$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: hVuk239UstHnJbpbSxNYJbtcdJmfovPLI5z2RVCT5lE= Subject key identifier: 3D:54:94:86:9E:47:30:85:17:89:03:38:BA:C0:9F:EE:66:67:F0:A9 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: E5 Signing time: Thu 21 Nov 2024 03:34:08 +0000 Manifest this update: Thu 21 Nov 2024 03:34:08 +0000 Manifest next update: Thu 28 Nov 2024 03:34:08 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: wPbuMvFHQUo5/8VA/orQYkxlPMn5vNXm9XMh5D2tgWI=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: P1qwhAicU6zPENCwTGFasnrb3+NFivcUL5Wq4dABBCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Nov 21 03:34:08 2024 GMT Not After : Nov 28 03:34:08 2024 GMT Subject: CN=673eaa30-a1ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a3:7f:b4:60:1c:8c:e1:45:ca:f2:3e:76:70: eb:30:b2:c3:ca:e5:fa:8d:4c:ed:06:ee:0a:50:bc: 94:31:18:ef:44:fe:f4:99:eb:d9:27:52:22:53:10: be:45:50:17:b4:80:af:42:1b:08:9b:30:be:93:5a: 10:c7:9e:e9:7e:e3:24:f2:0e:6b:86:22:d0:d9:40: 53:2a:16:fd:b2:95:5a:84:f2:e2:46:5c:af:9b:a9: f5:ec:38:b0:a9:1d:f6:32:b5:f3:80:20:9e:3a:3c: 3e:03:8c:08:da:7d:e5:4d:f7:de:07:ba:e2:cb:1b: 09:c6:b9:c5:cd:36:c0:8f:8a:7c:8f:45:5a:98:0c: 6d:eb:de:6b:78:dc:d9:d1:bf:1e:a3:fc:9c:c4:98: 99:98:84:f7:0b:2a:c5:d9:76:dc:aa:27:5a:7a:e8: 57:3b:23:35:bf:d4:92:ed:ad:c5:b6:af:9b:fa:be: 4f:61:5f:26:0e:61:98:65:a1:29:31:c5:88:13:a1: b7:9c:bb:24:a5:57:97:65:68:70:11:bf:68:d7:61: 66:19:9f:6c:a5:fb:d9:37:33:f7:1b:af:37:7d:81: df:c5:69:27:0d:4d:e2:ec:66:84:23:50:8a:ce:60: 70:f1:ad:db:c2:61:ce:90:35:f2:eb:6b:8e:2f:e0: da:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:54:94:86:9E:47:30:85:17:89:03:38:BA:C0:9F:EE:66:67:F0:A9 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:26:f3:75:fa:42:5d:5d:d8:95:d0:60:c0:03:63:8b:79:fa: 48:8c:3f:0a:00:15:ae:64:30:46:3d:ab:72:1f:cf:bf:1a:72: ab:32:09:30:bd:d5:87:60:2d:55:4a:25:5e:4b:c9:7a:0c:ef: 8f:e0:e2:9b:3c:37:bd:0e:cd:e6:99:3e:70:35:8c:bb:e7:ed: 79:4e:dc:86:a9:f7:5b:05:46:5b:58:e6:b0:03:98:ac:d3:0d: c8:84:8e:33:fe:84:42:49:cb:4a:4c:4b:50:b8:2c:cb:54:8e: a7:51:d4:27:ca:6c:af:db:2a:bf:be:07:7c:5b:5b:46:24:14: 2d:36:0b:73:87:24:76:00:27:cc:59:b0:d6:1e:3a:77:57:f6: d9:5e:8c:b5:3d:c4:00:36:d8:52:29:5e:cc:c2:8d:3a:52:09: 83:10:0c:69:fe:c2:4e:3c:d1:6a:30:9a:05:60:20:ae:e2:6a: 26:88:cf:e7:9d:10:de:b6:8f:c9:18:56:44:2d:c9:cc:1c:e3: d4:12:2e:2a:ff:a4:1e:f4:46:08:2d:1b:49:6a:21:22:a2:2f: 9b:ba:24:a1:1a:0b:f2:4c:34:96:4f:37:bc:a1:6c:e6:1e:db: 3c:e8:57:0e:e8:03:d7:80:78:a5:a7:e4:a2:52:33:b4:cb:ff: 2c:55:ef:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjQxMTIxMDMzNDA4WhcNMjQxMTI4MDMzNDA4WjAYMRYwFAYD VQQDEw02NzNlYWEzMC1hMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KN/tGAcjOFFyvI+dnDrMLLDyuX6jUztBu4KULyUMRjvRP70mevZJ1IiUxC+ RVAXtICvQhsImzC+k1oQx57pfuMk8g5rhiLQ2UBTKhb9spVahPLiRlyvm6n17Diw qR32MrXzgCCeOjw+A4wI2n3lTffeB7riyxsJxrnFzTbAj4p8j0VamAxt695reNzZ 0b8eo/ycxJiZmIT3CyrF2XbcqidaeuhXOyM1v9SS7a3Ftq+b+r5PYV8mDmGYZaEp McWIE6G3nLskpVeXZWhwEb9o12FmGZ9spfvZNzP3G683fYHfxWknDU3i7GaEI1CK zmBw8a3bwmHOkDXy62uOL+DacQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1UlIae RzCFF4kDOLrAn+5mZ/CpMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZJvN1+kJdXdiV0GDAA2OLefpIjD8KABWuZDBGPatyH8+/GnKrMgkw vdWHYC1VSiVeS8l6DO+P4OKbPDe9Ds3mmT5wNYy75+15TtyGqfdbBUZbWOawA5is 0w3IhI4z/oRCSctKTEtQuCzLVI6nUdQnymyv2yq/vgd8W1tGJBQtNgtzhyR2ACfM WbDWHjp3V/bZXoy1PcQANthSKV7Mwo06UgmDEAxp/sJOPNFqMJoFYCCu4momiM/n nRDeto/JGFZELcnMHOPUEi4q/6Qe9EYILRtJaiEioi+buiShGgvyTDSWTze8oWzm Hts86FcO6APXgHilp+SiUjO0y/8sVe/q -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:00 2024 by rpki-client on console-fra.rpki-client.org