$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: gDM8Djd0OucuQ1RO/3CcyY5t5L15AGsHsIIVIepJm68= Subject key identifier: 84:0F:C1:3D:9B:27:D4:92:5F:22:2C:75:D5:25:C7:3A:A8:F3:EA:60 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B0D Signing time: Fri 22 Nov 2024 19:01:42 +0000 Manifest this update: Fri 22 Nov 2024 19:01:41 +0000 Manifest next update: Fri 29 Nov 2024 19:01:41 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: 0tPHtim2F/iIwFdQ8aWEnt6yOyy2GnVi0OWnsOEId5I=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: HKy89nrPLtJKIpdDumSWpwndZ6mESDm6trXXJG7ABz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Nov 22 19:01:41 2024 GMT Not After : Nov 29 19:01:41 2024 GMT Subject: CN=6740d516-5155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ef:e4:b0:ae:b8:f4:bd:71:15:35:2b:5c:e1: c0:5a:91:6d:bf:ae:0c:28:ba:1e:57:6d:7d:93:bd: eb:80:ba:df:78:4a:f7:77:4f:d7:10:a5:da:24:e2: 40:44:5f:07:26:5c:a1:c5:6c:df:84:e1:4a:a8:2d: 53:f6:dc:d9:74:eb:17:ad:e2:75:db:cf:ca:70:9f: b0:ba:5b:03:f7:f6:e6:64:f0:23:21:ea:e3:48:74: 81:67:9f:31:d9:d0:80:57:30:31:5e:89:d5:22:63: 72:1c:2b:f8:64:71:4e:7e:8a:9c:a1:2a:dd:47:38: c4:76:5d:65:a8:de:bf:44:09:43:0c:ae:72:64:ae: 5c:ad:9f:00:bf:eb:2c:96:a7:bc:c0:ec:88:ab:df: fc:e0:0f:88:fd:f5:14:65:f5:b1:29:9f:7c:a4:a5: 18:02:b7:f7:cd:a0:54:83:35:2e:4b:d1:bc:b3:2a: 38:51:65:41:5f:d3:08:19:14:d6:01:44:7b:18:67: 4d:f5:5c:ee:91:aa:ca:2c:75:ab:52:74:80:43:c8: b0:09:cd:c0:53:d4:c0:5a:69:47:89:49:da:0b:fd: e7:8c:80:1b:1e:3b:21:15:eb:d6:59:74:80:78:f3: 43:cc:f2:ab:8f:6e:0c:53:63:ee:4b:e2:6b:9d:60: d3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0F:C1:3D:9B:27:D4:92:5F:22:2C:75:D5:25:C7:3A:A8:F3:EA:60 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:99:ec:22:bb:fc:4f:e8:f1:65:e8:89:15:dd:75:3c:76:e7: e2:1c:60:b7:72:ca:4a:78:f3:b9:52:c7:fc:87:3d:4b:07:f8: 12:a7:3f:84:4f:f3:b9:21:a8:b1:07:1f:04:a2:20:74:51:f9: e1:6e:bf:34:8b:0c:fe:03:98:12:b8:56:ac:15:cc:68:d6:0c: dd:fb:92:80:4b:b2:65:19:2b:cc:f2:27:ca:75:66:d2:0e:38: 6f:aa:e2:09:b7:53:0a:8f:5e:10:84:50:e6:cb:2c:5d:1b:9b: a8:84:5f:6e:2f:ac:11:4d:ff:25:24:cf:9b:f5:46:4a:44:61: 52:0f:20:0a:93:2f:f4:a9:6b:c7:d9:98:77:4a:ce:2c:9f:8f: 9a:7f:d6:f1:ff:75:e7:b0:ea:5f:1a:8a:24:70:22:28:d0:22: 3d:fb:8d:71:b0:e4:25:0c:c3:48:0a:f0:d2:4f:da:5d:4f:2c: 4a:7c:f4:44:fa:33:36:f3:46:e0:5f:85:2e:e3:2c:37:81:5f: 94:74:b0:ae:da:1b:cb:45:21:95:1e:9c:56:c4:4c:6d:2b:c4: a3:07:c3:d8:1c:74:8c:83:2e:ab:7f:ec:28:44:90:cc:77:01: 5b:83:bd:50:dd:90:2a:d3:20:ff:a9:0e:38:2f:6b:51:02:f6: a3:54:66:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjQxMTIyMTkwMTQxWhcNMjQxMTI5MTkwMTQxWjAYMRYwFAYD VQQDEw02NzQwZDUxNi01MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzu/ksK649L1xFTUrXOHAWpFtv64MKLoeV219k73rgLrfeEr3d0/XEKXaJOJA RF8HJlyhxWzfhOFKqC1T9tzZdOsXreJ128/KcJ+wulsD9/bmZPAjIerjSHSBZ58x 2dCAVzAxXonVImNyHCv4ZHFOfoqcoSrdRzjEdl1lqN6/RAlDDK5yZK5crZ8Av+ss lqe8wOyIq9/84A+I/fUUZfWxKZ98pKUYArf3zaBUgzUuS9G8syo4UWVBX9MIGRTW AUR7GGdN9VzukarKLHWrUnSAQ8iwCc3AU9TAWmlHiUnaC/3njIAbHjshFevWWXSA ePNDzPKrj24MU2PuS+JrnWDTfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQPwT2b J9SSXyIsddUlxzqo8+pgMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDmewiu/xP6PFl6IkV3XU8dufiHGC3cspKePO5Usf8hz1LB/gSpz+E T/O5IaixBx8EoiB0Ufnhbr80iwz+A5gSuFasFcxo1gzd+5KAS7JlGSvM8ifKdWbS DjhvquIJt1MKj14QhFDmyyxdG5uohF9uL6wRTf8lJM+b9UZKRGFSDyAKky/0qWvH 2Zh3Ss4sn4+af9bx/3XnsOpfGookcCIo0CI9+41xsOQlDMNICvDST9pdTyxKfPRE +jM280bgX4Uu4yw3gV+UdLCu2hvLRSGVHpxWxExtK8SjB8PYHHSMgy6rf+woRJDM dwFbg71Q3ZAq0yD/qQ44L2tRAvajVGZ9 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org