32:b2:37:9c:f1:e3:f2:30:b2: 1d:d6:65:af:6c:cc:b6:94:1a:d5:30:f6:fc:11:89: 5e:02:62:f5:10:ac:8e:34:68:b0:09:f6:c6:92:24: 78:0f:db:d4:99:0f:59:d1:d8:da:09:1f:34:73:38: b9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E9:1F:56:80:93:A2:B4:7C:8B:21:45:D3:EF:84:9C:A5:21:35:F6 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:67:2e:2f:5e:fd:e5:fa:f1:b3:5d:56:00:1d:8b:76:57:b1: 0b:37:a4:30:3f:af:20:fd:3c:fb:de:82:c3:fa:86:82:1e:17: ba:ce:22:78:9e:48:c5:c3:a8:6f:25:79:b3:2e:3a:4f:be:2e: 7f:d1:a9:4a:af:d2:0d:a5:4c:83:62:9b:95:fa:af:44:5f:33: 2d:12:20:e4:ea:ca:17:59:56:a0:39:29:37:52:cb:69:1d:c1: ea:7c:e9:42:db:8b:0f:cc:bd:fa:c2:b0:93:08:fc:10:3e:22: c7:d0:38:3c:1b:55:99:b9:e2:9a:92:d3:99:90:30:27:1d:3a: 01:13:65:bf:9a:6e:9d:f1:0f:c2:d5:cd:26:64:92:8b:43:32: 57:09:85:3b:55:c9:08:b1:53:a7:27:10:78:80:0e:a1:3b:ec: b5:dd:28:a8:fb:bf:70:8a:a9:f5:5d:31:3f:54:b4:35:8b:12: b4:63:15:06:e9:c2:25:d8:76:d1:c7:ac:3b:32:f0:7f:c9:62: f6:13:a6:a6:5a:9b:6a:05:dd:01:5c:51:c4:db:72:7d:c1:36: ae:fa:ad:7d:ff:3d:b5:ea:ef:a5:14:43:69:f3:60:6e:68:0e: 5b:64:c3:c7:48:03:d9:3f:4d:01:ef:4d:a1:75:63:73:43:d8: 67:4b:79:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjQxMTIyMjM1NzQyWhcNMjQxMTI5MjM1NzQyWjAYMRYwFAYD VQQDEw02NzQxMWE3Ny04NjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHr2tUBZ0YK7GkWZnzcgDYuP73UHbGPxBsUdVyImxJc58l1qHfzoTvMo98BF V4AVSYsXm3w+7T03zBCPLMqZ82dvxRZc6eKcBtd7AC4DFXcnxjqlgbLyVX/AktyW NEG4MKG1thw0ktzRf0/eia9sQcTh+op8lWyRz9CFo3PwFddOLEbt/RktATp9YzDW AVm7etCQeEvElalJGx+TPRfVYb+NgNmc/1szvqzAv3PreyTLXlqpyCWZToZgYvpR nn7YyNooxMFBWVEysjec8ePyMLId1mWvbMy2lBrVMPb8EYleAmL1EKyONGiwCfbG kiR4D9vUmQ9Z0djaCR80czi5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrpH1aA k6K0fIshRdPvhJylITX2MB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANZy4vXv3l+vGzXVYAHYt2V7ELN6QwP68g/Tz73oLD+oaCHhe6ziJ4 nkjFw6hvJXmzLjpPvi5/0alKr9INpUyDYpuV+q9EXzMtEiDk6soXWVagOSk3Ustp HcHqfOlC24sPzL36wrCTCPwQPiLH0Dg8G1WZueKaktOZkDAnHToBE2W/mm6d8Q/C 1c0mZJKLQzJXCYU7VckIsVOnJxB4gA6hO+y13Sio+79wiqn1XTE/VLQ1ixK0YxUG 6cIl2HbRx6w7MvB/yWL2E6amWptqBd0BXFHE23J9wTau+q19/z216u+lFENp82Bu aA5bZMPHSAPZP00B702hdWNzQ9hnS3n9 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org