$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: hFrRdU8PEssPMX7vMxBmxIE85iug8i6CNHoP/hql+aE= Subject key identifier: A9:39:F2:55:14:92:12:63:4F:EA:C7:99:B2:EB:C7:F1:D0:7D:CA:99 Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 2387 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 5F37 Signing time: Wed 20 Nov 2024 14:15:19 +0000 Manifest this update: Wed 20 Nov 2024 14:15:19 +0000 Manifest next update: Wed 27 Nov 2024 14:15:19 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: S37OmZ97GxbjPyPYgAo3WqjmWOtJDiiWV0NyWSQqFOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9095 (0x2387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: Nov 20 14:15:19 2024 GMT Not After : Nov 27 14:15:19 2024 GMT Subject: CN=673deef7-b25f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e2:86:c5:a0:a8:f2:01:9f:3a:2a:c1:38:a1: e5:82:fc:81:ae:3f:41:2f:30:73:00:71:44:8a:4a: 7f:f3:13:e5:d1:ed:c0:3b:e0:e4:34:db:65:4e:0a: 41:59:05:e2:40:be:83:ae:cb:48:d4:c3:b8:86:48: 81:fa:d7:c3:eb:0c:7a:d6:09:6b:15:eb:c1:b8:6b: 24:3b:fc:88:dd:77:ff:f7:a2:75:8d:b7:71:ef:04: c5:e1:23:78:2e:4e:4d:67:6f:0d:31:95:82:ce:dc: 8f:38:09:49:c7:00:7f:ff:f5:ce:6e:c5:5b:03:36: 3b:54:e6:f9:fc:5d:f0:9b:11:02:4f:57:66:4d:80: 97:cb:e6:bd:e3:01:4f:ae:13:e2:e7:ff:35:a6:78: ad:b7:2d:db:f8:3e:ab:b8:fd:8d:5b:cb:bc:f7:01: 8a:a3:13:d9:16:02:22:7f:13:c8:e0:31:53:27:07: 7e:65:31:c2:36:8f:8c:75:d9:93:79:d2:2d:7d:09: 72:fc:c4:ae:cf:94:eb:4d:c8:91:e0:39:b0:60:11: 29:28:dc:cd:37:88:fe:b0:2f:c4:3e:5a:3a:fa:2b: 6f:f2:a0:67:db:7a:8f:cb:4f:9e:14:a5:fc:5a:7c: 02:62:88:63:94:9a:8e:ab:ff:2f:bd:a5:b6:23:37: 3c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:39:F2:55:14:92:12:63:4F:EA:C7:99:B2:EB:C7:F1:D0:7D:CA:99 X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:d5:28:8a:b6:1c:20:f9:92:03:2b:cd:c6:4c:b5:be:55:98: 9a:99:3a:61:6f:8a:8f:55:6e:3c:4d:89:a3:7d:66:72:42:3d: 6b:7c:44:e3:42:05:ef:ec:af:b0:ff:d5:d2:93:0f:99:44:1f: 78:f2:50:ee:b3:c9:6a:2a:f1:e7:74:52:7e:d9:6e:29:63:d7: dd:a1:cc:52:5c:d0:68:0f:9b:52:42:35:35:a6:e1:45:4e:b7: 1f:9e:f0:9f:3e:ec:b0:f2:79:5a:1e:fa:4f:80:05:8c:b1:1a: 5d:50:f6:9b:64:7e:f3:f5:0f:c9:63:58:48:0f:e0:3d:e7:ab: a4:ca:ba:c7:e1:a8:0f:30:f1:3b:82:b3:27:7e:f3:7b:3f:26: 17:05:3f:67:98:a9:70:24:cf:c0:e4:b0:76:5f:25:bc:35:ca: f4:31:a1:0c:e2:81:cd:08:2b:7b:57:49:d0:33:2f:59:9a:6f: db:5e:3d:58:eb:e7:50:0f:d1:c6:7c:db:6b:be:64:5a:f8:63: 42:e3:e0:6b:7e:ed:0d:96:2f:21:bf:f0:db:a2:a3:26:51:f1: c6:c3:4b:b0:46:18:0c:09:4e:5e:b7:78:4a:17:f7:fd:88:d6: a1:d0:8b:31:20:b9:64:a0:26:74:59:0c:5f:a2:c6:bb:75:d6: 2c:91:ef:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjQxMTIwMTQxNTE5WhcNMjQxMTI3MTQxNTE5WjAYMRYwFAYD VQQDEw02NzNkZWVmNy1iMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuKGxaCo8gGfOirBOKHlgvyBrj9BLzBzAHFEikp/8xPl0e3AO+DkNNtlTgpB WQXiQL6DrstI1MO4hkiB+tfD6wx61glrFevBuGskO/yI3Xf/96J1jbdx7wTF4SN4 Lk5NZ28NMZWCztyPOAlJxwB///XObsVbAzY7VOb5/F3wmxECT1dmTYCXy+a94wFP rhPi5/81pnitty3b+D6ruP2NW8u89wGKoxPZFgIifxPI4DFTJwd+ZTHCNo+MddmT edItfQly/MSuz5TrTciR4DmwYBEpKNzNN4j+sC/EPlo6+itv8qBn23qPy0+eFKX8 WnwCYohjlJqOq/8vvaW2Izc8swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk58lUU khJjT+rHmbLrx/HQfcqZMB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+1SiKthwg+ZIDK83GTLW+VZiamTphb4qPVW48TYmjfWZyQj1rfETj QgXv7K+w/9XSkw+ZRB948lDus8lqKvHndFJ+2W4pY9fdocxSXNBoD5tSQjU1puFF TrcfnvCfPuyw8nlaHvpPgAWMsRpdUPabZH7z9Q/JY1hID+A956ukyrrH4agPMPE7 grMnfvN7PyYXBT9nmKlwJM/A5LB2XyW8Ncr0MaEM4oHNCCt7V0nQMy9Zmm/bXj1Y 6+dQD9HGfNtrvmRa+GNC4+Brfu0Nli8hv/DboqMmUfHGw0uwRhgMCU5et3hKF/f9 iNah0IsxILlkoCZ0WQxfosa7ddYske+6 -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:00 2024 by rpki-client on console-fra.rpki-client.org