$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: bPQsPvbvVYo3dPOxFW+fmJ+MVfmjzQdmQvKh2fTdycU= Subject key identifier: 50:AD:0C:7E:F8:F6:2B:23:97:E3:B2:4C:5D:D4:69:0C:39:BD:F6:BD Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: A1 Signing time: Thu 21 Nov 2024 04:25:15 +0000 Manifest this update: Thu 21 Nov 2024 04:25:14 +0000 Manifest next update: Thu 28 Nov 2024 04:25:14 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: wAdIPRnq2ymAdqpphYCXcSeGPgd6rmtEatpnIVtrs1g=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Nov 21 04:25:14 2024 GMT Not After : Nov 28 04:25:14 2024 GMT Subject: CN=673eb62b-ef2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c6:ff:bf:23:92:3e:d1:24:b7:51:ec:27:b9: 4b:1d:84:f3:1d:31:69:9e:2b:e1:9d:23:a1:57:02: 74:7f:ad:08:9c:79:15:f8:4e:63:f6:9c:13:cb:ae: c5:7b:65:32:40:79:a6:08:79:d6:3c:e3:b6:c6:4b: f6:e0:d6:81:36:14:d1:67:29:00:2b:26:27:4b:f6: 9e:20:2a:93:8a:04:f6:64:52:80:38:97:91:0c:10: 02:74:09:ba:c6:a2:f2:59:eb:38:f0:bd:56:7e:4d: af:43:c3:dd:10:02:76:91:61:9c:cc:cf:b3:22:10: 5c:b7:1a:37:6f:3b:14:48:de:82:b5:29:93:3a:55: d1:0b:65:72:8e:18:e8:f2:a1:71:2c:fd:49:5d:d9: 15:4b:b2:66:be:13:12:2d:bb:1f:f8:c3:c6:bb:88: c1:0d:aa:6e:5e:a5:a1:c5:83:05:6d:36:c9:57:4d: 0e:e1:60:44:fb:cd:bc:68:54:e1:c0:1a:75:ac:66: f0:78:51:e0:9f:8c:90:6b:db:e1:10:98:d6:a3:fb: 9f:af:72:84:19:b5:ce:2c:ac:78:ad:87:0d:3a:e0: eb:af:03:c9:97:54:22:81:85:b1:f1:07:40:d6:73: 99:fb:c3:e5:71:7a:a8:a3:46:ab:6e:e9:a7:07:77: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:AD:0C:7E:F8:F6:2B:23:97:E3:B2:4C:5D:D4:69:0C:39:BD:F6:BD X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5f:0b:2c:a8:d1:da:76:41:87:6f:69:83:69:32:e5:58:7b: a0:4f:b9:c0:97:3f:99:01:95:0d:84:93:51:2d:4b:75:f3:e7: 5f:a1:ba:38:cb:81:54:5f:46:98:a1:3a:a3:a1:27:ed:df:d5: 94:00:27:c3:97:7e:d8:10:5b:21:3a:fe:07:6e:20:ac:a2:c8: 73:6d:f9:2f:9a:98:28:3e:9a:12:b7:96:88:8d:d8:13:f1:94: 60:94:47:fb:f8:bb:9a:72:ea:d9:36:7f:27:1a:fe:f9:f4:47: d9:68:cb:a5:30:d9:9b:80:cb:61:7c:64:d0:d2:53:58:c1:bf: 49:33:20:68:67:5a:28:06:64:81:a3:72:8b:f2:fc:e8:4d:27: 72:ff:8f:6d:94:e5:f9:c0:16:a4:d3:c7:9d:1b:d7:1f:c9:07: 05:9d:e9:40:da:90:19:43:9a:78:51:ca:43:6d:c8:31:a6:d4: d8:0f:8a:f2:58:79:95:9a:89:67:23:68:2b:5a:72:f3:10:92: b0:f5:10:d2:ea:2b:5f:6d:24:31:85:dd:e3:0b:41:a0:08:23: 6e:33:08:a3:3a:51:65:5b:1b:3c:70:41:8b:6a:99:bd:b3:67: 97:ff:3a:6e:55:bf:af:ff:72:65:f2:37:81:34:44:1e:f2:57: 3b:dc:56:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjQxMTIxMDQyNTE0WhcNMjQxMTI4MDQyNTE0WjAYMRYwFAYD VQQDEw02NzNlYjYyYi1lZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsb/vyOSPtEkt1HsJ7lLHYTzHTFpnivhnSOhVwJ0f60InHkV+E5j9pwTy67F e2UyQHmmCHnWPOO2xkv24NaBNhTRZykAKyYnS/aeICqTigT2ZFKAOJeRDBACdAm6 xqLyWes48L1Wfk2vQ8PdEAJ2kWGczM+zIhBctxo3bzsUSN6CtSmTOlXRC2Vyjhjo 8qFxLP1JXdkVS7JmvhMSLbsf+MPGu4jBDapuXqWhxYMFbTbJV00O4WBE+828aFTh wBp1rGbweFHgn4yQa9vhEJjWo/ufr3KEGbXOLKx4rYcNOuDrrwPJl1QigYWx8QdA 1nOZ+8PlcXqoo0arbumnB3f16wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCtDH74 9isjl+OyTF3UaQw5vfa9MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZXwssqNHadkGHb2mDaTLlWHugT7nAlz+ZAZUNhJNRLUt18+dfobo4 y4FUX0aYoTqjoSft39WUACfDl37YEFshOv4HbiCsoshzbfkvmpgoPpoSt5aIjdgT 8ZRglEf7+LuacurZNn8nGv759EfZaMulMNmbgMthfGTQ0lNYwb9JMyBoZ1ooBmSB o3KL8vzoTSdy/49tlOX5wBak08edG9cfyQcFnelA2pAZQ5p4UcpDbcgxptTYD4ry WHmVmolnI2grWnLzEJKw9RDS6itfbSQxhd3jC0GgCCNuMwijOlFlWxs8cEGLapm9 s2eX/zpuVb+v/3Jl8jeBNEQe8lc73FZZ -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org