$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: X9LRgmaZyHBHKysDIH0NHlYbd+ZYzXHrN1/pWU7t2vo= Subject key identifier: E3:4C:66:7C:AA:7C:F9:3B:5E:D3:CE:7F:76:9A:BE:0B:1F:EE:29:36 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 09A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0989 Signing time: Fri 22 Nov 2024 19:53:55 +0000 Manifest this update: Fri 22 Nov 2024 19:53:55 +0000 Manifest next update: Fri 29 Nov 2024 19:53:55 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: E90r1pftnU5u8ZI43DoJyA5LUS9oKgDkNzWo/MQsCcg=) 2: 9B9D6CA0AD4E11EE883EA646C4F9AE02.roa (hash: VYrDaDeLIroB7f2ig8mD9OcuJhlDLEKA/fOuLVB60Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2467 (0x9a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Nov 22 19:53:55 2024 GMT Not After : Nov 29 19:53:55 2024 GMT Subject: CN=6740e153-13b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:74:d7:64:a2:1f:d5:35:55:89:73:40:64: 8d:75:0d:f8:b4:e2:58:b3:da:ed:08:f7:2b:24:fc: 49:a1:c6:2a:df:6d:ac:81:81:04:fb:8a:9f:98:93: e1:42:cd:17:8f:c5:ee:e0:4e:3c:d2:1d:fb:44:08: 11:81:ba:20:f3:ce:3f:0d:30:5f:6e:09:91:2e:c3: e5:c8:d4:34:f1:e4:70:90:6d:1d:2c:00:f5:07:8c: 71:50:ee:d8:10:45:84:67:e6:54:91:b8:ac:4a:4b: 51:84:a1:80:01:82:fa:5f:bc:c9:0f:4b:30:f8:10: 5e:92:2f:30:9d:17:02:70:b2:dd:8b:24:19:e4:0f: bf:cd:52:00:83:17:38:7a:05:aa:9b:55:05:f9:66: ea:4c:c3:8d:04:e0:db:52:b4:05:13:7f:b3:a8:8d: 60:08:03:c6:dd:00:54:90:8f:3f:0f:2b:7e:c5:4d: cf:cb:d2:39:3b:5b:f8:e6:a2:fc:8e:7d:c3:91:34: 26:b3:47:53:27:86:5b:9d:b4:df:e4:02:a3:4f:2a: ab:02:03:49:a0:7b:df:ff:ea:33:99:1f:93:8f:7c: 0f:c5:35:c8:f8:ad:e0:f2:c7:56:d0:da:57:7f:00: 92:c4:3b:e3:f3:c8:ae:f1:91:97:96:36:d3:0f:4c: ac:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4C:66:7C:AA:7C:F9:3B:5E:D3:CE:7F:76:9A:BE:0B:1F:EE:29:36 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:48:3d:66:4e:bc:ce:0d:18:30:a2:c8:1e:ec:38:5f:fe:17: 6c:69:21:35:19:f5:62:ba:2b:c4:ce:a9:5f:3b:07:7d:af:08: 0b:54:f1:5c:b2:97:bd:4b:4b:22:72:c6:05:10:e5:92:5b:a5: 74:0c:5a:06:ab:6a:69:d6:70:3f:40:f2:0d:da:f4:1e:61:cf: c1:61:5f:15:1d:0e:bd:f1:aa:e2:78:7a:01:55:a9:3d:3b:8a: de:de:13:52:55:61:ea:1b:1a:92:ef:a8:fc:3b:dc:c2:93:9c: 36:d5:f5:93:df:6b:7f:47:48:48:d4:a7:e8:da:c5:9f:ad:00: 2d:05:51:f7:18:e0:26:18:b5:4d:ef:23:9f:d0:2c:1c:d8:e5: 0c:87:93:e5:8a:fb:3d:7b:55:4a:37:67:e7:17:d9:2d:9b:c6: 55:d8:f8:a0:9a:e5:cb:0f:01:35:d1:e6:28:d7:3d:17:dc:1f: 28:98:64:e2:d5:af:4d:69:c3:b7:ea:59:89:d1:21:32:ec:99: b6:7e:06:fa:1a:5d:eb:db:f1:f7:46:54:e0:91:4d:fc:44:84: a3:45:67:8a:b6:85:cb:08:86:9e:5e:0c:70:42:76:1b:5c:75: 49:2f:b1:00:e5:72:96:83:96:be:f0:80:d9:24:2f:bc:d1:bb: b8:67:cd:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjQxMTIyMTk1MzU1WhcNMjQxMTI5MTk1MzU1WjAYMRYwFAYD VQQDEw02NzQwZTE1My0xM2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl5012SiH9U1VYlzQGSNdQ34tOJYs9rtCPcrJPxJocYq322sgYEE+4qfmJPh Qs0Xj8Xu4E480h37RAgRgbog884/DTBfbgmRLsPlyNQ08eRwkG0dLAD1B4xxUO7Y EEWEZ+ZUkbisSktRhKGAAYL6X7zJD0sw+BBeki8wnRcCcLLdiyQZ5A+/zVIAgxc4 egWqm1UF+WbqTMONBODbUrQFE3+zqI1gCAPG3QBUkI8/Dyt+xU3Py9I5O1v45qL8 jn3DkTQms0dTJ4ZbnbTf5AKjTyqrAgNJoHvf/+ozmR+Tj3wPxTXI+K3g8sdW0NpX fwCSxDvj88iu8ZGXljbTD0ys9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONMZnyq fPk7XtPOf3aavgsf7ik2MB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLSD1mTrzODRgwosge7Dhf/hdsaSE1GfViuivEzqlfOwd9rwgLVPFc spe9S0sicsYFEOWSW6V0DFoGq2pp1nA/QPIN2vQeYc/BYV8VHQ698arieHoBVak9 O4re3hNSVWHqGxqS76j8O9zCk5w21fWT32t/R0hI1Kfo2sWfrQAtBVH3GOAmGLVN 7yOf0Cwc2OUMh5Plivs9e1VKN2fnF9ktm8ZV2PigmuXLDwE10eYo1z0X3B8omGTi 1a9NacO36lmJ0SEy7Jm2fgb6Gl3r2/H3RlTgkU38RISjRWeKtoXLCIaeXgxwQnYb XHVJL7EA5XKWg5a+8IDZJC+80bu4Z82R -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:30 2024 by rpki-client on console-fra.rpki-client.org