$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft File: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft (raw, json) Hash identifier: GBm/c4HfTXLRXCDdQaFE02/Xj8qOtqq/DeTsRuppTt4= Subject key identifier: 70:3A:29:B8:E1:DE:E7:E6:FB:A9:9C:50:A8:92:99:24:9A:FD:E7:AD Authority key identifier: A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED Certificate issuer: /CN=A918EF94/serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft Manifest number: BD Signing time: Wed 20 Nov 2024 17:46:41 +0000 Manifest this update: Wed 20 Nov 2024 17:46:41 +0000 Manifest next update: Wed 27 Nov 2024 17:46:41 +0000 Files and hashes: 1: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl (hash: CFEGxWZ2zCPy59/sgR7q9nIrqgDOByUpPjI0HNL4WiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94/serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Validity Not Before: Nov 20 17:46:41 2024 GMT Not After : Nov 27 17:46:41 2024 GMT Subject: CN=673e2081-205c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:3a:bf:8f:47:8d:0c:60:11:44:7d:44:71: 3e:d0:76:ba:16:81:47:24:aa:74:2b:ac:40:ed:5d: fa:4a:f7:78:07:8b:1c:dd:d6:30:62:5a:2b:f1:4a: 4d:ac:af:86:62:0f:5b:04:e6:35:47:a1:68:29:2c: b0:8c:d3:4d:8f:cb:24:01:f2:65:f4:a3:02:5b:ef: a0:eb:40:3d:f6:f3:49:c1:c3:94:5e:ca:0a:2c:63: b9:da:8a:e5:b7:2d:11:33:fa:b5:44:7c:20:c9:e2: d8:34:17:bc:f5:d2:a7:0c:8f:21:54:df:57:c6:ac: 59:d4:d7:6a:7e:70:1c:e9:cc:a3:74:f2:a2:85:28: 2c:40:86:14:cc:b0:5a:f8:33:a7:04:0a:e5:f2:58: a4:74:ac:e3:98:f8:11:ea:ab:4c:70:57:17:bb:d8: 79:4c:46:95:25:8a:e7:be:6c:d0:6e:d2:fe:0d:92: e6:ed:12:da:b7:17:3f:84:bc:75:dd:2a:85:58:68: ee:b6:9e:ba:f8:67:59:f7:12:4d:c4:fa:89:cd:a5: f1:40:42:e3:c3:34:10:73:03:27:2b:db:30:85:e9: b3:d0:e9:ab:c8:88:29:b9:d1:07:ba:57:02:08:f7: 48:76:d5:2d:60:65:40:a0:5e:27:d1:3e:bd:e2:15: ff:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3A:29:B8:E1:DE:E7:E6:FB:A9:9C:50:A8:92:99:24:9A:FD:E7:AD X509v3 Authority Key Identifier: keyid:A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:0e:a3:bc:2a:32:bc:79:ca:95:ef:49:b4:bd:32:f7:96:2a: 97:ea:cd:ed:29:f1:a4:c7:53:23:b3:9e:a4:43:8b:f7:5a:66: 0d:c5:7c:2c:00:c7:08:43:09:ae:b0:7b:ba:7b:e2:cc:77:24: 9c:6e:1a:1e:3a:d8:a4:87:a2:42:ac:40:9b:e6:4b:73:42:3c: 95:3c:c0:f7:a8:1c:cd:dd:03:96:4b:ff:f9:48:40:bc:c2:dd: c9:45:12:a6:4e:e3:b1:63:c8:21:fe:0b:e8:96:da:33:45:c2: f3:00:23:c8:1a:80:78:8e:94:9a:c7:1e:d6:fc:f0:5c:0e:33: 8d:4b:d6:55:a1:d2:48:d0:52:60:eb:21:90:03:14:f0:7f:9b: 78:9d:ea:93:e8:c7:f8:a0:90:3b:d4:02:aa:ed:52:12:66:a9: 35:06:0b:65:2a:c5:74:e7:2e:59:16:1f:35:84:26:a4:83:37: 2b:e4:ae:86:fa:ec:d4:31:4d:33:1e:29:60:56:6d:a6:34:e5: 72:4b:11:3d:30:d6:b8:8b:f2:da:31:36:58:aa:84:f0:81:61: c3:ac:eb:0e:35:e2:01:a3:d1:d3:3e:d1:0a:42:31:da:fa:83: 98:4b:71:6a:52:24:63:ce:82:8e:7a:ef:ee:2f:ee:25:c0:c4: cb:88:2a:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEExRTRGMDlEMkY0NzA3ODY3Q0ZBRTI3RThGMTMyMzY5 RkI5N0QwRUQwHhcNMjQxMTIwMTc0NjQxWhcNMjQxMTI3MTc0NjQxWjAYMRYwFAYD VQQDEw02NzNlMjA4MS0yMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Co6v49HjQxgEUR9RHE+0Ha6FoFHJKp0K6xA7V36Svd4B4sc3dYwYlor8UpN rK+GYg9bBOY1R6FoKSywjNNNj8skAfJl9KMCW++g60A99vNJwcOUXsoKLGO52orl ty0RM/q1RHwgyeLYNBe89dKnDI8hVN9XxqxZ1NdqfnAc6cyjdPKihSgsQIYUzLBa +DOnBArl8likdKzjmPgR6qtMcFcXu9h5TEaVJYrnvmzQbtL+DZLm7RLatxc/hLx1 3SqFWGjutp66+GdZ9xJNxPqJzaXxQELjwzQQcwMnK9swhemz0OmryIgpudEHulcC CPdIdtUtYGVAoF4n0T694hX/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA6Kbjh 3ufm+6mcUKiSmSSa/eetMB8GA1UdIwQYMBaAFKHk8J0vRweGfPrifo8TI2n7l9Dt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81MDI5NTU0QzhB NzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0WjgtdUotanhNamFmdVgw TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29lVHduUzlIQjRaOC11Si1qeE1qYWZ1WDBPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81MDI5NTU0QzhBNzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0 WjgtdUotanhNamFmdVgwTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZDqO8KjK8ecqV70m0vTL3liqX6s3tKfGkx1Mjs56kQ4v3WmYNxXws AMcIQwmusHu6e+LMdyScbhoeOtikh6JCrECb5ktzQjyVPMD3qBzN3QOWS//5SEC8 wt3JRRKmTuOxY8gh/gvoltozRcLzACPIGoB4jpSaxx7W/PBcDjONS9ZVodJI0FJg 6yGQAxTwf5t4neqT6Mf4oJA71AKq7VISZqk1BgtlKsV05y5ZFh81hCakgzcr5K6G +uzUMU0zHilgVm2mNOVySxE9MNa4i/LaMTZYqoTwgWHDrOsONeIBo9HTPtEKQjHa +oOYS3FqUiRjzoKOeu/uL+4lwMTLiCp8 -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:02 2024 by rpki-client on console-fra.rpki-client.org