$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: yI+DzU72Fx3f7OtoLhoVQOr15znOYsgZTrjj3tcBr/g= Subject key identifier: 44:B2:6D:60:97:77:2D:94:63:FA:50:AE:27:BF:FA:83:45:34:1A:00 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 0890 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 0885 Signing time: Fri 22 Nov 2024 20:20:51 +0000 Manifest this update: Fri 22 Nov 2024 20:20:51 +0000 Manifest next update: Fri 29 Nov 2024 20:20:51 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: Ma6VnspiYv+sFZcqsOsPc8PGj6Wze6iHl3FsI8S2Kkg=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: 3hcEUgYqoshOk8lFFnh68Ppk5C9DLTGbNkZXNe5ZLqA=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: ao7owdTBxv72fQFQJlEFwxw2v4nLgAcrWGOJHUBmOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Nov 22 20:20:51 2024 GMT Not After : Nov 29 20:20:51 2024 GMT Subject: CN=6740e7a3-086b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:32:c6:ba:fa:c3:b6:99:99:99:04:05:8d: 7b:76:e4:52:12:88:20:24:44:82:7e:af:07:5b:b1: 91:88:c4:93:cb:10:44:ee:4d:42:4c:1d:c7:2b:2c: 28:d0:92:2b:ce:5d:20:68:f5:0d:41:86:47:1b:b4: 7d:55:e1:76:cd:21:b1:f4:86:b2:07:9a:13:07:b9: 37:d5:5e:e2:c1:e5:00:b5:df:31:f9:2b:69:4b:74: ad:d5:4f:bd:f6:85:5c:60:ab:16:57:80:ee:5f:b9: 67:df:2a:7a:ac:fb:35:fc:53:06:46:63:ed:e2:03: f5:38:d9:4a:47:3f:52:d7:f0:6c:0b:32:5d:cf:6b: 1f:0e:4b:15:cd:fe:be:f7:9c:d9:ec:dc:e9:70:e4: 35:12:f2:07:61:88:7c:30:83:4b:fe:4e:c0:65:de: 0a:6c:c6:d2:ec:ce:eb:9b:89:fe:5b:54:bd:1f:78: e3:4a:09:ef:d5:23:98:49:a8:ee:75:6e:49:64:b5: c9:1d:91:a7:93:3d:4d:da:80:03:cd:2d:40:70:55: 28:c5:65:6d:1f:5f:ec:4d:4f:c5:30:d5:40:45:a4: 5e:b0:80:d0:dd:a2:6d:9f:69:d5:08:77:5b:c9:97: c9:15:95:5b:f0:26:59:f9:86:c1:29:25:89:e6:ac: dc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B2:6D:60:97:77:2D:94:63:FA:50:AE:27:BF:FA:83:45:34:1A:00 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:21:60:95:21:db:b1:20:be:ea:a2:9f:98:b4:6c:7a:45:ff: d0:b7:cc:62:32:fd:ce:85:0b:67:02:05:34:3b:4f:78:95:d5: ec:10:cd:a1:30:2e:a5:a7:e0:85:ff:09:ed:59:6a:4a:27:16: 93:d9:2c:62:b4:60:4f:3f:a2:2b:9d:67:9d:4d:28:7b:79:2b: e4:40:0b:74:0f:27:80:27:c3:c6:be:f0:4c:59:50:fe:0f:5c: e8:0b:b8:54:88:38:37:7e:fb:34:b7:11:c4:b0:03:ad:36:3e: 81:1e:8f:4e:29:f1:70:f2:b2:ea:f1:d5:00:38:6f:3c:d6:53: e4:da:1c:1c:78:d1:c8:24:3c:9b:fb:54:f2:99:89:96:b5:bf: 72:dc:38:a4:e6:2f:79:0b:ee:ff:0c:db:b9:c1:71:48:68:5d: ef:ec:ce:0f:f2:ef:f9:db:cf:e6:08:19:85:e8:a0:85:0c:ad: 29:45:8f:78:4b:ca:d6:cb:5a:97:6c:78:b9:31:ba:81:82:e3: fa:9c:2c:04:e2:b2:4a:94:d5:15:04:76:3a:ff:dd:9a:a9:78: 68:0a:23:47:41:02:97:9e:db:66:ef:a0:bf:ce:7b:c6:01:3d: 65:06:f1:62:10:38:d8:dd:f2:ac:ec:12:7f:5d:a7:1f:59:38: a1:1c:9a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjQxMTIyMjAyMDUxWhcNMjQxMTI5MjAyMDUxWjAYMRYwFAYD VQQDEw02NzQwZTdhMy0wODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE8yxrr6w7aZmZkEBY17duRSEoggJESCfq8HW7GRiMSTyxBE7k1CTB3HKywo 0JIrzl0gaPUNQYZHG7R9VeF2zSGx9IayB5oTB7k31V7iweUAtd8x+StpS3St1U+9 9oVcYKsWV4DuX7ln3yp6rPs1/FMGRmPt4gP1ONlKRz9S1/BsCzJdz2sfDksVzf6+ 95zZ7NzpcOQ1EvIHYYh8MINL/k7AZd4KbMbS7M7rm4n+W1S9H3jjSgnv1SOYSaju dW5JZLXJHZGnkz1N2oADzS1AcFUoxWVtH1/sTU/FMNVARaResIDQ3aJtn2nVCHdb yZfJFZVb8CZZ+YbBKSWJ5qzcwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESybWCX dy2UY/pQrie/+oNFNBoAMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeIWCVIduxIL7qop+YtGx6Rf/Qt8xiMv3OhQtnAgU0O094ldXsEM2h MC6lp+CF/wntWWpKJxaT2SxitGBPP6IrnWedTSh7eSvkQAt0DyeAJ8PGvvBMWVD+ D1zoC7hUiDg3fvs0txHEsAOtNj6BHo9OKfFw8rLq8dUAOG881lPk2hwceNHIJDyb +1TymYmWtb9y3Dik5i95C+7/DNu5wXFIaF3v7M4P8u/528/mCBmF6KCFDK0pRY94 S8rWy1qXbHi5MbqBguP6nCwE4rJKlNUVBHY6/92aqXhoCiNHQQKXnttm76C/znvG AT1lBvFiEDjY3fKs7BJ/XacfWTihHJob -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org