$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: 5DPbJ0eEuSusFurkHIoSNwHLF5mfKHFgng2RF4tI9HA= Subject key identifier: 53:E0:5E:E3:54:69:64:C8:82:95:F3:3D:4D:77:F2:E6:60:D5:F6:56 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0D58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0C70 Signing time: Wed 20 Nov 2024 19:01:25 +0000 Manifest this update: Wed 20 Nov 2024 19:01:24 +0000 Manifest next update: Wed 27 Nov 2024 19:01:24 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: 6MgF8XKXo5kWfqogjsDeIiMzbD9I5Kn782+Mx05BvB4=) 2: 2DD04222580811EBB9B04151C4F9AE02.roa (hash: LlirCrfz9233EgQlAO+RsPq4rbIJTSEJEKQrdl8eWPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3416 (0xd58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Nov 20 19:01:24 2024 GMT Not After : Nov 27 19:01:24 2024 GMT Subject: CN=673e3204-86b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:62:e1:8f:a7:63:a0:59:0e:5d:e7:47:f0:9e: 2a:8d:b2:56:30:dd:0a:dc:77:55:4c:5d:ab:b5:22: 4d:dd:87:48:08:be:f9:fc:91:36:b5:01:ea:bb:ce: 84:5b:6e:1c:6c:83:ef:18:a8:62:15:f2:77:d1:5a: 14:c4:a0:b0:e0:6a:12:92:34:8b:ad:8c:5d:8a:ba: 7a:59:c4:d0:95:7e:5d:84:a6:68:e4:70:3d:9c:2f: 9a:00:6a:28:fd:e0:b9:18:f4:04:37:d0:29:8c:5f: 38:f1:6a:20:41:c2:c3:e3:59:47:35:cf:46:86:5f: 1a:d6:da:96:05:a8:88:c5:00:c1:6c:49:94:8f:e8: cb:f6:a2:63:29:65:6b:d4:fe:d4:89:81:c9:4f:b7: 11:45:55:bd:5c:8d:9b:39:d3:cf:5f:65:58:20:f4: 8c:2b:8a:5c:9c:16:b2:e3:ce:61:29:1e:c2:c9:73: a7:25:6b:46:f8:12:e1:56:9f:30:96:e7:8c:a4:b7: 16:2f:f7:33:b7:fe:c0:0f:71:f8:18:9a:83:bf:0a: ce:29:aa:2a:cb:68:66:71:4b:79:ea:b4:fa:4c:98: 10:1c:8f:66:cf:43:e9:1a:03:40:a8:e0:b6:ce:c0: c0:68:e6:c3:e8:37:d5:56:ae:6f:7a:77:63:fb:ba: 57:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E0:5E:E3:54:69:64:C8:82:95:F3:3D:4D:77:F2:E6:60:D5:F6:56 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:14:e2:8d:bf:00:4d:8f:a9:a1:74:4c:1d:90:a7:d9:f5:41: 03:50:56:0e:af:6e:a4:1a:58:6a:ca:58:40:92:b7:cf:08:c9: 91:e4:c4:ca:a1:43:92:ab:b6:b3:20:36:d2:53:94:c0:92:61: 40:8f:b2:a1:48:f7:f6:ba:1b:04:e4:c2:f0:c6:63:08:de:09: 51:21:25:0e:bd:a5:99:f3:d2:60:5f:62:d6:4c:49:e0:9f:0b: 41:e4:7f:7e:f0:65:b7:54:59:37:f3:8a:a5:6e:b2:d5:b6:2f: e4:25:d1:0f:ef:ea:ae:3f:01:23:72:93:db:bd:8b:36:92:fc: 7b:19:53:53:dd:07:60:62:f5:c7:9c:0a:d2:5f:93:05:53:5d: fb:48:7a:c0:ac:69:86:8d:ee:85:7b:18:60:24:27:7a:6e:87: f4:e5:85:b6:b8:fa:33:48:e6:da:60:9e:00:e6:2e:e7:9a:d4: 7d:86:eb:12:88:49:d9:51:c7:24:9c:cd:07:07:5d:7f:26:b2: c4:e8:5f:87:4d:c7:0f:fc:14:ab:c0:69:45:5d:75:10:5a:e6: 34:41:46:7d:85:7f:f4:aa:17:5f:be:70:71:3b:57:61:35:fb: 7d:df:34:f9:6d:7a:2e:2a:a6:9e:9d:36:25:78:5e:76:e9:c7: ce:f7:b7:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjQxMTIwMTkwMTI0WhcNMjQxMTI3MTkwMTI0WjAYMRYwFAYD VQQDEw02NzNlMzIwNC04NmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGLhj6djoFkOXedH8J4qjbJWMN0K3HdVTF2rtSJN3YdICL75/JE2tQHqu86E W24cbIPvGKhiFfJ30VoUxKCw4GoSkjSLrYxdirp6WcTQlX5dhKZo5HA9nC+aAGoo /eC5GPQEN9ApjF848WogQcLD41lHNc9Ghl8a1tqWBaiIxQDBbEmUj+jL9qJjKWVr 1P7UiYHJT7cRRVW9XI2bOdPPX2VYIPSMK4pcnBay485hKR7CyXOnJWtG+BLhVp8w lueMpLcWL/czt/7AD3H4GJqDvwrOKaoqy2hmcUt56rT6TJgQHI9mz0PpGgNAqOC2 zsDAaObD6DfVVq5vendj+7pXkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPgXuNU aWTIgpXzPU138uZg1fZWMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFOKNvwBNj6mhdEwdkKfZ9UEDUFYOr26kGlhqylhAkrfPCMmR5MTK oUOSq7azIDbSU5TAkmFAj7KhSPf2uhsE5MLwxmMI3glRISUOvaWZ89JgX2LWTEng nwtB5H9+8GW3VFk384qlbrLVti/kJdEP7+quPwEjcpPbvYs2kvx7GVNT3QdgYvXH nArSX5MFU137SHrArGmGje6FexhgJCd6bof05YW2uPozSObaYJ4A5i7nmtR9husS iEnZUccknM0HB11/JrLE6F+HTccP/BSrwGlFXXUQWuY0QUZ9hX/0qhdfvnBxO1dh Nft93zT5bXouKqaenTYleF526cfO97dC -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org