$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: 5+bHc4FhKWEWg2/5nwYbbXAEHyZ6zHOJVCRieizmkeU= Subject key identifier: F2:3A:4F:BD:D4:43:6B:D7:C6:69:B9:09:DA:58:7A:47:A7:47:BE:8D Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: A0 Signing time: Sat 23 Nov 2024 04:18:29 +0000 Manifest this update: Sat 23 Nov 2024 04:18:29 +0000 Manifest next update: Sat 30 Nov 2024 04:18:29 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: PydLqzVODZ+LUROJA0V6CuoqIpwLJ9k9zwSVxVmRbu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Nov 23 04:18:29 2024 GMT Not After : Nov 30 04:18:29 2024 GMT Subject: CN=67415795-88c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ea:37:24:67:d3:05:f0:9d:59:db:47:cf:01: 90:94:81:59:eb:68:c8:74:25:1d:58:01:df:71:14: dd:1c:85:6b:37:20:02:6d:f1:10:df:06:bb:87:b3: 3a:d3:22:98:93:9c:39:3f:3c:1a:00:91:e8:06:69: 78:c4:37:44:80:65:0d:5b:81:fa:76:97:e8:ab:48: 02:30:fb:88:a6:12:d2:c9:fa:d5:35:48:6f:94:60: 1e:84:8b:ca:07:44:f3:fe:1e:ef:63:87:bb:6a:e5: 60:28:9c:ea:51:92:75:3a:40:c2:5a:d0:b2:a6:ca: ab:85:a3:7f:d8:a5:d4:63:29:af:52:1c:3f:25:25: f1:b7:9b:8f:4a:f8:0c:65:a4:0f:cd:82:7b:07:b9: 08:46:17:3a:52:1a:04:a4:dc:e7:19:43:39:6e:af: 21:50:f4:8d:6d:a2:ba:ab:a4:0a:d1:4d:d9:97:62: 2b:e6:cc:35:72:4d:be:f9:ec:fd:96:e6:b3:2b:2a: bc:52:b7:98:bb:d0:63:73:91:24:2c:d5:bd:18:c3: 0a:90:77:9c:d0:33:71:ed:2f:4f:fd:a5:b6:3c:9b: 37:b2:52:8f:60:57:bc:86:ae:33:61:da:91:f2:e3: 29:d1:a0:22:ae:82:52:c0:71:27:a4:e2:60:18:b8: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3A:4F:BD:D4:43:6B:D7:C6:69:B9:09:DA:58:7A:47:A7:47:BE:8D X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ce:ec:58:6f:87:7c:15:26:21:2b:af:eb:0f:9f:2f:44:ad: e6:76:12:ea:4c:b7:7e:75:a4:e2:ca:b3:48:11:00:be:ea:de: ba:90:44:75:70:5c:c9:39:2a:18:0e:d0:b1:19:4a:c4:8a:41: 3e:cf:1e:9d:56:40:ab:83:aa:77:94:22:9b:63:f7:20:c3:41: 91:c1:13:9b:c9:6b:38:d7:a2:b0:cd:f7:2d:e7:16:35:30:fe: ed:18:0e:d3:a1:76:5b:6e:4c:be:3e:1b:f3:8b:68:c9:ce:1e: ba:12:5c:43:e9:77:e9:b8:eb:e1:a9:a1:3c:64:75:d3:45:4b: 48:35:03:5f:c0:f9:a8:a2:50:93:70:b4:da:fd:2c:f7:c7:5f: 09:0c:c8:2f:2a:50:46:7f:49:a1:0c:95:18:8a:54:5f:24:82: 8a:f7:5a:b0:96:2e:a0:66:e8:18:d6:03:82:14:08:f7:30:8c: 25:5b:50:06:28:6e:e7:ca:1f:db:bf:cb:fd:6f:22:62:1d:ef: a3:32:b4:a1:ac:a5:84:e5:9c:a3:88:43:7e:a2:ce:3d:dc:c6: 39:f7:7f:1b:97:13:8d:2b:05:99:78:4f:02:d4:fa:8b:c8:df: 50:a3:61:9d:bd:82:d9:b1:a7:be:d3:f3:46:d8:47:2b:39:a3: b4:90:f7:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjQxMTIzMDQxODI5WhcNMjQxMTMwMDQxODI5WjAYMRYwFAYD VQQDEw02NzQxNTc5NS04OGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+o3JGfTBfCdWdtHzwGQlIFZ62jIdCUdWAHfcRTdHIVrNyACbfEQ3wa7h7M6 0yKYk5w5PzwaAJHoBml4xDdEgGUNW4H6dpfoq0gCMPuIphLSyfrVNUhvlGAehIvK B0Tz/h7vY4e7auVgKJzqUZJ1OkDCWtCypsqrhaN/2KXUYymvUhw/JSXxt5uPSvgM ZaQPzYJ7B7kIRhc6UhoEpNznGUM5bq8hUPSNbaK6q6QK0U3Zl2Ir5sw1ck2++ez9 luazKyq8UreYu9Bjc5EkLNW9GMMKkHec0DNx7S9P/aW2PJs3slKPYFe8hq4zYdqR 8uMp0aAiroJSwHEnpOJgGLhhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPI6T73U Q2vXxmm5CdpYekenR76NMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8zuxYb4d8FSYhK6/rD58vRK3mdhLqTLd+daTiyrNIEQC+6t66kER1 cFzJOSoYDtCxGUrEikE+zx6dVkCrg6p3lCKbY/cgw0GRwRObyWs416Kwzfct5xY1 MP7tGA7ToXZbbky+Phvzi2jJzh66ElxD6XfpuOvhqaE8ZHXTRUtINQNfwPmoolCT cLTa/Sz3x18JDMgvKlBGf0mhDJUYilRfJIKK91qwli6gZugY1gOCFAj3MIwlW1AG KG7nyh/bv8v9byJiHe+jMrShrKWE5ZyjiEN+os493MY5938blxONKwWZeE8C1PqL yN9Qo2GdvYLZsae+0/NG2EcrOaO0kPf5 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org