$ rpki-client -vvf rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft File: OUPUJhV5zeDoKgXKKrVLOHulGTM.mft (raw, json) Hash identifier: sgiau2im/yuSCIgD2lkeNmhT4bcoT4q6rfgfXyaB1AM= Subject key identifier: 58:68:2C:15:40:EE:99:8D:84:4B:68:80:33:1A:B4:23:7F:16:39:FE Authority key identifier: 39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 Certificate issuer: /CN=A919D88F/serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft Manifest number: 04 Signing time: Wed 23 Oct 2024 06:54:50 +0000 Manifest this update: Wed 23 Oct 2024 06:54:50 +0000 Manifest next update: Wed 30 Oct 2024 06:54:50 +0000 Files and hashes: 1: OUPUJhV5zeDoKgXKKrVLOHulGTM.crl (hash: RBW0X8W/ZQLAei1YkCPgOpMZMLWrT4xPXsLSk2R6svE=) 2: 31C36B64905F11EFAF49EB6BC4F9AE02.roa (hash: L+MQl2N4HWMJyowT/sQLapWMqlpwpjacwTEIlXHA4EM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D88F/serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Validity Not Before: Oct 23 06:54:50 2024 GMT Not After : Oct 30 06:54:50 2024 GMT Subject: CN=67189dba-8425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b6:19:a9:b7:0f:91:ec:c2:41:8f:14:3d:25: 01:01:4c:63:c4:21:ac:a0:c4:e4:12:5e:46:bd:43: 6e:ea:de:2f:e6:c1:77:a8:3b:10:26:45:06:62:29: bc:63:fb:3c:cc:8b:c1:1c:6b:f5:b6:4f:8d:f3:20: ab:f8:9d:05:f3:cb:d8:5b:b5:2f:2d:e3:6d:09:c3: cd:a2:3a:37:cf:92:a9:13:4e:66:37:1e:df:1a:28: d8:c6:83:8c:42:11:bc:b3:23:36:4f:ff:14:8c:11: f7:1d:b1:5a:ab:d9:4b:0e:58:07:d7:55:e1:40:11: c6:35:34:ab:18:8a:55:ab:82:17:32:0f:a3:c3:b7: b1:5a:f4:a1:fa:5b:82:88:9b:2c:7f:6d:44:45:df: c0:ba:99:ff:07:79:41:b2:54:9e:d6:7c:ae:a9:8f: 39:be:72:b5:00:6f:38:d9:92:ad:68:94:4c:da:d5: 3d:79:de:1f:0e:75:53:ae:78:5d:c3:6d:74:4c:2d: e7:98:4f:b1:01:86:53:71:d5:a5:8b:0e:c1:01:aa: a8:a6:08:b7:67:e4:d1:14:53:1a:df:8e:d3:68:34: d3:89:50:8e:43:4d:f6:7f:35:08:9f:c9:b9:75:0a: 1e:ef:c1:e2:ed:43:d6:91:aa:b3:1f:d8:7f:2a:eb: 70:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:68:2C:15:40:EE:99:8D:84:4B:68:80:33:1A:B4:23:7F:16:39:FE X509v3 Authority Key Identifier: keyid:39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:34:a4:ae:6a:5a:25:74:fe:e9:b3:3e:a4:c1:47:3c:e4:f6: 39:94:a9:d2:b6:c0:be:a1:c2:ea:62:55:17:f0:80:79:20:34: df:28:6e:2e:df:1c:37:ad:a3:1b:d2:b7:cb:67:01:8c:72:40: 28:31:e2:96:6a:8c:38:d7:c7:56:54:86:d9:a4:b0:ca:9a:33: db:ab:d8:66:af:4e:68:5e:4c:6f:f5:72:e5:5a:0b:0f:1d:c7: 61:8f:13:11:3d:5a:12:a8:c9:88:4a:66:21:7b:5c:56:f9:3d: fd:81:6b:60:d3:97:7a:c3:56:94:96:60:e1:46:10:cb:dd:cc: 51:82:44:fe:7c:b6:f4:dc:91:b7:2d:78:0f:5f:d4:ef:9c:f8: f4:32:76:ea:7d:ea:2d:d9:58:17:98:62:63:dd:91:69:0e:56: bc:e9:03:c8:28:4a:b7:49:9b:6d:c6:8b:f3:06:52:6c:e3:0f: 7a:82:dd:44:9f:0e:f7:5c:56:00:ee:f3:06:6d:ff:e9:f1:42: 71:b9:0b:0d:ee:ef:e2:ee:4a:3b:fc:e2:04:c5:e7:8b:b6:2b: d7:cc:39:3f:36:9a:d7:46:1e:47:24:0a:e3:ca:a2:11:b7:b1: ee:f9:57:a7:d1:1e:67:7e:1d:4e:1d:67:7c:f2:35:01:80:6e: ca:95:e7:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDg4RjExMC8GA1UEBRMoMzk0M0Q0MjYxNTc5Q0RFMEU4MkEwNUNBMkFCNTRCMzg3 QkE1MTkzMzAeFw0yNDEwMjMwNjU0NTBaFw0yNDEwMzAwNjU0NTBaMBgxFjAUBgNV BAMTDTY3MTg5ZGJhLTg0MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCRthmptw+R7MJBjxQ9JQEBTGPEIaygxOQSXka9Q27q3i/mwXeoOxAmRQZiKbxj +zzMi8Eca/W2T43zIKv4nQXzy9hbtS8t420Jw82iOjfPkqkTTmY3Ht8aKNjGg4xC EbyzIzZP/xSMEfcdsVqr2UsOWAfXVeFAEcY1NKsYilWrghcyD6PDt7Fa9KH6W4KI myx/bURF38C6mf8HeUGyVJ7WfK6pjzm+crUAbzjZkq1olEza1T153h8OdVOueF3D bXRMLeeYT7EBhlNx1aWLDsEBqqimCLdn5NEUUxrfjtNoNNOJUI5DTfZ/NQifybl1 Ch7vweLtQ9aRqrMf2H8q63A3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWGgsFUDu mY2ES2iAMxq0I38WOf4wHwYDVR0jBBgwFoAUOUPUJhV5zeDoKgXKKrVLOHulGTMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEODhGLzg0QTVCQzgwOTA1 RDExRUZBNEYzMUQyRUM0RjlBRTAyL09VUFVKaFY1emVEb0tnWEtLclZMT0h1bEdU TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1VQVUpoVjV6ZURvS2dYS0tyVkxPSHVsR1RNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE ODhGLzg0QTVCQzgwOTA1RDExRUZBNEYzMUQyRUM0RjlBRTAyL09VUFVKaFY1emVE b0tnWEtLclZMT0h1bEdUTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI40pK5qWiV0/umzPqTBRzzk9jmUqdK2wL6hwupiVRfwgHkgNN8obi7f HDetoxvSt8tnAYxyQCgx4pZqjDjXx1ZUhtmksMqaM9ur2GavTmheTG/1cuVaCw8d x2GPExE9WhKoyYhKZiF7XFb5Pf2Ba2DTl3rDVpSWYOFGEMvdzFGCRP58tvTckbct eA9f1O+c+PQydup96i3ZWBeYYmPdkWkOVrzpA8goSrdJm23Gi/MGUmzjD3qC3USf DvdcVgDu8wZt/+nxQnG5Cw3u7+LuSjv84gTF54u2K9fMOT82mtdGHkckCuPKohG3 se75V6fRHmd+HU4dZ3zyNQGAbsqV53M= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:58 2024 by rpki-client on console-ams.rpki-client.org