$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: JfuGbu1zK6PEHuGI8xRg2PpgSAKr6Pcv5WC1SiKYIyw= Subject key identifier: 26:78:C6:03:63:93:AA:4E:1F:CE:E0:30:0A:64:B4:5D:97:19:BC:D2 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 5D Signing time: Thu 21 Nov 2024 02:54:18 +0000 Manifest this update: Thu 21 Nov 2024 02:54:18 +0000 Manifest next update: Thu 28 Nov 2024 02:54:18 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: c0jX7ujl0Mh5eHRHhqcIcYKFPO4d9Op5UQHGigUBDzU=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: wCgEqyS6Zy8DoSXHIrNsGB8yREYXO+lRQfUh3eYmLj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Nov 21 02:54:18 2024 GMT Not After : Nov 28 02:54:18 2024 GMT Subject: CN=673ea0da-551e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fa:cd:f8:f2:4b:75:26:d7:99:a7:36:9e:f6: 31:23:d2:ed:99:73:b0:d8:f7:35:30:74:4a:a4:36: db:a9:04:65:17:82:63:48:6b:96:57:f7:38:25:ac: f7:58:26:5e:4d:4b:92:19:46:92:b2:34:84:4a:e3: 54:95:4d:04:d4:aa:bc:fe:a1:2c:1d:ea:0f:fe:9d: 30:70:1a:4b:d7:76:c7:1e:e5:0f:40:a8:bf:fe:66: 58:1b:7c:34:d7:a5:2a:89:44:dc:85:f4:8d:ec:13: be:59:b6:1b:64:40:a7:b6:4f:80:f7:5f:c1:59:8e: 36:b3:14:14:a9:c6:b7:a2:3a:3b:48:b6:5f:79:43: dc:7f:67:df:ab:4c:2e:b3:7c:78:1b:c2:a9:2a:24: ad:57:ff:3b:5e:a6:8d:e2:94:9a:20:2d:69:a6:c6: 8e:67:f6:a1:39:67:b5:45:7c:44:0b:e0:2c:e1:db: 30:10:92:b2:12:36:b9:e7:64:ff:e9:45:cc:ea:4e: 6c:8f:2a:5a:98:7c:73:00:4c:09:41:45:e0:e7:43: 8c:f8:4e:8c:45:8f:b9:d2:49:30:23:0e:84:a0:de: 41:7e:f3:6d:9c:06:ba:c0:d8:58:e8:05:dd:f7:67: c4:5f:fd:d9:39:63:3e:00:33:e3:f3:1a:72:b2:80: d1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:78:C6:03:63:93:AA:4E:1F:CE:E0:30:0A:64:B4:5D:97:19:BC:D2 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b2:76:ae:c6:90:15:79:77:0a:e5:ea:e2:7f:e3:fb:8a:33: ff:66:44:6f:56:90:54:05:c7:f0:60:85:28:05:76:d8:5b:26: e5:a8:29:91:a3:4e:7a:e3:eb:87:31:46:46:9d:45:e7:fe:ca: ee:45:91:93:08:e4:f1:18:91:38:ce:ac:dd:b2:26:50:8a:29: 57:ef:8d:e6:26:24:80:12:5f:b8:c4:82:66:ea:57:5e:7c:49: 27:39:19:49:ee:82:d0:6d:b3:f8:50:54:b6:2a:e6:75:4b:b2: 48:b1:dc:46:c7:21:8c:ad:f1:bc:d9:80:dd:66:8f:b9:ac:51: fa:6d:80:5e:26:ed:59:8d:39:f9:72:5c:f0:7c:79:48:eb:de: 4d:5f:bc:f1:51:e1:20:6c:0c:9f:c1:ad:b3:08:a8:a7:4f:8e: 52:24:f6:2a:73:41:8c:6d:27:15:9a:0a:2d:6e:8f:d2:ce:f5: cb:53:d3:e6:b1:6a:55:34:4c:34:4b:d2:17:e4:41:23:20:95: 33:f5:af:ed:2e:ce:d8:ab:91:08:b4:35:29:aa:84:31:1f:d4: ea:77:a1:1f:52:71:85:dc:8a:a9:f3:c5:39:71:b5:75:cf:51: c1:a0:ae:fa:cc:e8:06:a0:98:41:c4:04:97:b6:f3:d3:ff:05: 8b:7d:c3:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzgwQ0Q2QkNDOUUxQzExRkVDNEVFMjdEQTg5MzgyNERB REI1MjEyQTAeFw0yNDExMjEwMjU0MThaFw0yNDExMjgwMjU0MThaMBgxFjAUBgNV BAMTDTY3M2VhMGRhLTU1MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS+s348kt1JteZpzae9jEj0u2Zc7DY9zUwdEqkNtupBGUXgmNIa5ZX9zglrPdY Jl5NS5IZRpKyNIRK41SVTQTUqrz+oSwd6g/+nTBwGkvXdsce5Q9AqL/+ZlgbfDTX pSqJRNyF9I3sE75ZthtkQKe2T4D3X8FZjjazFBSpxreiOjtItl95Q9x/Z9+rTC6z fHgbwqkqJK1X/ztepo3ilJogLWmmxo5n9qE5Z7VFfEQL4Czh2zAQkrISNrnnZP/p RczqTmyPKlqYfHMATAlBReDnQ4z4ToxFj7nSSTAjDoSg3kF+822cBrrA2FjoBd33 Z8Rf/dk5Yz4AM+PzGnKygNHlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJnjGA2OT qk4fzuAwCmS0XZcZvNIwHwYDVR0jBBgwFoAUOAzWvMnhwR/sTuJ9qJOCTa21ISow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzhGOTA5MUQ0MzJC MDExRUZBNENCRjk2QUM0RjlBRTAyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlT by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT0F6V3ZNbmh3Ul9zVHVKOXFKT0NUYTIxSVNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzhGOTA5MUQ0MzJCMDExRUZBNENCRjk2QUM0RjlBRTAyL09Beld2TW5od1Jf c1R1SjlxSk9DVGEyMUlTby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADeydq7GkBV5dwrl6uJ/4/uKM/9mRG9WkFQFx/BghSgFdthbJuWoKZGj Tnrj64cxRkadRef+yu5FkZMI5PEYkTjOrN2yJlCKKVfvjeYmJIASX7jEgmbqV158 SSc5GUnugtBts/hQVLYq5nVLskix3EbHIYyt8bzZgN1mj7msUfptgF4m7VmNOfly XPB8eUjr3k1fvPFR4SBsDJ/BrbMIqKdPjlIk9ipzQYxtJxWaCi1uj9LO9ctT0+ax alU0TDRL0hfkQSMglTP1r+0uztirkQi0NSmqhDEf1Op3oR9ScYXciqnzxTlxtXXP UcGgrvrM6AagmEHEBJe289P/BYt9w3E= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:59 2024 by rpki-client on console-fra.rpki-client.org