$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: rcK25ehGBSn8S2BBcgjrVLWIOHy7wHS+ne/PmvwRebI= Subject key identifier: 68:55:6F:C8:41:54:58:75:00:8A:66:49:E1:2F:04:9A:4F:56:25:B6 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 47 Signing time: Wed 23 Oct 2024 23:38:20 +0000 Manifest this update: Wed 23 Oct 2024 23:38:19 +0000 Manifest next update: Wed 30 Oct 2024 23:38:19 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: 1UcU5aCMisAFBCaY7TqK8YXJgPAS9fIGlIHn2Bg6f1w=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: wCgEqyS6Zy8DoSXHIrNsGB8yREYXO+lRQfUh3eYmLj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 17:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Oct 23 23:38:19 2024 GMT Not After : Oct 30 23:38:19 2024 GMT Subject: CN=671988ec-8d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a9:76:97:10:a3:0b:76:8c:94:1f:88:b1:94: 28:36:e0:49:ce:55:b8:a7:68:b3:e2:9c:2c:91:d5: ec:fa:42:5d:71:ae:58:c4:40:e7:70:d6:eb:ae:1d: ce:15:0f:23:6e:ae:1d:70:45:67:58:83:f4:5f:ff: 09:c6:49:d1:3c:77:f0:b2:df:23:44:34:6b:3a:ea: 0d:1c:86:df:42:7a:6c:b4:0d:ae:ab:03:c8:c7:00: d9:fb:2c:5d:d0:1f:ee:1c:fd:c5:aa:0d:ce:91:8b: 2a:ac:4c:1a:f4:e9:b4:24:e7:8e:f3:0a:f3:65:ed: 58:52:4e:5d:ba:0f:c2:90:91:b5:ec:c9:26:59:96: 35:63:79:cc:61:61:29:ab:aa:8d:b2:32:08:bd:88: c5:56:d0:c9:06:98:03:69:c6:02:02:72:12:de:db: bf:b9:c8:3b:81:e8:26:fc:aa:35:68:a0:1e:12:8f: 74:64:3d:c9:62:d0:b2:fd:74:73:72:0e:05:b0:0b: 9c:02:f8:78:2b:f4:0b:ee:87:1e:57:4a:0c:5e:d7: b7:46:1c:61:c1:83:3a:ff:df:a2:d9:a7:a5:55:3d: 7a:97:0f:c0:08:ef:64:a9:d6:b9:38:66:40:dc:1e: cd:68:19:8c:cd:78:5f:d3:89:c2:c9:8c:4d:53:75: 6d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:55:6F:C8:41:54:58:75:00:8A:66:49:E1:2F:04:9A:4F:56:25:B6 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:20:cc:0a:e3:8e:cb:cc:d4:d8:88:29:81:bf:03:d0:5b:3a: 75:8a:41:d4:49:8d:62:8f:89:46:9c:ad:53:e5:e9:83:cd:44: 6e:e8:07:20:09:6f:6a:a2:bc:c7:41:95:41:d1:c1:ea:06:37: 14:33:9e:de:15:47:6c:91:1e:f3:78:e3:25:fd:40:f7:9f:89: ca:9c:f2:d7:04:be:4c:23:ca:a1:0b:f7:3d:8b:bb:e0:68:93: ab:6f:0f:5f:6b:bb:2a:cc:09:76:99:57:de:f9:cd:38:06:da: e0:30:4b:a3:bc:e6:78:34:cc:74:ce:16:54:49:b8:bf:f3:e4: f6:06:50:85:cb:6d:eb:4f:30:e1:03:fe:c0:87:02:40:5e:99: 5b:a0:b0:10:38:0a:57:be:2d:be:64:8a:71:32:d8:e0:62:f0: cc:d3:53:2f:6f:82:14:f5:15:19:91:5d:e8:cf:04:05:d5:e1: cd:16:8d:45:8b:91:57:98:40:fd:42:83:3a:46:92:7d:c4:21: db:f5:62:2f:22:2e:19:24:99:73:cc:7e:1b:51:b8:42:7a:02: ee:bb:87:0a:24:49:e2:ed:4d:75:50:41:d9:34:9b:bd:03:c5: 32:4e:2c:3c:7d:0c:f2:58:bc:f4:f8:7b:0b:e6:bf:63:b9:13: f7:43:3d:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzgwQ0Q2QkNDOUUxQzExRkVDNEVFMjdEQTg5MzgyNERB REI1MjEyQTAeFw0yNDEwMjMyMzM4MTlaFw0yNDEwMzAyMzM4MTlaMBgxFjAUBgNV BAMTDTY3MTk4OGVjLThkN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcqXaXEKMLdoyUH4ixlCg24EnOVbinaLPinCyR1ez6Ql1xrljEQOdw1uuuHc4V DyNurh1wRWdYg/Rf/wnGSdE8d/Cy3yNENGs66g0cht9Cemy0Da6rA8jHANn7LF3Q H+4c/cWqDc6RiyqsTBr06bQk547zCvNl7VhSTl26D8KQkbXsySZZljVjecxhYSmr qo2yMgi9iMVW0MkGmANpxgICchLe27+5yDuB6Cb8qjVooB4Sj3RkPcli0LL9dHNy DgWwC5wC+Hgr9Avuhx5XSgxe17dGHGHBgzr/36LZp6VVPXqXD8AI72Sp1rk4ZkDc Hs1oGYzNeF/TicLJjE1TdW0VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaFVvyEFU WHUAimZJ4S8Emk9WJbYwHwYDVR0jBBgwFoAUOAzWvMnhwR/sTuJ9qJOCTa21ISow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzhGOTA5MUQ0MzJC MDExRUZBNENCRjk2QUM0RjlBRTAyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlT by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT0F6V3ZNbmh3Ul9zVHVKOXFKT0NUYTIxSVNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzhGOTA5MUQ0MzJCMDExRUZBNENCRjk2QUM0RjlBRTAyL09Beld2TW5od1Jf c1R1SjlxSk9DVGEyMUlTby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANQgzArjjsvM1NiIKYG/A9BbOnWKQdRJjWKPiUacrVPl6YPNRG7oByAJ b2qivMdBlUHRweoGNxQznt4VR2yRHvN44yX9QPeficqc8tcEvkwjyqEL9z2Lu+Bo k6tvD19ruyrMCXaZV975zTgG2uAwS6O85ng0zHTOFlRJuL/z5PYGUIXLbetPMOED /sCHAkBemVugsBA4Cle+Lb5kinEy2OBi8MzTUy9vghT1FRmRXejPBAXV4c0WjUWL kVeYQP1CgzpGkn3EIdv1Yi8iLhkkmXPMfhtRuEJ6Au67hwokSeLtTXVQQdk0m70D xTJOLDx9DPJYvPT4ewvmv2O5E/dDPdw= -----END CERTIFICATE-----Generated at Thu Oct 24 01:53:59 2024 by rpki-client on console-ams.rpki-client.org