$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: ZAooYzXpSA5QuRMbD2Q2GNtvsGCeEzZA8KYgNzQywv4= Subject key identifier: 0E:1F:92:4A:56:90:C9:F1:43:EA:55:4F:8E:3A:4D:0C:B2:62:07:7E Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 6B Signing time: Thu 21 Nov 2024 05:00:43 +0000 Manifest this update: Thu 21 Nov 2024 05:00:43 +0000 Manifest next update: Thu 28 Nov 2024 05:00:43 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: 0vwF9q+CYpmp8xx2s7wwjDBeO+MPWu/gsDZXMbjgx2E=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Nov 21 05:00:43 2024 GMT Not After : Nov 28 05:00:43 2024 GMT Subject: CN=673ebe7b-95db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:c4:68:e3:71:72:c9:cf:63:17:61:f2:7c: 0b:cc:33:ca:4c:4c:ab:98:05:f0:12:f3:66:c2:93: 21:15:63:1f:e2:e1:24:47:8d:84:36:88:e5:f6:be: ee:0c:1c:e7:8a:72:83:fc:79:8d:39:fa:60:62:6b: 68:c1:84:33:a1:20:ee:df:7f:31:f7:d5:4a:8c:f2: b7:05:b5:f6:17:e7:a8:76:8a:86:3d:3d:de:19:6e: 70:e2:77:cc:f3:7a:50:2b:c9:67:47:af:2f:6b:c7: 7e:ff:5d:dc:1f:bb:49:7a:a1:80:73:2a:17:e0:91: 6e:d1:f0:e3:43:c5:55:ad:e1:16:de:7a:dd:8b:80: 24:83:df:db:a3:82:35:1a:79:e0:84:57:df:85:68: ba:8d:5f:1d:21:6f:97:c7:0e:f8:b7:e6:2b:04:e0: ce:91:50:cd:e6:2c:0e:c8:fd:18:da:64:8d:2f:a9: 36:3d:9f:1b:ca:f0:64:29:9d:59:5a:c6:90:30:3f: 43:6c:03:27:ba:31:a3:fa:8a:cc:f9:43:a0:f2:0a: 16:4b:26:2a:db:05:23:2c:cc:5d:80:99:bc:3a:67: de:f7:1d:a5:99:d7:c7:51:d0:05:72:a0:35:8c:8b: f8:2e:2d:c9:5c:3b:1c:64:57:40:82:4b:93:3b:9f: 52:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1F:92:4A:56:90:C9:F1:43:EA:55:4F:8E:3A:4D:0C:B2:62:07:7E X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f0:22:c9:68:6c:c4:80:78:f0:ff:26:c9:32:0a:7f:19:cf: 08:a8:96:70:e1:44:57:bb:8b:19:00:fa:00:9f:a9:33:3c:9e: 34:59:d0:22:3e:9e:51:cd:71:45:d4:1e:29:15:aa:69:62:28: 2c:ae:00:fc:1e:af:c0:9f:51:32:2d:c7:9d:38:51:c5:f6:96: 77:3c:84:24:dc:7a:ac:86:eb:da:e6:e7:c4:13:99:1d:4f:c2: a0:74:34:15:3e:e8:46:26:81:ab:29:43:92:e4:9d:04:25:c1: 69:87:80:e4:c2:c2:51:ab:c7:e6:8b:74:14:bb:dc:ee:0d:e7: 9e:84:3f:98:b7:71:b6:dd:b9:50:71:60:5e:5a:4f:25:77:ef: 21:9e:5d:6d:32:33:12:f0:a3:f6:e1:03:27:84:9e:26:d0:3d: d8:5e:61:99:13:45:f9:19:09:4e:38:e9:32:4a:76:33:d9:46: 56:45:1b:0b:32:b3:7f:ba:a4:52:6b:a6:b5:e8:49:7e:81:5d: 80:91:64:7d:9a:c5:4c:66:40:9e:99:66:96:6c:06:90:c5:df: 4a:55:44:22:83:bc:cd:79:ff:8d:11:aa:b9:71:ff:3d:7c:9c: 01:9c:e5:92:e2:7d:ee:91:77:04:ad:20:b6:69:0e:69:15:65: 2d:7f:b2:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDdDMjExMC8GA1UEBRMoMzg4NUY5RDJGRDA4NjAyODNCNTUzODFGMUM0RjRBNUEz QTFFRUYzRjAeFw0yNDExMjEwNTAwNDNaFw0yNDExMjgwNTAwNDNaMBgxFjAUBgNV BAMTDTY3M2ViZTdiLTk1ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC65cRo43Fyyc9jF2HyfAvMM8pMTKuYBfAS82bCkyEVYx/i4SRHjYQ2iOX2vu4M HOeKcoP8eY05+mBia2jBhDOhIO7ffzH31UqM8rcFtfYX56h2ioY9Pd4ZbnDid8zz elAryWdHry9rx37/Xdwfu0l6oYBzKhfgkW7R8ONDxVWt4Rbeet2LgCSD39ujgjUa eeCEV9+FaLqNXx0hb5fHDvi35isE4M6RUM3mLA7I/RjaZI0vqTY9nxvK8GQpnVla xpAwP0NsAye6MaP6isz5Q6DyChZLJirbBSMszF2Ambw6Z973HaWZ18dR0AVyoDWM i/guLclcOxxkV0CCS5M7n1ItAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDh+SSlaQ yfFD6lVPjjpNDLJiB34wHwYDVR0jBBgwFoAUOIX50v0IYCg7VTgfHE9KWjoe7z8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0N0MyL0I5MkJGQUQ0MDVF QjExRUY5NTZCRDY0M0M0RjlBRTAyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0lYNTB2MElZQ2c3VlRnZkhFOUtXam9lN3o4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 N0MyL0I5MkJGQUQ0MDVFQjExRUY5NTZCRDY0M0M0RjlBRTAyL09JWDUwdjBJWUNn N1ZUZ2ZIRTlLV2pvZTd6OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJfwIslobMSAePD/JskyCn8ZzwiolnDhRFe7ixkA+gCfqTM8njRZ0CI+ nlHNcUXUHikVqmliKCyuAPwer8CfUTItx504UcX2lnc8hCTceqyG69rm58QTmR1P wqB0NBU+6EYmgaspQ5LknQQlwWmHgOTCwlGrx+aLdBS73O4N556EP5i3cbbduVBx YF5aTyV37yGeXW0yMxLwo/bhAyeEnibQPdheYZkTRfkZCU446TJKdjPZRlZFGwsy s3+6pFJrprXoSX6BXYCRZH2axUxmQJ6ZZpZsBpDF30pVRCKDvM15/40Rqrlx/z18 nAGc5ZLife6RdwStILZpDmkVZS1/sm8= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org