$ rpki-client -vvf rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft File: OWpdnmemeQypf7kxMEtE57CoIc8.mft (raw, json) Hash identifier: iKLkAC5tZoFvAHm1BQo7f2i3EW89ZeyGxN982OKCi7U= Subject key identifier: E1:4F:70:EB:2A:E6:4D:C9:00:9E:CC:64:68:FE:55:C0:A6:3D:2F:52 Authority key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF Certificate issuer: /CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Certificate serial: 087B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft Manifest number: 0871 Signing time: Fri 22 Nov 2024 20:23:14 +0000 Manifest this update: Fri 22 Nov 2024 20:23:13 +0000 Manifest next update: Fri 29 Nov 2024 20:23:13 +0000 Files and hashes: 1: OWpdnmemeQypf7kxMEtE57CoIc8.crl (hash: dp5KHx1YI+7pvyIr7+GHLAmhjqtVKyMw86/NgCnON8U=) 2: 442D6434B14411EAB852C134C4F9AE02.roa (hash: OW9lsUV5oixQaepXd0o9wvP+ydFKTMRn+aOMtcrsIqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Validity Not Before: Nov 22 20:23:13 2024 GMT Not After : Nov 29 20:23:13 2024 GMT Subject: CN=6740e831-875b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8c:f0:81:70:a9:5a:55:6d:25:6f:c1:4d:99: 45:67:af:fc:43:db:5f:b4:22:67:8f:89:ab:df:64: ea:95:2b:2c:2e:67:e6:bb:6d:c5:3c:b4:85:99:b5: c4:26:a6:5a:85:64:7c:74:3b:3f:cd:24:b4:7a:96: 97:43:0e:a1:94:a9:99:c9:f9:39:32:21:63:70:f4: 5b:f4:63:e4:36:75:d0:40:f6:75:19:61:ab:f4:25: dc:5d:12:65:cb:43:b9:7c:a0:e1:81:70:5d:a0:77: 82:e7:45:c8:a8:81:72:f0:c9:f4:ab:00:89:45:08: 20:c3:32:6a:ab:55:c7:22:f1:d7:e8:78:1c:26:cf: 9d:bf:cd:89:e7:b6:fa:9b:82:5e:22:65:2e:1a:f2: 6f:07:95:6f:dc:25:88:92:37:f7:1e:6a:9c:cb:13: b4:f0:07:3c:3e:db:00:f8:a7:cc:69:87:8f:2e:9d: e3:c6:ed:96:40:e4:67:5c:b4:05:4b:57:60:d5:b9: 24:fb:14:b3:b8:c1:42:ae:70:de:e9:fe:d9:79:8d: 8b:11:a8:c7:63:9b:bd:29:85:d2:e0:f6:0b:9c:19: 94:a3:f2:4d:fa:e0:a5:b4:a5:5d:07:f9:05:43:d4: c1:a1:76:2a:6e:05:cb:4e:e6:f7:97:55:01:2d:f1: 5d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4F:70:EB:2A:E6:4D:C9:00:9E:CC:64:68:FE:55:C0:A6:3D:2F:52 X509v3 Authority Key Identifier: keyid:39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:d7:aa:55:c9:41:64:2d:ff:62:81:dd:83:ab:b3:42:38:c6: f3:3e:79:c3:3c:d9:3f:a8:cb:d6:b1:94:e1:b0:3e:42:f5:92: 86:bd:a1:e0:66:ca:c0:33:aa:79:8f:49:ff:a1:9e:c3:ae:08: 0a:b2:54:90:5a:a5:4e:01:d3:3b:68:9f:d0:11:e8:0a:7d:0e: 33:bb:0a:f5:6b:e6:f3:11:f1:00:86:b3:2d:fc:4f:d4:7d:b1: b6:6e:ac:be:b3:2e:40:bb:98:b5:d0:83:a2:81:67:4a:b4:96: bf:e4:1c:eb:3b:ab:00:0e:a9:69:20:75:10:98:20:54:9f:eb: de:1c:b6:9f:bb:f9:b0:b9:2b:98:01:de:07:23:13:e1:98:1c: 2f:f6:db:e1:ac:c2:8e:35:1a:fe:bc:b7:5e:9e:b6:87:60:78: 5b:84:f7:6d:51:68:1a:9d:26:b2:14:c8:25:1a:a4:c9:50:74: f0:ef:d4:97:a7:10:fa:26:ff:f6:86:3c:a0:86:cb:06:43:ee: ab:d3:2a:2b:61:a0:d0:23:75:eb:37:07:63:0b:53:42:10:0b: 34:93:b3:0f:16:00:f0:31:ff:8e:88:df:fc:91:6b:c1:15:98: 19:b8:2c:55:01:b3:8e:e2:5f:33:bd:39:59:15:d2:c0:6a:f7: 88:81:6a:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkzMTMwNEI0NEU3 QjBBODIxQ0YwHhcNMjQxMTIyMjAyMzEzWhcNMjQxMTI5MjAyMzEzWjAYMRYwFAYD VQQDEw02NzQwZTgzMS04NzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74zwgXCpWlVtJW/BTZlFZ6/8Q9tftCJnj4mr32TqlSssLmfmu23FPLSFmbXE JqZahWR8dDs/zSS0epaXQw6hlKmZyfk5MiFjcPRb9GPkNnXQQPZ1GWGr9CXcXRJl y0O5fKDhgXBdoHeC50XIqIFy8Mn0qwCJRQggwzJqq1XHIvHX6HgcJs+dv82J57b6 m4JeImUuGvJvB5Vv3CWIkjf3HmqcyxO08Ac8PtsA+KfMaYePLp3jxu2WQORnXLQF S1dg1bkk+xSzuMFCrnDe6f7ZeY2LEajHY5u9KYXS4PYLnBmUo/JN+uCltKVdB/kF Q9TBoXYqbgXLTub3l1UBLfFdiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFPcOsq 5k3JAJ7MZGj+VcCmPS9SMB8GA1UdIwQYMBaAFDlqXZ5npnkMqX+5MTBLROewqCHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjY0RS9CNDZBOUMxRUIx M0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVReXBmN2t4TUV0RTU3Q29J YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09XcGRubWVtZVF5cGY3a3hNRXRFNTdDb0ljOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVR eXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi16pVyUFkLf9igd2Dq7NCOMbzPnnDPNk/qMvWsZThsD5C9ZKGvaHg ZsrAM6p5j0n/oZ7DrggKslSQWqVOAdM7aJ/QEegKfQ4zuwr1a+bzEfEAhrMt/E/U fbG2bqy+sy5Au5i10IOigWdKtJa/5BzrO6sADqlpIHUQmCBUn+veHLafu/mwuSuY Ad4HIxPhmBwv9tvhrMKONRr+vLdenraHYHhbhPdtUWganSayFMglGqTJUHTw79SX pxD6Jv/2hjyghssGQ+6r0yorYaDQI3XrNwdjC1NCEAs0k7MPFgDwMf+OiN/8kWvB FZgZuCxVAbOO4l8zvTlZFdLAaveIgWpd -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org