$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft File: uOlsag2VSKKgQMvnGZdFun2x7Sg.mft (raw, json) Hash identifier: DB2NpwYQ9uguY1A9XOsw3WGqRAMQyQe3ZjQcgoeyuZQ= Subject key identifier: 8E:CE:6F:D1:D8:C2:9B:C5:A9:2E:56:72:93:97:79:7E:C8:22:F2:E4 Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 0952 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft Manifest number: 4559 Signing time: Fri 22 Nov 2024 15:49:09 +0000 Manifest this update: Fri 22 Nov 2024 15:49:09 +0000 Manifest next update: Fri 29 Nov 2024 15:49:09 +0000 Files and hashes: 1: uOlsag2VSKKgQMvnGZdFun2x7Sg.crl (hash: z6aaEDdKY/gYOlJSzOFVS9m+Go0uENyMW9gI1oAfWzE=) 2: 7CEC1452E17E11ECAB421316C4F9AE02.roa (hash: HQMuxFH+p0cd5TxCsDJ5OnEAYnLT5yZN5O7uVIpfgdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Nov 22 15:49:09 2024 GMT Not After : Nov 29 15:49:09 2024 GMT Subject: CN=6740a7f5-6753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3c:91:86:d9:31:3f:a9:5b:d6:da:50:bd:09: b1:cb:09:b7:72:cd:7f:98:4c:81:c9:2a:8c:87:34: d6:a3:69:a5:31:30:63:2e:c0:ba:e3:a9:dd:4d:a6: 7e:9e:4b:4f:76:14:e8:56:4e:0a:c8:a2:88:b3:6e: c3:5e:3a:e5:76:ad:ff:81:28:d9:1a:c5:14:83:6b: 93:50:43:a3:dc:ae:17:13:87:ec:b2:e7:57:7a:ff: 52:09:0c:bc:e7:ba:85:19:00:39:64:4a:46:0b:37: b4:6f:c4:7e:96:68:93:8b:1a:28:36:86:b3:c1:f9: 55:40:46:b4:43:a1:2f:d2:88:e6:5c:01:54:1a:c8: 3a:14:ea:27:c0:e9:6e:18:9c:8b:da:f8:5e:24:9c: b6:27:f4:d3:e3:8f:0e:3e:43:fa:19:cb:b4:d6:5d: 08:fe:13:d6:af:9d:a0:fb:f6:88:db:de:fd:da:f0: 5a:07:9c:0f:d9:92:ee:a2:fd:85:11:9c:b0:9c:84: 58:2d:cb:09:25:ad:8c:6c:76:f4:1b:d9:ef:2f:04: be:4e:90:92:b1:3c:07:cd:e7:c0:70:42:f1:c2:8c: 05:8f:6d:57:7a:38:de:5b:3d:8e:80:c4:77:e8:01: 10:8a:d5:e4:c8:e2:71:cf:f2:95:ca:01:f1:ca:dd: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CE:6F:D1:D8:C2:9B:C5:A9:2E:56:72:93:97:79:7E:C8:22:F2:E4 X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:16:38:94:e5:12:cb:02:2c:cb:56:7e:e8:35:a6:d0:8e:aa: 6b:09:aa:da:48:3f:72:28:7d:72:16:a8:11:d9:be:2c:50:d8: 83:60:86:2d:b3:bb:91:7b:cf:9e:01:e1:76:6e:cf:77:53:c8: 51:60:05:e4:42:59:f0:75:91:ac:b0:ea:fe:58:2d:c7:6b:3e: 32:d1:53:de:97:65:fb:a4:2a:4c:c5:b9:66:0a:b4:13:e9:97: b5:8b:16:d6:75:d6:a5:60:cb:7f:8a:e2:66:81:92:22:c8:ff: c1:54:50:12:ae:45:0c:b4:1c:c5:e0:99:cd:dc:98:1e:00:5d: e7:f4:ac:09:e8:c4:f2:5e:31:01:25:e5:de:a6:df:de:42:fb: 54:f4:66:c9:9a:28:c6:a7:e5:2e:ac:2d:0b:d1:39:35:6e:27: ef:0f:ba:b7:ed:07:ea:3c:aa:85:2e:a9:ec:f3:6e:32:43:7a: 6b:5e:46:e0:25:ac:b9:a1:f9:d0:9e:62:96:6f:1e:28:96:00: ab:6a:00:f2:a1:bb:df:12:a3:57:da:45:85:0d:f6:69:18:96: 3b:0c:d7:78:b1:24:f7:c2:ad:94:8d:41:3c:43:d2:c6:50:b6: e8:17:6d:39:a4:57:2d:5e:a0:bb:c3:6a:d1:a0:96:5c:01:0b: 39:30:5f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjQxMTIyMTU0OTA5WhcNMjQxMTI5MTU0OTA5WjAYMRYwFAYD VQQDEw02NzQwYTdmNS02NzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTyRhtkxP6lb1tpQvQmxywm3cs1/mEyBySqMhzTWo2mlMTBjLsC646ndTaZ+ nktPdhToVk4KyKKIs27DXjrldq3/gSjZGsUUg2uTUEOj3K4XE4fssudXev9SCQy8 57qFGQA5ZEpGCze0b8R+lmiTixooNoazwflVQEa0Q6Ev0ojmXAFUGsg6FOonwOlu GJyL2vheJJy2J/TT448OPkP6Gcu01l0I/hPWr52g+/aI29792vBaB5wP2ZLuov2F EZywnIRYLcsJJa2MbHb0G9nvLwS+TpCSsTwHzefAcELxwowFj21XejjeWz2OgMR3 6AEQitXkyOJxz/KVygHxyt0q+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7Ob9HY wpvFqS5WcpOXeX7IIvLkMB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkQyOS9GNzFFNzE2NjU1MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNL S2dRTXZuR1pkRnVuMng3U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8FjiU5RLLAizLVn7oNabQjqprCaraSD9yKH1yFqgR2b4sUNiDYIYt s7uRe8+eAeF2bs93U8hRYAXkQlnwdZGssOr+WC3Haz4y0VPel2X7pCpMxblmCrQT 6Ze1ixbWddalYMt/iuJmgZIiyP/BVFASrkUMtBzF4JnN3JgeAF3n9KwJ6MTyXjEB JeXept/eQvtU9GbJmijGp+UurC0L0Tk1bifvD7q37QfqPKqFLqns824yQ3prXkbg Jay5ofnQnmKWbx4olgCragDyobvfEqNX2kWFDfZpGJY7DNd4sST3wq2UjUE8Q9LG ULboF205pFctXqC7w2rRoJZcAQs5MF+h -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org