$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: sBmC47sBTuV7JWlQ7l++20remaCPGdlouqRfKigt55Q= Subject key identifier: C9:5B:1B:99:A5:3C:DE:F8:94:C5:A7:C5:6D:38:54:4A:58:5E:6A:E7 Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 23BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 23A9 Signing time: Sun 24 Nov 2024 15:44:05 +0000 Manifest this update: Sun 24 Nov 2024 15:44:05 +0000 Manifest next update: Sun 01 Dec 2024 15:44:05 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: 3lpm8uPb+bw0Uje+OrrO5SidTDQ3qFrqXALEzYCg8cI=) 2: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: 4loc4urPVQS5L/hzKU13Pxjs5//WgdnLbBjxon1o65M=) 3: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: Mt0fQZWhWQhdOjSfwp4ovls7hDEd5rk64993ERty+U0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9148 (0x23bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: Nov 24 15:44:05 2024 GMT Not After : Dec 1 15:44:05 2024 GMT Subject: CN=674349c5-87e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:1b:4c:95:6d:12:b8:a2:26:37:1f:33:54: 70:ac:10:b7:f4:7e:88:39:1d:9a:83:32:d2:89:42: 2f:f2:d0:43:31:6b:07:8b:c1:45:ca:15:ca:a6:f2: 35:91:83:29:7e:15:a3:04:10:18:b9:37:a7:79:e9: cb:37:d2:b7:48:e2:6a:20:7e:b0:4f:5b:ae:1e:b0: 8c:93:cc:15:24:bf:08:58:df:b0:24:d0:ce:c1:cd: 54:ae:94:80:f8:cd:bd:43:3b:55:4e:6e:d7:62:6e: 91:31:33:f7:aa:66:02:d5:b5:8b:cf:33:1a:1a:6e: e3:a0:22:d7:04:df:fc:5d:d8:1e:43:13:f9:63:9b: 13:04:60:f0:a6:6b:c4:26:8e:55:4d:ac:5f:4e:b0: 0e:78:e7:dc:a5:5c:c0:5f:35:80:9d:4c:c1:57:f3: ca:15:95:f3:a2:1c:b0:15:e9:ff:26:8e:44:da:57: 07:09:ac:a0:c7:45:1a:c2:f1:09:b8:31:c3:d4:2e: 08:cd:e2:c9:f1:f1:1e:7b:00:d4:be:3d:92:6f:6b: 19:38:53:88:5c:39:96:61:2a:f6:ad:3f:d6:63:b2: 78:97:2e:9e:71:5a:f2:c5:0a:95:c2:f6:89:58:4c: 9c:05:f6:a8:0b:37:0b:76:59:ba:6b:cd:6a:00:fb: c3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5B:1B:99:A5:3C:DE:F8:94:C5:A7:C5:6D:38:54:4A:58:5E:6A:E7 X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:6f:1b:36:23:78:cb:f1:2a:59:cf:0a:fa:0f:16:27:c2:79: f0:96:b9:2d:e7:40:9f:a2:c6:19:25:56:36:d8:53:af:d9:50: 8a:95:c7:10:f3:98:3b:a1:eb:8a:58:81:4f:b9:42:f3:3d:be: b4:33:90:5b:b2:ad:8d:a1:dc:9d:f5:ba:a5:3d:37:cd:f1:d5: bd:cf:4c:e4:6c:e0:ab:e8:92:c5:1b:cb:28:85:8e:66:46:23: 77:60:1a:f1:ee:06:b7:f2:54:27:09:8b:f0:76:02:f2:dc:91: f0:41:b4:c3:33:3e:2d:87:47:aa:e1:de:20:bb:47:c5:a8:b4: 0e:e4:1b:2f:50:06:b7:b0:63:a8:fb:8a:6e:8a:6e:44:53:0e: 06:03:2a:7f:72:3f:91:47:51:24:ae:84:a5:a1:17:9a:e0:c7: e6:b8:ae:1f:52:fe:51:1e:23:cd:08:ce:a4:27:69:f3:8a:43: d7:7d:12:31:82:e6:cc:6a:8b:24:2e:cd:30:67:94:b2:0c:f7: 40:2a:69:13:13:84:2d:98:85:d0:93:4f:d0:26:3f:38:f1:b9: 19:c8:03:fe:14:7e:cc:1b:93:6c:14:3b:6e:22:cc:8c:d7:f7: f5:db:00:8e:05:fb:5c:4b:db:ef:98:90:1a:d3:4a:d1:42:a8: 48:0d:d6:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjQxMTI0MTU0NDA1WhcNMjQxMjAxMTU0NDA1WjAYMRYwFAYD VQQDEw02NzQzNDljNS04N2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAEbTJVtEriiJjcfM1RwrBC39H6IOR2agzLSiUIv8tBDMWsHi8FFyhXKpvI1 kYMpfhWjBBAYuTeneenLN9K3SOJqIH6wT1uuHrCMk8wVJL8IWN+wJNDOwc1UrpSA +M29QztVTm7XYm6RMTP3qmYC1bWLzzMaGm7joCLXBN/8XdgeQxP5Y5sTBGDwpmvE Jo5VTaxfTrAOeOfcpVzAXzWAnUzBV/PKFZXzohywFen/Jo5E2lcHCaygx0UawvEJ uDHD1C4IzeLJ8fEeewDUvj2Sb2sZOFOIXDmWYSr2rT/WY7J4ly6ecVryxQqVwvaJ WEycBfaoCzcLdlm6a81qAPvD6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlbG5ml PN74lMWnxW04VEpYXmrnMB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2bxs2I3jL8SpZzwr6DxYnwnnwlrkt50CfosYZJVY22FOv2VCKlccQ 85g7oeuKWIFPuULzPb60M5Bbsq2Nodyd9bqlPTfN8dW9z0zkbOCr6JLFG8sohY5m RiN3YBrx7ga38lQnCYvwdgLy3JHwQbTDMz4th0eq4d4gu0fFqLQO5BsvUAa3sGOo +4puim5EUw4GAyp/cj+RR1EkroSloRea4MfmuK4fUv5RHiPNCM6kJ2nzikPXfRIx gubMaoskLs0wZ5SyDPdAKmkTE4QtmIXQk0/QJj848bkZyAP+FH7MG5NsFDtuIsyM 1/f12wCOBftcS9vvmJAa00rRQqhIDdb2 -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:13 2024 by rpki-client on console-ams.rpki-client.org