$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: vk8XtujL7bYoKaXrBXotK0wgyvgbx2uDQSNbXAxxAVU= Subject key identifier: 07:3B:48:6E:40:67:E4:6B:D6:0C:40:F8:E1:CD:38:73:31:52:18:4D Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: E1 Signing time: Thu 21 Nov 2024 03:40:47 +0000 Manifest this update: Thu 21 Nov 2024 03:40:46 +0000 Manifest next update: Thu 28 Nov 2024 03:40:46 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: ui+qmg/v7RkucRjBMWOPBcJR3Pd2ktu7rdJtz/kDIRo=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Nov 21 03:40:46 2024 GMT Not After : Nov 28 03:40:46 2024 GMT Subject: CN=673eabbf-7bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:98:66:09:c3:93:a3:64:96:e1:1d:6d:e1:58: 56:6e:73:3c:2e:a8:eb:23:42:50:96:bf:44:4a:da: 9a:ee:64:3d:57:4d:43:cf:1d:cd:75:a1:87:19:93: 99:e6:d8:13:7a:e0:c6:d7:5b:a2:35:89:6e:2a:ef: de:10:9e:7a:d2:7a:93:8e:9f:71:57:2d:d7:05:e1: b0:25:f9:96:82:32:0d:52:8e:23:0c:b7:b4:0a:da: dc:db:b8:74:e7:b6:16:0c:c7:f9:be:16:f6:0f:47: 12:39:e8:f9:85:75:1e:37:87:5a:f6:b1:e4:a1:f1: 21:ee:ef:bf:32:b5:a1:71:16:47:38:d0:e8:d3:ae: 0b:d6:ff:8f:cc:a7:db:05:f2:e0:32:24:17:a2:be: 2e:03:80:e5:dc:a0:09:b2:c5:11:81:be:d3:e3:71: 2d:f9:2c:0d:b9:19:0e:d0:d7:9e:c6:64:27:3c:09: f3:9a:07:9a:21:17:d3:d3:7e:21:f3:5d:9f:b5:ad: eb:da:c6:4d:f0:b6:81:e6:25:a5:f9:67:98:8a:06: d2:89:e3:cf:66:28:b9:59:dd:0b:2a:ca:fa:82:4e: 51:bf:3e:c2:ca:33:81:96:4c:9c:ac:c0:34:a6:0c: be:c7:b0:34:92:47:ca:23:ec:32:73:d6:61:8b:b9: 63:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3B:48:6E:40:67:E4:6B:D6:0C:40:F8:E1:CD:38:73:31:52:18:4D X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ac:3b:0f:50:c3:dc:3f:54:fb:7b:15:2a:4b:60:bf:91:3c: 78:91:b7:8c:aa:18:a8:45:d1:a0:94:91:2f:f5:ec:2e:3c:60: 70:99:86:cb:f9:01:a8:26:92:be:df:35:bb:0c:49:6c:b8:92: a0:30:4f:e0:e9:60:61:bd:a1:28:3b:4e:5c:6a:44:24:16:4f: 46:ca:a3:40:2e:e1:b1:54:64:a9:1b:dd:56:37:9c:3f:4c:06: 9c:dd:4e:42:40:38:a5:90:5a:72:a3:8c:fe:24:9e:0d:77:f0: ea:6a:1f:33:d6:b4:ef:cb:f0:ab:ae:85:69:3a:20:fd:fd:a8: b6:08:99:36:df:d6:ca:f4:7e:52:9b:72:d5:c9:5b:5c:0e:b0: 66:b5:ac:6a:e0:57:51:d7:e4:11:cd:75:c3:eb:99:fa:a6:b6: cc:05:7d:23:d0:4b:72:68:30:37:fd:4d:68:71:32:6b:be:cc: 8b:06:fc:15:51:2d:54:89:66:87:98:b8:92:cf:2c:6e:e5:78: 4c:0e:cd:2e:83:16:1b:25:a8:4f:29:cc:50:15:e9:9d:3a:2a: 93:1d:df:ed:ee:43:37:aa:b9:1a:f3:90:f3:f9:5b:cf:bc:63: 0f:bc:55:49:f6:d8:f2:01:26:25:74:7c:e5:6d:d0:b3:93:5e: 4e:33:6f:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjQxMTIxMDM0MDQ2WhcNMjQxMTI4MDM0MDQ2WjAYMRYwFAYD VQQDEw02NzNlYWJiZi03YmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZhmCcOTo2SW4R1t4VhWbnM8LqjrI0JQlr9EStqa7mQ9V01Dzx3NdaGHGZOZ 5tgTeuDG11uiNYluKu/eEJ560nqTjp9xVy3XBeGwJfmWgjINUo4jDLe0Ctrc27h0 57YWDMf5vhb2D0cSOej5hXUeN4da9rHkofEh7u+/MrWhcRZHONDo064L1v+PzKfb BfLgMiQXor4uA4Dl3KAJssURgb7T43Et+SwNuRkO0NeexmQnPAnzmgeaIRfT034h 812fta3r2sZN8LaB5iWl+WeYigbSiePPZii5Wd0LKsr6gk5Rvz7CyjOBlkycrMA0 pgy+x7A0kkfKI+wyc9Zhi7lj4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc7SG5A Z+Rr1gxA+OHNOHMxUhhNMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLrDsPUMPcP1T7exUqS2C/kTx4kbeMqhioRdGglJEv9ewuPGBwmYbL +QGoJpK+3zW7DElsuJKgME/g6WBhvaEoO05cakQkFk9GyqNALuGxVGSpG91WN5w/ TAac3U5CQDilkFpyo4z+JJ4Nd/Dqah8z1rTvy/CrroVpOiD9/ai2CJk239bK9H5S m3LVyVtcDrBmtaxq4FdR1+QRzXXD65n6prbMBX0j0EtyaDA3/U1ocTJrvsyLBvwV US1UiWaHmLiSzyxu5XhMDs0ugxYbJahPKcxQFemdOiqTHd/t7kM3qrka85Dz+VvP vGMPvFVJ9tjyASYldHzlbdCzk15OM28i -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org