$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: 2H8yCIOUNZMPTDYFtu0nkdmvduJQRliGPkAN+SUn/oo= Subject key identifier: 61:FA:2C:09:38:E2:8A:4A:31:94:FB:E4:9A:61:75:9D:55:12:7A:C0 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 07D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 07C0 Signing time: Fri 22 Nov 2024 20:44:15 +0000 Manifest this update: Fri 22 Nov 2024 20:44:14 +0000 Manifest next update: Fri 29 Nov 2024 20:44:14 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: GOC1rVO6iu9zZ4PwNX2uIAoFN9Dj/Mq0CMaf2YxdFog=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Nov 22 20:44:14 2024 GMT Not After : Nov 29 20:44:14 2024 GMT Subject: CN=6740ed1e-2e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:af:dd:04:3a:9b:d3:50:fd:ea:ca:a9:91: 10:61:fa:cf:3b:28:e7:06:91:67:3d:3f:d0:01:93: 16:c9:34:26:a3:21:77:3a:29:5e:94:86:b4:2a:3e: 19:e8:30:1e:ec:d4:7d:9a:07:69:cf:1c:a1:c4:37: 67:d7:b9:19:62:a0:7f:46:98:f8:01:ba:19:b8:d7: d2:d0:ae:3b:b6:db:60:b0:15:10:00:08:7e:f6:3f: 60:d9:ae:01:78:b9:f3:a6:88:e0:67:ed:94:a3:a2: 7c:41:cf:51:02:37:c5:24:f7:62:57:4b:93:13:64: f6:fb:2f:34:00:f0:64:05:19:1f:f6:f3:d3:30:58: bb:33:ce:bc:b8:ef:c7:c3:3e:ab:1d:8d:bb:b9:8a: 02:90:11:e5:35:2d:aa:27:b5:61:ce:74:4e:d0:b7: d2:15:fe:8b:a9:86:b2:5e:49:91:b8:b0:d0:10:8d: 2e:43:eb:f8:c6:72:ee:fa:3c:a1:ef:51:d1:83:fb: 81:40:63:26:19:5c:10:44:23:4c:06:59:17:2c:c3: 00:7a:84:4f:5f:18:14:50:d0:c6:ee:1c:19:34:ae: b1:97:48:6a:a6:27:35:b5:50:de:b6:a8:43:4e:72: ac:0f:9a:3b:b7:b2:26:4b:a7:60:7d:ff:16:a2:cc: f5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FA:2C:09:38:E2:8A:4A:31:94:FB:E4:9A:61:75:9D:55:12:7A:C0 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:83:fb:82:0d:be:b1:c4:e2:98:18:21:37:ac:50:31:57:42: 51:d4:c8:1b:93:49:fb:8d:19:db:44:0e:70:0b:e8:dd:d8:8e: 84:96:d1:b2:5b:4e:85:e9:11:4c:a8:85:0c:6b:68:f3:6b:db: 92:03:d0:a3:5d:3e:73:38:49:a5:9f:93:21:e5:00:1f:74:8e: 6d:fd:e4:48:07:3d:d7:a0:ef:d6:41:53:7b:98:0d:39:62:15: ec:6f:7a:4a:ec:1b:64:e8:f3:49:d2:95:c3:20:3b:6e:61:6b: 51:3e:45:ff:43:2d:be:c5:4c:1e:67:42:54:0c:a2:e1:53:07: e2:39:c1:29:b1:86:43:6f:36:c2:da:73:6c:e4:7b:cc:7a:44: e8:bc:3a:16:20:d6:26:4c:52:75:54:51:aa:f6:74:02:47:a5: a0:92:f1:01:52:aa:83:98:83:17:44:e8:ea:8d:9a:1f:cd:0e: 0c:59:42:00:2d:e3:72:8f:cc:43:f6:72:38:3c:1e:15:00:03: 96:1d:97:93:a7:07:a4:40:5d:cc:5c:92:a2:22:fe:42:04:2b: 30:69:2d:14:25:c7:18:68:78:d8:ec:e8:cc:2c:db:b4:ba:38: d9:40:31:20:49:0c:11:fa:74:de:c6:5e:d0:9b:6c:cb:c5:b4: 7a:5d:28:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjQxMTIyMjA0NDE0WhcNMjQxMTI5MjA0NDE0WjAYMRYwFAYD VQQDEw02NzQwZWQxZS0yZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn6v3QQ6m9NQ/erKqZEQYfrPOyjnBpFnPT/QAZMWyTQmoyF3OilelIa0Kj4Z 6DAe7NR9mgdpzxyhxDdn17kZYqB/Rpj4AboZuNfS0K47tttgsBUQAAh+9j9g2a4B eLnzpojgZ+2Uo6J8Qc9RAjfFJPdiV0uTE2T2+y80APBkBRkf9vPTMFi7M868uO/H wz6rHY27uYoCkBHlNS2qJ7VhznRO0LfSFf6LqYayXkmRuLDQEI0uQ+v4xnLu+jyh 71HRg/uBQGMmGVwQRCNMBlkXLMMAeoRPXxgUUNDG7hwZNK6xl0hqpic1tVDetqhD TnKsD5o7t7ImS6dgff8Wosz1CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGH6LAk4 4opKMZT75JphdZ1VEnrAMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRg/uCDb6xxOKYGCE3rFAxV0JR1Mgbk0n7jRnbRA5wC+jd2I6EltGy W06F6RFMqIUMa2jza9uSA9CjXT5zOEmln5Mh5QAfdI5t/eRIBz3XoO/WQVN7mA05 YhXsb3pK7Btk6PNJ0pXDIDtuYWtRPkX/Qy2+xUweZ0JUDKLhUwfiOcEpsYZDbzbC 2nNs5HvMekTovDoWINYmTFJ1VFGq9nQCR6WgkvEBUqqDmIMXROjqjZofzQ4MWUIA LeNyj8xD9nI4PB4VAAOWHZeTpwekQF3MXJKiIv5CBCswaS0UJccYaHjY7OjMLNu0 ujjZQDEgSQwR+nTexl7Qm2zLxbR6XSib -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org