$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: BTPLBVus0CzVJl0fT5RBoIR5VjlPH1Mji6wHmW6tMOs= Subject key identifier: 93:2B:DD:86:DC:87:94:98:93:27:5B:F7:EA:4E:D8:E2:45:F1:4E:6E Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 011D Signing time: Thu 21 Nov 2024 03:01:31 +0000 Manifest this update: Thu 21 Nov 2024 03:01:31 +0000 Manifest next update: Thu 28 Nov 2024 03:01:31 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: JtYkFo0T2ylcPQSwfc9PawJgbvoiPUJNPQXjNW/es6s=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: njuB7hJQ60BQw/nGmHlQPAo11VYWgVEP9FYZsEsvOz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Nov 21 03:01:31 2024 GMT Not After : Nov 28 03:01:31 2024 GMT Subject: CN=673ea28b-8fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:55:13:e9:fa:8a:99:da:58:e4:60:6a:ae:8f: 7e:09:cd:7b:44:2e:d8:83:48:cf:21:bd:46:d7:1f: d4:33:da:d7:2a:be:af:fb:31:8d:dc:a9:6a:5a:50: 24:6c:d3:f6:f0:0f:63:2f:49:8f:65:e9:78:de:1a: ef:fe:9a:ad:69:a1:15:53:ba:bf:16:cd:c4:9f:4b: c1:5a:de:33:a3:1e:14:2e:3b:a6:27:b7:8a:7a:ed: 8a:56:7d:30:83:ba:b3:ff:ae:d8:11:e5:a1:43:f9: 5a:43:9e:f6:b8:49:27:d6:e7:3a:d7:1a:d3:59:35: 92:15:85:5d:46:15:7c:68:89:2a:a2:cd:6f:eb:03: 4a:5a:76:53:3c:41:81:a6:1b:ed:5b:18:be:a7:93: 22:17:96:72:48:75:23:5a:9c:84:7d:15:16:cc:56: 57:e9:a4:23:d2:fa:38:59:a5:9d:00:fd:aa:78:48: 62:56:82:b0:21:d0:8f:5e:c4:21:be:1f:10:b2:a2: cf:62:3c:b3:cf:0a:87:98:01:fb:8a:52:e5:75:19: 33:51:ec:e9:e2:8b:5f:36:78:bc:39:38:98:28:e0: 11:5f:20:8a:ca:8e:e4:b4:67:84:a7:c5:61:8e:21: 50:7e:b1:64:e8:e1:00:54:5c:d5:c5:0f:ba:24:63: ba:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2B:DD:86:DC:87:94:98:93:27:5B:F7:EA:4E:D8:E2:45:F1:4E:6E X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:c8:2a:6b:1c:0d:8e:7b:da:73:38:48:a9:18:c7:20:ec:29: 1d:e9:57:e5:1d:fc:d5:93:e7:66:b9:be:1c:a0:f0:62:28:2e: cb:25:b5:71:da:19:2b:9d:fd:1e:d9:62:be:b9:08:7d:6f:9e: 4c:a1:9c:88:09:3e:e7:6c:0a:12:af:ea:a3:f2:84:17:5c:4d: ce:86:50:b6:b7:16:37:ef:44:b1:dd:6a:91:9c:fd:19:b8:69: f0:98:e2:c9:36:5e:96:4f:da:6a:ff:19:55:be:a8:4b:40:d1: 32:e0:8f:4d:04:82:a5:4a:1b:f8:06:f6:fd:4a:f3:22:c2:8f: 11:dc:eb:b8:65:44:df:93:4a:98:aa:b2:24:18:a9:5d:d0:ac: 49:36:c3:8d:fe:14:a9:c2:8b:b5:87:5d:02:c8:9d:0e:ba:76: a8:f7:10:e3:67:40:40:2e:90:6c:bb:da:75:e9:e3:00:0d:f9: ca:50:56:ad:e0:96:ac:4a:dc:34:69:dd:da:f6:1c:bf:3a:88: c2:ac:f3:8a:5b:a8:d1:83:1b:ed:56:48:3a:a0:b8:53:3b:08: c2:3c:65:16:72:1b:02:3f:ac:b2:30:6c:ee:d7:b9:fe:14:4d: ad:4f:b1:d8:87:40:e5:d8:cd:b8:06:31:d7:df:0f:54:c4:2d: 95:a8:06:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjQxMTIxMDMwMTMxWhcNMjQxMTI4MDMwMTMxWjAYMRYwFAYD VQQDEw02NzNlYTI4Yi04ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVUT6fqKmdpY5GBqro9+Cc17RC7Yg0jPIb1G1x/UM9rXKr6v+zGN3KlqWlAk bNP28A9jL0mPZel43hrv/pqtaaEVU7q/Fs3En0vBWt4zox4ULjumJ7eKeu2KVn0w g7qz/67YEeWhQ/laQ572uEkn1uc61xrTWTWSFYVdRhV8aIkqos1v6wNKWnZTPEGB phvtWxi+p5MiF5ZySHUjWpyEfRUWzFZX6aQj0vo4WaWdAP2qeEhiVoKwIdCPXsQh vh8QsqLPYjyzzwqHmAH7ilLldRkzUezp4otfNni8OTiYKOARXyCKyo7ktGeEp8Vh jiFQfrFk6OEAVFzVxQ+6JGO6WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMr3Ybc h5SYkydb9+pO2OJF8U5uMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPyCprHA2Oe9pzOEipGMcg7Ckd6VflHfzVk+dmub4coPBiKC7LJbVx 2hkrnf0e2WK+uQh9b55MoZyICT7nbAoSr+qj8oQXXE3OhlC2txY370Sx3WqRnP0Z uGnwmOLJNl6WT9pq/xlVvqhLQNEy4I9NBIKlShv4Bvb9SvMiwo8R3Ou4ZUTfk0qY qrIkGKld0KxJNsON/hSpwou1h10CyJ0Ounao9xDjZ0BALpBsu9p16eMADfnKUFat 4JasStw0ad3a9hy/OojCrPOKW6jRgxvtVkg6oLhTOwjCPGUWchsCP6yyMGzu17n+ FE2tT7HYh0Dl2M24BjHX3w9UxC2VqAZ8 -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org