$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: ZK1CF2ToHwaBOCa4yOkn/ASFCY2HayC0Mvxl8/G2e5E= Subject key identifier: 79:B3:A3:50:4B:18:53:29:C6:5F:6F:DF:5D:29:DA:A4:67:BB:BF:2A Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 0246 Signing time: Thu 21 Nov 2024 01:20:58 +0000 Manifest this update: Thu 21 Nov 2024 01:20:58 +0000 Manifest next update: Thu 28 Nov 2024 01:20:58 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: HfXYAO8nDnziKhrNP+KhsdiSwRsaqjklVd+fry1SW6s=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: m2ymxbp9bibtqYct6a7VfehiW03KNEWGSV8uvf4S5FQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Nov 21 01:20:58 2024 GMT Not After : Nov 28 01:20:58 2024 GMT Subject: CN=673e8afa-9a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:25:62:b1:f8:94:42:95:99:6b:51:2f:ad:66: 94:be:70:18:b1:61:eb:82:29:58:e6:8c:91:55:84: 1b:57:af:df:e1:1b:8b:32:1f:08:ff:90:4c:af:77: 18:7a:31:cf:c1:2d:58:b9:18:f3:be:df:7f:97:c5: 7f:b4:e8:f7:dc:e4:fb:db:4a:38:60:ba:12:27:5e: 55:e1:3d:cd:56:91:6b:59:0f:a7:87:c7:4f:2b:fa: b2:f8:1e:62:c0:58:76:9d:fa:f4:e3:7d:75:88:37: 68:06:a3:d4:8b:71:43:a4:0d:df:c2:28:ac:a6:db: 05:df:1c:ad:64:7c:5a:2f:28:0d:da:7b:8f:e1:07: 20:6f:32:88:b7:8c:96:e5:c4:ed:f7:c3:a6:86:e2: c7:b2:ed:e5:ca:a7:e4:7c:42:de:6a:27:3b:5d:5f: 49:54:13:89:30:df:bd:0e:a5:90:70:0c:cb:e5:32: 7f:05:c8:c4:e8:36:8f:02:35:af:8f:3d:62:3c:f5: 43:0c:af:41:a9:01:7b:98:45:39:20:8b:d4:af:92: 29:4d:bb:6e:28:a5:7c:24:04:b7:67:3e:1b:3a:9e: 9c:66:29:7d:d2:73:0a:4b:77:57:00:46:9d:52:35: 60:38:e6:0b:26:76:de:b9:c3:25:b4:2f:91:f9:51: 73:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B3:A3:50:4B:18:53:29:C6:5F:6F:DF:5D:29:DA:A4:67:BB:BF:2A X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7b:f5:c9:60:0a:23:83:c0:54:04:ad:1b:7f:a5:5b:97:1b: 1b:ff:b7:cd:7c:de:b5:be:e9:bc:ff:61:73:a2:03:eb:10:d4: 6c:1e:f9:74:ac:aa:66:b8:f5:4e:39:e1:b3:84:00:49:22:6f: 2e:ce:13:50:5c:38:8a:33:4c:6a:ab:cc:23:6b:c5:8b:3f:60: 62:dc:05:26:fb:f3:e0:66:91:6d:51:5e:e4:a5:17:48:01:51: 08:2f:e2:b1:10:6f:65:79:ce:65:b6:60:f6:c1:bb:00:27:87: 12:76:85:e9:ae:48:b2:a5:5b:d6:41:0a:f1:15:0f:02:dd:db: 54:c5:eb:4e:42:4f:7a:fe:6b:23:b4:08:33:3f:1d:ed:ab:12: e7:2b:3c:87:04:3b:83:9c:04:79:eb:0d:0f:09:07:71:02:fb: ec:e0:ba:63:3d:05:2a:d4:fb:d5:bf:f5:db:d9:d0:54:58:01: 1d:e6:9d:5f:25:82:79:a0:16:8a:c7:3d:ee:4d:ea:c7:af:b7: ab:01:0c:08:12:d9:43:cc:52:fc:7f:a4:66:8c:35:4f:a5:6c: cd:9c:eb:8b:da:d0:66:e0:8c:28:57:48:29:54:b2:1c:82:ab: 3d:a6:4a:c8:55:71:5d:0f:29:29:19:ef:f4:eb:16:87:9e:d2: 57:9c:a1:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjQxMTIxMDEyMDU4WhcNMjQxMTI4MDEyMDU4WjAYMRYwFAYD VQQDEw02NzNlOGFmYS05YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6SVisfiUQpWZa1EvrWaUvnAYsWHrgilY5oyRVYQbV6/f4RuLMh8I/5BMr3cY ejHPwS1YuRjzvt9/l8V/tOj33OT720o4YLoSJ15V4T3NVpFrWQ+nh8dPK/qy+B5i wFh2nfr04311iDdoBqPUi3FDpA3fwiisptsF3xytZHxaLygN2nuP4QcgbzKIt4yW 5cTt98OmhuLHsu3lyqfkfELeaic7XV9JVBOJMN+9DqWQcAzL5TJ/BcjE6DaPAjWv jz1iPPVDDK9BqQF7mEU5IIvUr5IpTbtuKKV8JAS3Zz4bOp6cZil90nMKS3dXAEad UjVgOOYLJnbeucMltC+R+VFzwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmzo1BL GFMpxl9v310p2qRnu78qMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBze/XJYAojg8BUBK0bf6Vblxsb/7fNfN61vum8/2FzogPrENRsHvl0 rKpmuPVOOeGzhABJIm8uzhNQXDiKM0xqq8wja8WLP2Bi3AUm+/PgZpFtUV7kpRdI AVEIL+KxEG9lec5ltmD2wbsAJ4cSdoXprkiypVvWQQrxFQ8C3dtUxetOQk96/msj tAgzPx3tqxLnKzyHBDuDnAR56w0PCQdxAvvs4LpjPQUq1PvVv/Xb2dBUWAEd5p1f JYJ5oBaKxz3uTerHr7erAQwIEtlDzFL8f6RmjDVPpWzNnOuL2tBm4IwoV0gpVLIc gqs9pkrIVXFdDykpGe/06xaHntJXnKEu -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org