$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: hRKNcyyaMtdCs0PVuphfMO8eFYCKeMyE0MAjTEPyr2g= Subject key identifier: 31:2D:0B:16:FD:BB:01:95:51:C1:2C:DD:E6:DA:09:B5:20:29:21:E1 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 054B Signing time: Wed 20 Nov 2024 23:00:32 +0000 Manifest this update: Wed 20 Nov 2024 23:00:31 +0000 Manifest next update: Wed 27 Nov 2024 23:00:31 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: OWYVW7B3au5SWhA1Qs6RIbnRqLrpDot3cKPuJuaJssI=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: lCYYN1i9IbJqwRctgnEOzzG7AOe1LHSeBCWruRPnC40=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: 8IJ4hd5hgtTMjRCQeFaMZGfRaNHjTczEG5GeSYDk6qI=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: ZotghGiuMfOw+s3uuTOdkshmDTpBWNWmcIBqIc4IVro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Nov 20 23:00:31 2024 GMT Not After : Nov 27 23:00:31 2024 GMT Subject: CN=673e6a0f-7bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:eb:12:5e:78:fc:e5:f2:40:51:73:ee:07:41: 68:04:6e:35:23:bd:88:69:94:c1:3f:ae:08:df:76: 4b:d3:a4:45:c5:71:22:ff:50:6e:ee:e3:e0:c6:55: 87:8d:de:bf:24:7f:37:06:bb:e7:35:9c:a8:f6:ee: d6:6f:6b:cb:12:ec:bc:f6:f3:ed:a8:f8:a2:6a:cd: 21:d4:d6:1e:d9:91:6d:bc:a5:fc:a7:e9:07:b3:38: 65:6b:1d:12:bd:0b:85:42:55:c8:b2:81:96:20:d0: 92:35:29:3c:9a:34:f0:fc:b8:0f:9c:39:c5:62:8b: 49:ee:34:6e:c5:e4:5f:50:80:e0:c6:11:db:1a:3e: 8a:00:bc:2b:46:5e:26:c6:74:3d:19:bc:d1:b6:79: a1:bd:bd:eb:c0:d4:c6:52:6d:dc:5d:d3:9f:c8:a6: 1a:41:c8:51:b9:64:52:30:bb:94:0c:fa:40:69:99: a6:5d:d6:ef:d1:67:22:7c:47:2f:7e:84:b8:0b:fc: 2a:da:d0:07:39:2a:ec:34:87:83:4a:c5:30:9e:68: 0c:f6:52:22:2e:9a:87:f0:e1:65:f2:59:76:d3:fa: db:5f:0d:0d:fd:ea:15:33:68:88:08:82:87:72:79: 87:b4:44:bb:44:c2:0e:ad:0a:db:b7:fd:fe:cb:26: 45:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2D:0B:16:FD:BB:01:95:51:C1:2C:DD:E6:DA:09:B5:20:29:21:E1 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b6:4f:6f:cf:5b:f6:39:2c:e9:16:da:18:d7:ce:21:2d:e6: 28:1b:39:f3:95:ba:b2:7d:a5:fa:65:e9:ba:9a:62:b3:8d:01: 84:a0:53:98:63:4a:9e:eb:11:0d:fe:7a:58:17:05:ab:d4:ac: be:e3:ce:a6:54:0f:01:46:27:89:fc:6e:83:7c:5e:cb:e2:4c: dc:0e:53:c6:b6:d4:47:39:d2:0a:27:15:9f:5e:57:6e:94:c9: 15:37:23:b9:06:6e:81:62:c4:7d:45:fc:3c:8e:30:7c:47:67: a6:aa:78:7d:c5:17:29:40:24:17:4b:98:f6:f0:65:0d:3f:13: c1:8d:ae:bf:29:5a:21:00:85:4c:51:99:7d:2a:ee:50:19:a7: 38:21:a7:90:48:46:85:c0:f7:38:26:31:f9:9c:05:e0:1e:9a: eb:88:5e:54:44:97:52:c0:01:47:66:25:26:e5:3d:14:ce:53: b3:35:5e:02:a2:0c:58:06:e5:ac:a5:04:83:b4:ff:4c:8d:22: e5:cb:a5:7c:f5:c2:c2:a0:23:bf:ed:58:99:eb:38:06:00:fd: 3e:5a:f3:eb:ad:24:52:9b:bd:ab:45:be:8b:fa:da:de:18:ef: f3:f4:fe:75:e6:60:f7:ad:7d:3f:c2:07:55:80:26:6d:0e:bd: 4a:7c:96:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjQxMTIwMjMwMDMxWhcNMjQxMTI3MjMwMDMxWjAYMRYwFAYD VQQDEw02NzNlNmEwZi03YmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OsSXnj85fJAUXPuB0FoBG41I72IaZTBP64I33ZL06RFxXEi/1Bu7uPgxlWH jd6/JH83BrvnNZyo9u7Wb2vLEuy89vPtqPiias0h1NYe2ZFtvKX8p+kHszhlax0S vQuFQlXIsoGWINCSNSk8mjTw/LgPnDnFYotJ7jRuxeRfUIDgxhHbGj6KALwrRl4m xnQ9GbzRtnmhvb3rwNTGUm3cXdOfyKYaQchRuWRSMLuUDPpAaZmmXdbv0WcifEcv foS4C/wq2tAHOSrsNIeDSsUwnmgM9lIiLpqH8OFl8ll20/rbXw0N/eoVM2iICIKH cnmHtES7RMIOrQrbt/3+yyZFaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEtCxb9 uwGVUcEs3ebaCbUgKSHhMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdtk9vz1v2OSzpFtoY184hLeYoGznzlbqyfaX6Zem6mmKzjQGEoFOY Y0qe6xEN/npYFwWr1Ky+486mVA8BRieJ/G6DfF7L4kzcDlPGttRHOdIKJxWfXldu lMkVNyO5Bm6BYsR9Rfw8jjB8R2emqnh9xRcpQCQXS5j28GUNPxPBja6/KVohAIVM UZl9Ku5QGac4IaeQSEaFwPc4JjH5nAXgHprriF5URJdSwAFHZiUm5T0UzlOzNV4C ogxYBuWspQSDtP9MjSLly6V89cLCoCO/7ViZ6zgGAP0+WvPrrSRSm72rRb6L+tre GO/z9P515mD3rX0/wgdVgCZtDr1KfJZY -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:40 2024 by rpki-client on console-ams.rpki-client.org