$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: iO4UAHEj1t02LjlCoLsYLeVub3O/esnFIXyHHaGVFsQ= Subject key identifier: 27:2C:F7:4F:62:39:B9:57:2E:C5:7C:74:13:08:51:80:FB:02:AD:1A Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 07F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 07EC Signing time: Fri 22 Nov 2024 20:39:08 +0000 Manifest this update: Fri 22 Nov 2024 20:39:07 +0000 Manifest next update: Fri 29 Nov 2024 20:39:07 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: xh4EPYOeAtGhnrbZOLIH6eDoAp+ezsMcQwbu99rTlzI=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: kBSFKLz8LnjDZ6O+bwDGlGgZ5ZDFmw7Q4gOGItD96sE=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: Al1m1aAhUy31yN3v1SptiV2uHlPjUIQuuReZVTdaqrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2038 (0x7f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: Nov 22 20:39:07 2024 GMT Not After : Nov 29 20:39:07 2024 GMT Subject: CN=6740ebec-6370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:18:d1:d2:5e:5a:83:d3:e6:9a:14:fd:df:43: 67:aa:82:e0:20:02:f8:64:21:24:22:12:89:f3:6e: ee:0b:2b:70:6e:65:6d:6c:8a:8f:9d:b2:5a:4a:45: 5a:24:c9:e5:c1:c4:90:76:e2:aa:49:25:29:71:53: 71:1d:9b:36:f4:d9:21:ee:83:6f:c6:75:8b:86:0b: ff:84:35:a0:d4:c3:ad:d7:a0:e5:86:b8:80:ee:5b: 9b:d6:6f:f3:ed:3b:e2:f8:10:64:d3:22:78:b1:85: ca:4d:b9:19:f6:7a:fe:f6:3e:d5:4b:67:ae:a4:9d: 35:b1:63:8c:39:81:5f:0e:3c:6a:0d:7c:04:ed:97: e0:30:07:8d:26:10:4d:22:dc:bb:2b:7d:75:12:78: 61:70:0c:ef:d7:bd:06:29:26:e9:dc:d4:dc:3b:19: bc:04:16:57:72:23:a5:10:42:1d:0c:f7:ec:87:df: c8:77:a8:e5:42:1a:ec:ee:a4:c1:29:48:74:46:60: b4:9f:37:2e:c4:60:06:81:d9:f8:82:7c:4f:4d:b9: 99:03:fd:86:87:67:3e:46:78:ca:2d:4e:95:59:61: 85:b4:34:b8:a4:40:99:b6:8e:37:48:69:2d:a2:67: 5b:47:02:47:5b:bc:c3:4e:29:5a:5b:15:b7:00:7a: fe:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2C:F7:4F:62:39:B9:57:2E:C5:7C:74:13:08:51:80:FB:02:AD:1A X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:0d:62:42:33:2e:27:d3:5a:a7:bd:65:d0:2b:16:40:eb:18: 3a:a9:92:cb:58:a7:30:20:71:70:6f:f8:d4:41:11:26:a7:05: cd:71:76:ff:b8:72:0f:87:22:00:58:7f:dd:c9:32:6b:b0:66: 15:d8:bc:67:29:e1:4b:a9:b0:fe:da:e3:34:a5:2b:51:54:ec: 8b:30:c0:98:08:1f:15:73:57:13:86:56:7f:32:d0:c4:9e:10: 22:7e:3a:3c:1a:30:54:53:05:64:c2:5c:92:4b:88:dc:6c:8b: f4:5e:e5:66:b6:6c:1d:ad:35:02:a1:a3:5b:57:82:9b:a6:3b: 20:fe:c7:15:cb:8e:d6:2b:7d:24:01:ff:de:ec:e6:6d:fe:cd: 43:4b:1d:65:96:ff:43:b4:92:66:21:5d:f8:7a:02:7e:00:00: 39:d6:a6:ea:b8:24:1a:70:a8:33:ec:73:d3:32:56:fa:19:c5: 92:29:99:f6:a5:bf:35:90:12:1a:ee:ec:c6:2c:b1:6e:86:f7: 3b:f8:0d:00:8f:63:92:aa:c3:82:00:5d:54:77:ac:81:10:d4: 7c:12:9b:6e:9c:17:87:61:4d:a2:de:0d:f9:ea:b0:c8:7f:98: ee:1c:5c:79:a6:fd:0f:e9:77:8f:76:b3:e5:5f:f5:aa:d5:72: d4:88:3c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjQxMTIyMjAzOTA3WhcNMjQxMTI5MjAzOTA3WjAYMRYwFAYD VQQDEw02NzQwZWJlYy02MzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hjR0l5ag9PmmhT930NnqoLgIAL4ZCEkIhKJ827uCytwbmVtbIqPnbJaSkVa JMnlwcSQduKqSSUpcVNxHZs29Nkh7oNvxnWLhgv/hDWg1MOt16DlhriA7lub1m/z 7Tvi+BBk0yJ4sYXKTbkZ9nr+9j7VS2eupJ01sWOMOYFfDjxqDXwE7ZfgMAeNJhBN Ity7K311EnhhcAzv170GKSbp3NTcOxm8BBZXciOlEEIdDPfsh9/Id6jlQhrs7qTB KUh0RmC0nzcuxGAGgdn4gnxPTbmZA/2Gh2c+RnjKLU6VWWGFtDS4pECZto43SGkt omdbRwJHW7zDTilaWxW3AHr+UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcs909i OblXLsV8dBMIUYD7Aq0aMB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxDWJCMy4n01qnvWXQKxZA6xg6qZLLWKcwIHFwb/jUQREmpwXNcXb/ uHIPhyIAWH/dyTJrsGYV2LxnKeFLqbD+2uM0pStRVOyLMMCYCB8Vc1cThlZ/MtDE nhAifjo8GjBUUwVkwlySS4jcbIv0XuVmtmwdrTUCoaNbV4Kbpjsg/scVy47WK30k Af/e7OZt/s1DSx1llv9DtJJmIV34egJ+AAA51qbquCQacKgz7HPTMlb6GcWSKZn2 pb81kBIa7uzGLLFuhvc7+A0Aj2OSqsOCAF1Ud6yBENR8EptunBeHYU2i3g356rDI f5juHFx5pv0P6XePdrPlX/Wq1XLUiDxg -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org