$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: FChxU33GUvjlyF/LfP9DYDwFNpl0eoLo3dbCjsIxfEI= Subject key identifier: DB:72:EC:C9:18:52:14:07:DE:C0:23:0C:BC:CE:9B:D6:0D:00:24:03 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 09A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0998 Signing time: Fri 22 Nov 2024 19:49:29 +0000 Manifest this update: Fri 22 Nov 2024 19:49:29 +0000 Manifest next update: Fri 29 Nov 2024 19:49:29 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: ne63h2DJmT+3wQwCA5SPtQtEm5mDloblshm89n93qZk=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: Ppkzsr60oRdN5wiOLOk9zEX5+OsQNQur5z6iE1GywgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2470 (0x9a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Nov 22 19:49:29 2024 GMT Not After : Nov 29 19:49:29 2024 GMT Subject: CN=6740e049-2515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:1e:60:5e:22:2a:cf:97:09:f3:e7:75:20: 85:0f:98:4e:62:f3:d4:31:b5:26:5f:b0:5a:3f:81: 3b:a1:53:89:31:df:72:8b:5f:cc:aa:17:54:ee:5c: 16:60:1d:ef:70:14:8c:76:db:72:d6:50:8f:a5:d7: e8:d5:55:a0:31:d1:cc:e7:9a:21:7d:23:6e:0b:6b: a5:2e:95:40:b7:08:d1:3b:9f:94:bb:c3:7d:4f:36: ec:34:ad:9c:03:b2:72:ea:4a:11:0d:b1:69:90:25: ff:52:ce:13:65:fb:c6:e4:4e:39:73:84:a6:16:d4: d3:f4:f6:4f:df:51:ce:e9:e8:df:2a:c0:c4:37:44: 85:53:df:07:85:58:01:87:18:47:e0:e3:43:8c:21: 08:c7:ec:aa:2c:1f:7e:62:33:cf:12:52:88:87:63: 81:81:d3:ef:cc:64:f6:59:52:79:15:cb:0f:67:e8: 70:1d:83:a3:ab:69:85:b5:37:55:32:12:31:2d:b5: 36:9a:ba:ee:a0:aa:a7:3b:69:0e:a6:63:1a:d8:aa: 85:42:a9:44:c4:e3:eb:c0:b4:74:21:74:f3:05:6b: 3a:07:f5:3c:63:ba:88:c8:54:52:f4:64:0a:da:99: 45:09:18:f5:8e:c0:5d:11:0a:09:ec:bb:bf:c2:4f: 70:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:72:EC:C9:18:52:14:07:DE:C0:23:0C:BC:CE:9B:D6:0D:00:24:03 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:69:a8:3e:2a:51:40:e1:e2:79:63:83:12:88:12:90:e1:91: be:e8:2d:5f:30:a7:3e:67:49:52:46:aa:97:e1:39:0c:ea:be: ff:d9:01:b8:8f:96:dc:91:06:f5:8e:3e:80:fe:13:8e:c1:3e: ea:0c:68:a9:10:d9:7c:49:23:d0:53:a2:df:a5:85:75:ae:77: 86:63:14:f3:1d:30:80:63:3d:97:54:8b:b9:62:a8:19:fc:11: 60:23:d4:c9:e4:bf:a7:23:45:4e:9c:5b:55:c2:63:14:b8:15: 11:9e:23:6e:a0:92:53:10:da:23:24:64:7f:60:75:b5:5b:f2: 10:53:b1:fa:4e:fc:2c:d5:21:b4:e1:4f:49:c8:bb:2b:24:47: 35:9e:2c:63:82:97:26:90:8c:69:75:9a:d9:00:17:14:9b:14: 78:d1:e4:60:22:2b:b9:29:5a:f9:1b:72:51:e6:31:9e:6f:e9: 46:42:8c:1d:42:e2:33:28:da:de:28:a7:6c:42:f9:40:fd:ee: a1:3f:f3:45:25:44:af:33:23:eb:c0:96:63:b5:43:19:fe:e6: 2e:2d:bf:28:6e:90:3d:6b:6d:0f:73:fc:6f:14:38:08:71:e9: 8d:16:1e:f9:16:fc:d0:f1:42:3e:74:e5:c6:52:3f:3c:7d:7e: 4d:b9:da:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjQxMTIyMTk0OTI5WhcNMjQxMTI5MTk0OTI5WjAYMRYwFAYD VQQDEw02NzQwZTA0OS0yNTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgUeYF4iKs+XCfPndSCFD5hOYvPUMbUmX7BaP4E7oVOJMd9yi1/MqhdU7lwW YB3vcBSMdtty1lCPpdfo1VWgMdHM55ohfSNuC2ulLpVAtwjRO5+Uu8N9TzbsNK2c A7Jy6koRDbFpkCX/Us4TZfvG5E45c4SmFtTT9PZP31HO6ejfKsDEN0SFU98HhVgB hxhH4ONDjCEIx+yqLB9+YjPPElKIh2OBgdPvzGT2WVJ5FcsPZ+hwHYOjq2mFtTdV MhIxLbU2mrruoKqnO2kOpmMa2KqFQqlExOPrwLR0IXTzBWs6B/U8Y7qIyFRS9GQK 2plFCRj1jsBdEQoJ7Lu/wk9wHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNty7MkY UhQH3sAjDLzOm9YNACQDMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWaag+KlFA4eJ5Y4MSiBKQ4ZG+6C1fMKc+Z0lSRqqX4TkM6r7/2QG4 j5bckQb1jj6A/hOOwT7qDGipENl8SSPQU6LfpYV1rneGYxTzHTCAYz2XVIu5YqgZ /BFgI9TJ5L+nI0VOnFtVwmMUuBURniNuoJJTENojJGR/YHW1W/IQU7H6Tvws1SG0 4U9JyLsrJEc1nixjgpcmkIxpdZrZABcUmxR40eRgIiu5KVr5G3JR5jGeb+lGQowd QuIzKNreKKdsQvlA/e6hP/NFJUSvMyPrwJZjtUMZ/uYuLb8obpA9a20Pc/xvFDgI cemNFh75FvzQ8UI+dOXGUj88fX5NudrW -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org