$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: k1ZYwlzjHZMk3qJFhkiXpDydZceLjd4XngREjsV5xnE= Subject key identifier: 22:8A:D9:35:D6:73:E6:3D:67:4D:00:62:93:6C:B8:2A:D8:C5:9A:9C Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 02D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 02D0 Signing time: Sat 23 Nov 2024 00:57:02 +0000 Manifest this update: Sat 23 Nov 2024 00:57:01 +0000 Manifest next update: Sat 30 Nov 2024 00:57:01 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: 0TpRQQOOyAAdkrmwQNOQcx1Dj6RSrl09reKH/6ybWiM=) 2: 5E979F10C6C811ECA5A9AB33C4F9AE02.roa (hash: hZ1F/54EU32b4+tOv1jdpwsQTgq+Rgy859FLjmzADU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Nov 23 00:57:01 2024 GMT Not After : Nov 30 00:57:01 2024 GMT Subject: CN=6741285e-328b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:55:ea:96:b0:38:7d:42:28:40:b4:a7:ce: 02:2e:44:1a:df:f8:77:73:b8:3c:8f:96:a7:a1:83: 8e:96:6e:20:36:e1:90:64:29:f2:a5:c7:56:4e:6f: 01:7a:1b:17:18:59:e3:c4:f6:d7:df:e0:c3:00:3f: c9:40:43:62:b0:28:22:f4:f9:2d:ac:45:50:cf:01: 2a:d8:82:0f:2a:f1:df:92:dc:7f:04:d5:99:fd:a5: 89:33:e1:09:f5:f7:48:3d:0b:c5:a6:da:d9:35:63: bd:e3:7d:26:78:33:a7:a3:8c:1e:c5:12:2f:54:16: e8:9c:e6:c1:34:f4:a2:e5:31:e8:7f:47:3f:0d:56: 4a:7d:7c:6b:ee:49:3e:ee:56:36:99:77:7e:20:6b: 35:c8:54:b9:b4:42:79:04:c9:a7:b9:ec:c9:a6:ef: ab:7d:36:8a:67:a9:25:6e:94:d4:f5:a6:ae:55:41: c6:a4:cd:8d:bb:d7:7e:48:a4:23:c6:55:d8:6b:cf: c9:e1:5d:0d:6e:a4:ac:d6:9d:7d:27:78:38:0c:98: dd:5c:41:63:67:c6:14:59:b0:5a:b3:0e:0d:af:45: 20:61:61:84:24:76:ab:5e:81:2f:70:67:2f:47:24: 06:81:ef:48:3a:d6:5a:12:58:55:1d:b8:b7:84:d4: eb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8A:D9:35:D6:73:E6:3D:67:4D:00:62:93:6C:B8:2A:D8:C5:9A:9C X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ef:f6:f4:15:b7:87:52:74:14:43:17:4f:3a:7a:25:43:db: 91:48:32:22:1a:ae:00:13:7b:da:3c:a0:00:82:b1:97:08:f4: 3c:9a:e8:d3:75:19:97:90:30:d8:42:e2:45:a5:81:3e:77:50: fb:b2:3f:15:ce:62:03:bd:7b:9f:4a:71:06:d3:ec:b3:10:57: c5:72:3f:67:c4:53:ce:62:75:46:80:16:ef:fd:e8:55:06:9d: a2:4c:d2:32:9e:72:90:0d:7c:04:91:d6:ff:0c:12:34:e1:d2: df:8a:21:cc:d1:d0:e3:c3:0c:8a:d2:80:04:7d:95:f3:78:c1: 1c:e6:81:d9:03:e4:2a:5a:03:7a:5f:95:ff:79:c8:99:a4:00: 4e:10:93:89:67:04:ff:69:7d:d5:f3:65:a7:fb:fb:46:f5:74: de:2e:a4:5d:74:f3:35:21:df:03:a0:af:4c:df:b3:87:63:ec: 69:33:20:d7:1d:4f:74:93:15:6a:22:5a:b2:22:41:79:17:89: 57:bd:9d:66:0b:33:9d:0d:ba:cf:e1:23:c9:ac:d6:d3:96:27: f8:ba:4d:f0:81:c7:d6:65:ac:44:01:38:1f:cc:02:a9:b5:41: 4b:7e:f4:3b:e4:84:b6:3c:58:67:d7:54:28:f3:8e:8f:c5:94: c2:d2:33:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjQxMTIzMDA1NzAxWhcNMjQxMTMwMDA1NzAxWjAYMRYwFAYD VQQDEw02NzQxMjg1ZS0zMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuclV6pawOH1CKEC0p84CLkQa3/h3c7g8j5anoYOOlm4gNuGQZCnypcdWTm8B ehsXGFnjxPbX3+DDAD/JQENisCgi9PktrEVQzwEq2IIPKvHfktx/BNWZ/aWJM+EJ 9fdIPQvFptrZNWO9430meDOno4wexRIvVBbonObBNPSi5THof0c/DVZKfXxr7kk+ 7lY2mXd+IGs1yFS5tEJ5BMmnuezJpu+rfTaKZ6klbpTU9aauVUHGpM2Nu9d+SKQj xlXYa8/J4V0NbqSs1p19J3g4DJjdXEFjZ8YUWbBasw4Nr0UgYWGEJHarXoEvcGcv RyQGge9IOtZaElhVHbi3hNTr1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKK2TXW c+Y9Z00AYpNsuCrYxZqcMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe7/b0FbeHUnQUQxdPOnolQ9uRSDIiGq4AE3vaPKAAgrGXCPQ8mujT dRmXkDDYQuJFpYE+d1D7sj8VzmIDvXufSnEG0+yzEFfFcj9nxFPOYnVGgBbv/ehV Bp2iTNIynnKQDXwEkdb/DBI04dLfiiHM0dDjwwyK0oAEfZXzeMEc5oHZA+QqWgN6 X5X/eciZpABOEJOJZwT/aX3V82Wn+/tG9XTeLqRddPM1Id8DoK9M37OHY+xpMyDX HU90kxVqIlqyIkF5F4lXvZ1mCzOdDbrP4SPJrNbTlif4uk3wgcfWZaxEATgfzAKp tUFLfvQ75IS2PFhn11Qo846PxZTC0jO/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:41 2024 by rpki-client on console-ams.rpki-client.org