$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: dS1SF1nxjTjyHg6PepvCHTmOO011lavVezxF9tUWR/A= Subject key identifier: F8:DD:1A:E5:99:11:B9:0F:06:4C:65:2C:0A:F6:EF:C8:38:BB:5F:8E Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 0F4A Signing time: Fri 22 Nov 2024 17:34:07 +0000 Manifest this update: Fri 22 Nov 2024 17:34:06 +0000 Manifest next update: Fri 29 Nov 2024 17:34:06 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: MgKt8RVIzQLkSD2Zgh7xB5yD6gIhN9BhMi6umnNGiP4=) 2: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: m7Wy3YFoVjfJbST/TvC6OeEgaS0QkcmFqzNu4bjOVjA=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: J6dUTU+B3rYnE6IuMVXfZpLt706z/3t+VN2bTVaCwns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Nov 22 17:34:06 2024 GMT Not After : Nov 29 17:34:06 2024 GMT Subject: CN=6740c08e-6d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:eb:6a:31:23:94:96:48:65:eb:ca:9f:3a: b4:9a:66:7b:de:37:f4:f1:64:39:99:a2:2c:f8:e1: 20:9a:be:57:35:3e:3d:be:d8:d5:53:26:fe:be:2f: e4:18:a0:8d:af:68:3c:13:6f:cf:23:cf:73:d7:10: b0:a5:3a:82:de:44:33:f0:f4:4d:cd:4c:6c:63:80: e9:3c:6d:3d:eb:a4:93:b9:c5:4d:59:99:d4:0c:07: 0b:5e:d3:38:e6:44:cc:0c:2a:f6:85:41:d5:fc:e1: 39:35:91:cc:c5:d9:66:bb:8a:d2:b5:1a:2f:cd:42: 0d:19:fc:42:a2:a5:0d:c8:a8:93:63:e0:1b:57:6a: fb:73:db:5e:37:98:c6:7c:61:e3:c8:20:6c:c3:3d: 00:ba:d9:14:ac:4d:48:99:a7:7f:3c:60:d6:99:a7: e5:33:73:98:ea:ec:55:c0:33:97:5f:48:0c:8f:dd: 51:5c:af:fe:02:73:f2:91:e7:7f:35:54:bf:7b:13: 20:b4:2c:ce:60:c7:fa:ee:a2:8a:d0:79:70:2c:6d: 92:86:9f:b5:78:b7:49:55:95:c8:4e:03:fc:f7:24: 83:61:f4:7d:26:77:2f:16:48:99:49:f2:0a:8b:9e: d0:70:2b:a9:e0:28:8b:f0:f8:7d:b2:85:4c:5f:86: db:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:DD:1A:E5:99:11:B9:0F:06:4C:65:2C:0A:F6:EF:C8:38:BB:5F:8E X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:dc:f9:23:ee:17:f7:c6:b2:75:55:64:01:b6:a6:40:3c:be: 2b:b5:82:9d:e4:89:2b:72:f2:2f:1e:5c:d1:a3:50:8f:16:5c: b2:e0:cb:bc:86:3d:41:47:57:be:81:ed:d3:b3:da:16:d5:38: 5c:8d:66:08:79:0e:fe:1f:10:ec:eb:6f:b2:8e:a5:0a:2e:6a: 38:88:7a:c9:71:e6:7d:f9:8d:49:83:48:88:c9:8c:41:4d:10: ed:7e:32:b0:d3:8c:04:81:a4:ed:b0:00:fa:aa:31:bb:7b:e6: 63:63:83:7b:f7:2e:c7:6a:a7:1d:7a:77:e7:6d:d9:c1:f9:3f: 43:88:7d:00:0b:9d:9a:5d:26:c8:d1:0a:a3:9f:3e:cb:4b:b6: e0:66:b9:6c:90:d3:81:73:23:d6:dd:3e:07:19:59:a5:1a:ac: 94:bf:8b:3f:f9:73:18:ab:7d:68:3c:b3:b7:24:13:da:7a:43: 05:bd:67:98:67:cf:9a:80:1a:82:2c:78:50:ca:4e:bc:56:1c: 7a:b9:9b:c5:12:15:ff:ea:4b:9f:61:a1:86:b2:67:98:ee:50: 55:40:c8:92:e8:1b:92:6c:f9:fe:bf:13:6d:57:09:3b:db:db: a4:20:5c:b5:0d:31:dc:34:e3:f1:8f:85:f0:43:33:15:dd:de: db:08:d7:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjQxMTIyMTczNDA2WhcNMjQxMTI5MTczNDA2WjAYMRYwFAYD VQQDEw02NzQwYzA4ZS02ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyPrajEjlJZIZevKnzq0mmZ73jf08WQ5maIs+OEgmr5XNT49vtjVUyb+vi/k GKCNr2g8E2/PI89z1xCwpTqC3kQz8PRNzUxsY4DpPG0966STucVNWZnUDAcLXtM4 5kTMDCr2hUHV/OE5NZHMxdlmu4rStRovzUINGfxCoqUNyKiTY+AbV2r7c9teN5jG fGHjyCBswz0AutkUrE1Imad/PGDWmaflM3OY6uxVwDOXX0gMj91RXK/+AnPyked/ NVS/exMgtCzOYMf67qKK0HlwLG2Shp+1eLdJVZXITgP89ySDYfR9JncvFkiZSfIK i57QcCup4CiL8Ph9soVMX4bbWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjdGuWZ EbkPBkxlLAr278g4u1+OMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV3Pkj7hf3xrJ1VWQBtqZAPL4rtYKd5IkrcvIvHlzRo1CPFlyy4Mu8 hj1BR1e+ge3Ts9oW1ThcjWYIeQ7+HxDs62+yjqUKLmo4iHrJceZ9+Y1Jg0iIyYxB TRDtfjKw04wEgaTtsAD6qjG7e+ZjY4N79y7HaqcdenfnbdnB+T9DiH0AC52aXSbI 0Qqjnz7LS7bgZrlskNOBcyPW3T4HGVmlGqyUv4s/+XMYq31oPLO3JBPaekMFvWeY Z8+agBqCLHhQyk68Vhx6uZvFEhX/6kufYaGGsmeY7lBVQMiS6BuSbPn+vxNtVwk7 29ukIFy1DTHcNOPxj4XwQzMV3d7bCNe/ -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org