$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: oMlaQ5G+BXVyj8CbZM3vQuYrgKI5cdyFrBBNIonkiD0= Subject key identifier: DA:FC:66:92:D6:B8:8C:A5:8A:DE:06:F0:A5:B8:DC:B8:9E:81:6F:82 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 010A Signing time: Thu 21 Nov 2024 03:29:18 +0000 Manifest this update: Thu 21 Nov 2024 03:29:18 +0000 Manifest next update: Thu 28 Nov 2024 03:29:18 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: Fm6btc1uNpOISwSxKsCKv13H/JTlsmld1d3kldydoJI=) 2: 52029FF66B4F11EFAEF62166C4F9AE02.roa (hash: AahZ+Qe22CEKGofJ9I0IWIyRF9dSrKzoTGk/BsP9v5c=) 3: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: gZsn2HT8wdkk8V9kPIX/PrYWbNbTXu5bTe/wvaT34e0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Nov 21 03:29:18 2024 GMT Not After : Nov 28 03:29:18 2024 GMT Subject: CN=673ea90e-952a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:ab:b3:4c:ec:bd:3a:b3:b7:f7:f9:3c:55: 3e:59:34:ed:93:1e:7c:b3:53:82:e6:22:1e:d9:ef: 47:88:5b:5e:af:0b:76:83:9f:2b:f2:52:00:25:09: 99:6b:2b:89:0d:81:7d:cc:46:be:3b:3f:bc:f7:c0: 52:f5:e3:65:aa:f9:6d:5b:6e:b0:fa:50:de:d1:c5: 47:a4:7d:03:9d:f3:18:de:fb:a3:ae:1e:0e:c7:47: 40:8d:a4:58:69:d3:13:3d:d9:4b:cc:8e:eb:bf:a0: a6:c7:4f:f7:27:90:d6:3c:93:74:85:e7:0d:52:09: 31:20:58:3d:9c:3c:2a:1b:8b:7d:56:8a:03:3f:09: cf:89:94:34:92:45:6b:3b:53:90:bd:92:6a:e2:79: 9a:bb:05:d0:40:c8:e1:c9:32:5b:b2:2e:c0:4d:93: e4:1b:fd:b9:5b:22:14:bd:32:63:ff:0a:ff:ea:56: f8:49:77:56:b7:f8:cb:90:64:76:0b:30:66:c1:d5: 57:75:48:f2:96:b7:b6:86:4f:bc:fd:70:81:17:8c: fb:e6:1c:f9:ec:be:5e:6b:0f:33:d1:54:27:0e:b5: b8:81:5a:ed:5e:58:65:d3:05:5f:98:34:f4:83:b6: 6f:5d:44:88:cb:86:f1:50:82:b4:e5:93:4d:f9:73: 12:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FC:66:92:D6:B8:8C:A5:8A:DE:06:F0:A5:B8:DC:B8:9E:81:6F:82 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:77:3f:cd:12:bc:17:c3:88:05:f7:08:d2:73:c8:fb:82:05: 76:d4:28:7e:e0:06:4c:ce:60:ff:6e:8d:60:4a:38:f2:35:b5: bb:68:4a:ea:9b:55:94:94:4a:7c:db:1d:8b:50:19:6b:6e:ce: ed:2b:22:af:6c:c5:f2:8a:df:88:5e:7b:22:62:d2:16:9f:eb: ba:08:14:b3:f1:c6:9e:28:ed:56:0e:11:25:27:7d:8d:96:03: 19:5c:b6:6d:7e:c7:13:37:23:ab:27:74:3d:03:ad:03:2a:75: 81:fd:ef:23:d5:40:da:d4:97:e5:f5:1c:c4:59:bd:ad:a7:2c: 62:73:ea:0a:65:02:01:77:9c:dc:c3:7c:c1:9b:b9:d3:84:7b: 52:dd:4c:fb:06:10:f0:b5:11:00:67:50:ba:c8:64:4a:77:0b: e4:7b:e2:68:f5:bc:06:02:0c:93:ee:40:69:2d:e1:69:33:73: 2e:1b:54:b0:52:35:ea:96:fa:c2:02:34:0c:ec:2e:87:8f:ae: 0a:b1:6f:f5:20:1d:d1:28:51:8f:27:b3:20:a0:47:9c:eb:a3: e6:2b:7b:d6:1d:11:51:8c:33:96:bf:33:a6:d8:be:26:a2:00: 92:d6:84:38:dd:fe:f4:be:27:dd:72:fa:02:1b:ec:dc:67:80: 0c:7f:0c:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjQxMTIxMDMyOTE4WhcNMjQxMTI4MDMyOTE4WjAYMRYwFAYD VQQDEw02NzNlYTkwZS05NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqmrs0zsvTqzt/f5PFU+WTTtkx58s1OC5iIe2e9HiFterwt2g58r8lIAJQmZ ayuJDYF9zEa+Oz+898BS9eNlqvltW26w+lDe0cVHpH0DnfMY3vujrh4Ox0dAjaRY adMTPdlLzI7rv6Cmx0/3J5DWPJN0hecNUgkxIFg9nDwqG4t9VooDPwnPiZQ0kkVr O1OQvZJq4nmauwXQQMjhyTJbsi7ATZPkG/25WyIUvTJj/wr/6lb4SXdWt/jLkGR2 CzBmwdVXdUjylre2hk+8/XCBF4z75hz57L5eaw8z0VQnDrW4gVrtXlhl0wVfmDT0 g7ZvXUSIy4bxUIK05ZNN+XMS3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr8ZpLW uIylit4G8KW43LiegW+CMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFdz/NErwXw4gF9wjSc8j7ggV21Ch+4AZMzmD/bo1gSjjyNbW7aErq m1WUlEp82x2LUBlrbs7tKyKvbMXyit+IXnsiYtIWn+u6CBSz8caeKO1WDhElJ32N lgMZXLZtfscTNyOrJ3Q9A60DKnWB/e8j1UDa1Jfl9RzEWb2tpyxic+oKZQIBd5zc w3zBm7nThHtS3Uz7BhDwtREAZ1C6yGRKdwvke+Jo9bwGAgyT7kBpLeFpM3MuG1Sw UjXqlvrCAjQM7C6Hj64KsW/1IB3RKFGPJ7MgoEec66PmK3vWHRFRjDOWvzOm2L4m ogCS1oQ43f70vifdcvoCG+zcZ4AMfwxB -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:01 2024 by rpki-client on console-fra.rpki-client.org