$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: dRH2lTd3FPDMP300Or6wAg2zqgAYCWH4PilpWQ5MWS4= Subject key identifier: 7D:7D:56:6E:BC:E7:B7:54:A5:C6:06:76:AB:16:95:84:36:80:70:F3 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: CD Signing time: Sat 23 Nov 2024 03:47:42 +0000 Manifest this update: Sat 23 Nov 2024 03:47:42 +0000 Manifest next update: Sat 30 Nov 2024 03:47:42 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: 3cI15a+aulVWgr5nGTqBceGQstNRHLsZh/M46VzcSr0=) 2: 8CB011646DAE11EE809B1717C4F9AE02.roa (hash: rgSFqdLyx15HASP0FdZAWkfSNryT0iBC4HGltEel0XI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Nov 23 03:47:42 2024 GMT Not After : Nov 30 03:47:42 2024 GMT Subject: CN=6741505e-1f91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:54:cf:80:cb:1e:94:28:ae:e1:9e:1f:45: 41:2a:8e:96:16:a1:15:68:6a:29:57:cd:6c:d0:2a: f2:65:30:1b:d9:65:34:40:db:61:9b:e5:6c:a9:01: 90:97:13:e2:1a:6c:ae:e2:0d:99:21:cd:78:bc:1b: c1:ad:10:dc:2b:6c:be:ed:46:37:4d:cb:e6:db:8a: ac:11:22:0c:f1:02:f9:3d:15:54:d3:6d:61:f8:f5: 71:28:29:a6:45:18:3f:1d:d5:73:10:8d:d9:63:68: 9d:aa:08:49:b3:89:57:7e:b4:12:af:8c:47:40:67: e2:99:ba:58:5f:59:02:89:99:b1:fa:8a:c7:42:52: 7b:d4:0a:fd:34:6d:4f:b4:d1:43:27:cb:30:7f:31: a3:dd:af:b0:06:3e:c7:38:c1:bc:9b:03:55:86:fd: fa:88:c0:4d:d2:60:80:45:02:81:c4:1a:48:17:b9: e1:e1:4a:b0:aa:d2:39:81:08:c6:1d:ba:23:98:d8: e5:84:70:04:71:d3:ae:24:25:3a:9c:d9:b4:a7:c4: 15:b6:ad:45:51:18:03:20:8e:d1:da:c2:99:04:74: 2f:d9:55:e6:2d:a5:43:d1:89:bf:bc:7f:8c:2f:df: e9:7b:11:3c:ca:72:be:7f:27:65:a3:2b:75:4f:c2: b0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7D:56:6E:BC:E7:B7:54:A5:C6:06:76:AB:16:95:84:36:80:70:F3 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:87:34:ed:29:e4:e4:c9:bb:95:3f:71:10:d4:67:66:fa:4c: c4:0a:2f:41:59:c1:8c:b9:80:90:0f:72:d3:7f:51:da:cf:d0: f5:f5:72:c5:b4:2f:ae:bf:6f:b0:30:97:fd:ee:80:1b:7e:87: d8:7d:f5:ac:f7:6e:ff:c3:a4:e6:1d:8c:39:16:1c:46:48:ee: be:55:e6:e6:cd:73:cc:e8:7e:f2:76:ab:67:83:11:14:40:96: 6c:e2:5f:e4:de:d3:19:b9:69:11:66:d1:d5:8e:90:24:c9:1d: f1:d6:fe:d6:7f:37:5a:3f:83:85:aa:8c:3a:36:49:c8:6b:31: 4d:98:f9:3c:c3:88:27:be:59:07:49:af:9b:1a:1b:d3:6c:1c: 7c:b7:99:46:ec:85:f9:41:a0:c5:2e:a1:f0:e8:d0:4e:57:52: 80:94:0e:7b:33:6c:1e:6b:92:47:a3:75:40:d0:69:0f:de:52: 8a:c8:af:75:50:58:72:9b:1d:63:8b:5c:db:f1:b8:01:e5:6e: ab:7a:1f:f6:84:a5:b1:8c:ab:d3:86:05:9a:59:b9:39:36:9b: 32:61:c8:21:6d:d8:7e:24:19:21:ef:13:0f:6f:a2:4b:e8:2f: f5:60:42:11:bb:20:83:09:c9:7b:04:b0:de:4b:6b:51:c4:0f: 19:08:f3:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjQxMTIzMDM0NzQyWhcNMjQxMTMwMDM0NzQyWjAYMRYwFAYD VQQDEw02NzQxNTA1ZS0xZjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVZUz4DLHpQoruGeH0VBKo6WFqEVaGopV81s0CryZTAb2WU0QNthm+VsqQGQ lxPiGmyu4g2ZIc14vBvBrRDcK2y+7UY3Tcvm24qsESIM8QL5PRVU021h+PVxKCmm RRg/HdVzEI3ZY2idqghJs4lXfrQSr4xHQGfimbpYX1kCiZmx+orHQlJ71Ar9NG1P tNFDJ8swfzGj3a+wBj7HOMG8mwNVhv36iMBN0mCARQKBxBpIF7nh4UqwqtI5gQjG HbojmNjlhHAEcdOuJCU6nNm0p8QVtq1FURgDII7R2sKZBHQv2VXmLaVD0Ym/vH+M L9/pexE8ynK+fydloyt1T8KwhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH19Vm68 57dUpcYGdqsWlYQ2gHDzMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBphzTtKeTkybuVP3EQ1Gdm+kzECi9BWcGMuYCQD3LTf1Haz9D19XLF tC+uv2+wMJf97oAbfofYffWs927/w6TmHYw5FhxGSO6+VebmzXPM6H7ydqtngxEU QJZs4l/k3tMZuWkRZtHVjpAkyR3x1v7WfzdaP4OFqow6NknIazFNmPk8w4gnvlkH Sa+bGhvTbBx8t5lG7IX5QaDFLqHw6NBOV1KAlA57M2wea5JHo3VA0GkP3lKKyK91 UFhymx1ji1zb8bgB5W6reh/2hKWxjKvThgWaWbk5NpsyYcghbdh+JBkh7xMPb6JL 6C/1YEIRuyCDCcl7BLDeS2tRxA8ZCPNO -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:09 2024 by rpki-client on console-ams.rpki-client.org