$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: d7SwizhjT/Dwuc+Kc7edL0k5UysJw7Xk+M5kgHUChEg= Subject key identifier: 12:1D:F3:7F:D2:E1:35:B4:D3:65:04:86:BE:4A:C7:51:E2:87:A1:3A Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: B7 Signing time: Sat 23 Nov 2024 04:07:33 +0000 Manifest this update: Sat 23 Nov 2024 04:07:32 +0000 Manifest next update: Sat 30 Nov 2024 04:07:32 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: H3NAymUVQ5HHxXTRz8uQyq3jPks6c6Wf8GqA9/XmSAk=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: yAMy5FB24dlRlytngKwHIjnmCoA+51iB9Qs1Onhhgps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Nov 23 04:07:32 2024 GMT Not After : Nov 30 04:07:32 2024 GMT Subject: CN=67415505-1ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:03:2a:40:30:26:12:14:c1:2b:61:b6:eb: 34:c3:c0:39:77:71:26:63:28:7f:3a:44:bf:f9:7c: e9:60:6f:2b:4e:4e:43:a6:4b:3d:2e:09:df:a5:14: 8e:b2:9b:e5:90:30:46:08:36:6d:53:5f:53:1b:f5: 10:69:2d:82:58:23:da:40:32:ff:c3:e0:5e:2d:3a: 58:96:31:95:2b:46:45:08:65:0b:c7:2b:11:80:b7: 05:09:15:7c:f1:bd:17:b9:48:93:0c:89:38:8d:51: 96:3f:b9:34:2f:a3:4e:86:57:d6:16:90:be:f0:c6: 40:0d:5a:a7:63:d9:8c:72:96:e2:83:f3:bf:a1:0a: 13:c9:73:6f:c1:91:a2:5d:db:3e:99:e0:d9:7f:68: 04:8a:9f:9c:79:9c:40:5c:7f:ea:90:ba:1e:d0:fe: db:b6:1f:e0:34:7c:7f:18:41:bc:e1:c9:63:19:96: 02:0d:db:5a:08:1c:70:02:2a:2c:7e:02:14:ca:df: ed:d4:b9:f4:67:40:46:b4:4e:d7:60:13:84:71:5b: 94:87:f6:23:d9:9e:4f:43:08:11:cf:69:9d:44:50: bf:c6:74:98:9e:14:1e:31:b9:e7:8c:89:ff:9b:0e: 86:ab:d9:4b:39:30:14:72:a0:78:d4:d6:86:56:98: 2f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1D:F3:7F:D2:E1:35:B4:D3:65:04:86:BE:4A:C7:51:E2:87:A1:3A X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:e9:65:6d:32:4e:b4:16:c8:c7:d6:93:96:78:e0:a1:55:10: 44:bc:41:f4:7c:27:43:89:31:6f:a4:36:1d:0c:b3:14:ea:51: 32:84:a6:13:35:2b:70:df:c0:84:37:2f:0c:5a:b7:dc:b8:60: a5:9e:88:df:59:09:06:02:ea:85:e7:c1:3d:a9:37:1a:1c:bf: 7e:38:ad:71:e9:a6:81:07:fd:69:46:1f:cd:e8:ea:89:92:ad: 5c:4b:17:9a:3f:00:f8:68:34:27:08:e8:50:9e:aa:fc:1e:d1: 48:ee:05:59:f9:e5:8f:61:e4:16:c5:69:af:7f:a6:87:ee:28: 7d:f0:ac:b0:3f:92:37:3e:c9:e5:0a:79:fb:3f:54:c6:43:71: 0c:3a:21:46:e5:2d:08:fa:54:b0:f5:a5:af:10:bd:0b:35:dc: 60:ff:00:f6:71:0e:b1:dc:b6:c7:10:11:f6:97:b4:5a:b2:24: 91:87:1f:b6:1c:fb:bd:d6:ed:68:51:bd:7e:30:46:86:6a:a3: a0:16:51:2a:35:e2:b1:12:b8:3e:39:9b:5c:31:45:64:4f:55: 08:a9:9a:3b:bb:1c:ed:8a:1c:35:87:5b:e2:a0:07:5b:3c:48: 7a:a4:2c:d6:a7:9b:00:95:f5:5d:65:b0:bf:a9:85:42:80:e1: c2:d6:70:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjQxMTIzMDQwNzMyWhcNMjQxMTMwMDQwNzMyWjAYMRYwFAYD VQQDEw02NzQxNTUwNS0xYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwsDKkAwJhIUwSthtus0w8A5d3EmYyh/OkS/+XzpYG8rTk5Dpks9LgnfpRSO spvlkDBGCDZtU19TG/UQaS2CWCPaQDL/w+BeLTpYljGVK0ZFCGULxysRgLcFCRV8 8b0XuUiTDIk4jVGWP7k0L6NOhlfWFpC+8MZADVqnY9mMcpbig/O/oQoTyXNvwZGi Xds+meDZf2gEip+ceZxAXH/qkLoe0P7bth/gNHx/GEG84cljGZYCDdtaCBxwAios fgIUyt/t1Ln0Z0BGtE7XYBOEcVuUh/Yj2Z5PQwgRz2mdRFC/xnSYnhQeMbnnjIn/ mw6Gq9lLOTAUcqB41NaGVpgv6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBId83/S 4TW002UEhr5Kx1Hih6E6MB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC86WVtMk60FsjH1pOWeOChVRBEvEH0fCdDiTFvpDYdDLMU6lEyhKYT NStw38CENy8MWrfcuGClnojfWQkGAuqF58E9qTcaHL9+OK1x6aaBB/1pRh/N6OqJ kq1cSxeaPwD4aDQnCOhQnqr8HtFI7gVZ+eWPYeQWxWmvf6aH7ih98KywP5I3Psnl Cnn7P1TGQ3EMOiFG5S0I+lSw9aWvEL0LNdxg/wD2cQ6x3LbHEBH2l7RasiSRhx+2 HPu91u1oUb1+MEaGaqOgFlEqNeKxErg+OZtcMUVkT1UIqZo7uxztihw1h1vioAdb PEh6pCzWp5sAlfVdZbC/qYVCgOHC1nCz -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org