$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: veH2NkQOd5yFGaaf0AEM5A+QEZBd/t1Wojxo2ojjrMU= Subject key identifier: 87:DF:AF:4A:DE:E4:CD:37:08:E5:C2:0B:36:E8:82:95:D4:AA:17:B9 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 08E6 Signing time: Wed 20 Nov 2024 21:47:25 +0000 Manifest this update: Wed 20 Nov 2024 21:47:25 +0000 Manifest next update: Wed 27 Nov 2024 21:47:25 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: l/pJp5/3ZoyUVACReblT2uClLNM+7sdc0997Jz6v0jo=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: cKLqzBD3UNEjua94H34t+S8hZV/aOFg8bXhQVhmFTLs=) 3: 3F18BFC4950211EF85DCE75DC4F9AE02.roa (hash: ii9DIA9vzYHdYFjImymACXPtRBszwH2XzCF7b+wd6mM=) 4: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: Bpq9dhCpjI1cT2kel0jPo45D0NBWXD/qIfwghmBzSyI=) 5: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: Sc37SATsVjDUvoeuant9XpguxSfk6BLAFRWRVkPZh+Q=) 6: B803EDC45E9711EF8BA65030C4F9AE02.roa (hash: jo+knF2FLvXvFBoAEPzT8eMJoktUfF3Bq+HOjC00xWY=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: PTN3D9DukvxulJCnZfplXeEJi7h63+XDY8ZJvEz9E/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Nov 20 21:47:25 2024 GMT Not After : Nov 27 21:47:25 2024 GMT Subject: CN=673e58ed-4477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:71:56:f5:04:c5:06:0d:fe:d3:1a:b3:28: 49:14:f1:3c:58:fa:9e:d5:4a:fa:7d:5f:fd:5c:f0: 8f:22:03:59:b9:b4:da:2f:41:ba:15:da:71:98:0d: 6c:65:37:07:a0:ba:9c:f8:3a:75:9e:34:83:43:39: 74:60:83:30:8c:88:73:7d:04:65:37:23:74:92:39: 16:be:16:1c:83:0f:2d:c5:62:dc:4e:37:49:d4:6d: 7e:7f:cb:2f:53:7d:34:8c:e1:55:99:3b:4b:7e:a5: 20:b4:95:01:f4:78:a0:a3:70:46:3e:a3:e5:7b:c5: 9b:ae:ea:7d:45:1d:e7:da:4b:f3:c9:c2:9b:91:2b: c7:de:d8:d5:69:d2:b4:f4:25:30:89:88:de:7a:0e: 43:e6:2e:45:55:c2:0b:87:a9:4a:1e:76:09:cd:f0: a4:96:7a:fa:97:01:78:28:47:84:21:8b:f2:e5:63: 78:fe:ce:cf:0f:4d:09:5d:7d:fc:5f:83:4e:d9:86: ae:fa:84:7f:8c:79:3b:20:9e:5e:8f:7f:60:ab:70: 08:39:97:cd:b2:93:34:23:9a:78:ba:89:7c:f2:c4: d4:d3:d6:79:4f:3a:41:6b:e9:ef:5c:2f:fb:44:76: b7:c8:3d:4a:d3:ae:56:3e:71:4d:a5:d8:b3:72:90: d8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DF:AF:4A:DE:E4:CD:37:08:E5:C2:0B:36:E8:82:95:D4:AA:17:B9 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:be:e3:df:b2:03:ff:1f:93:aa:45:95:91:71:77:11:cb:9d: 91:43:5f:82:4a:65:00:64:69:04:05:77:be:27:b4:be:d1:73: e6:8d:08:4e:a6:ab:6f:4d:5d:db:c4:13:6b:a2:d4:35:5b:95: cd:1f:24:47:f7:ba:a9:24:99:6b:01:7b:f1:af:ce:c7:a4:96: 0b:db:21:14:1f:a8:39:38:b2:68:2b:ca:aa:9b:ab:2c:01:5a: 3b:7a:c2:61:ea:5e:68:d3:c8:4a:2b:51:54:6f:25:e7:30:5a: 17:25:78:97:a6:eb:18:69:1a:28:a3:fd:56:ee:d1:44:e6:32: 3d:c7:4c:35:5e:a3:09:ac:29:c7:9f:64:54:72:b3:ea:6a:84: 7f:dc:ab:b3:48:d0:d4:93:d4:cc:99:55:37:2e:07:0c:49:3b: 7e:fc:89:73:70:7d:50:be:8b:e2:5f:c1:be:8c:97:f6:02:45: b8:c5:9b:83:d9:16:b2:85:31:1b:13:d8:e6:b1:0b:af:9b:d4: 2d:83:50:f7:4a:4f:98:bb:4f:9c:74:aa:88:94:c3:96:bd:e1: be:5d:9f:ef:21:2b:cc:9a:a0:ad:9c:76:7c:c0:d5:0c:0f:a9: ad:e6:f2:ec:5c:bf:fd:a1:0d:54:e0:ca:32:a4:74:52:e8:8f: 94:c0:19:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjQxMTIwMjE0NzI1WhcNMjQxMTI3MjE0NzI1WjAYMRYwFAYD VQQDEw02NzNlNThlZC00NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9NxVvUExQYN/tMasyhJFPE8WPqe1Ur6fV/9XPCPIgNZubTaL0G6FdpxmA1s ZTcHoLqc+Dp1njSDQzl0YIMwjIhzfQRlNyN0kjkWvhYcgw8txWLcTjdJ1G1+f8sv U300jOFVmTtLfqUgtJUB9Higo3BGPqPle8Wbrup9RR3n2kvzycKbkSvH3tjVadK0 9CUwiYjeeg5D5i5FVcILh6lKHnYJzfCklnr6lwF4KEeEIYvy5WN4/s7PD00JXX38 X4NO2Yau+oR/jHk7IJ5ej39gq3AIOZfNspM0I5p4uol88sTU09Z5TzpBa+nvXC/7 RHa3yD1K065WPnFNpdizcpDYQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIffr0re 5M03COXCCzbogpXUqhe5MB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5vuPfsgP/H5OqRZWRcXcRy52RQ1+CSmUAZGkEBXe+J7S+0XPmjQhO pqtvTV3bxBNrotQ1W5XNHyRH97qpJJlrAXvxr87HpJYL2yEUH6g5OLJoK8qqm6ss AVo7esJh6l5o08hKK1FUbyXnMFoXJXiXpusYaRooo/1W7tFE5jI9x0w1XqMJrCnH n2RUcrPqaoR/3KuzSNDUk9TMmVU3LgcMSTt+/IlzcH1QvoviX8G+jJf2AkW4xZuD 2RayhTEbE9jmsQuvm9Qtg1D3Sk+Yu0+cdKqIlMOWveG+XZ/vISvMmqCtnHZ8wNUM D6mt5vLsXL/9oQ1U4MoypHRS6I+UwBmH -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:40 2024 by rpki-client on console-ams.rpki-client.org