$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: KHCVbXG6HVzfhPJPmRxlIy5Nb/segPTWkmljeW8njXs= Subject key identifier: 2E:6B:FC:C7:D4:BB:0E:24:32:F0:15:E2:95:B9:71:78:1C:9C:2D:BF Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 2FF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 2FC6 Signing time: Wed 20 Nov 2024 15:28:07 +0000 Manifest this update: Wed 20 Nov 2024 15:28:07 +0000 Manifest next update: Wed 27 Nov 2024 15:28:07 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: bfhluZoSdTBuobPGKGwp/CEaa6vuOq6IWZQ5FtY7/Xo=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12276 (0x2ff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Nov 20 15:28:07 2024 GMT Not After : Nov 27 15:28:07 2024 GMT Subject: CN=673e0007-9cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:cc:34:c2:dd:fd:66:6c:48:19:bf:c7:1d: f1:77:89:dc:95:78:0e:3a:29:c2:30:20:4f:c4:e0: 2a:36:3f:02:37:50:a8:ea:56:ba:92:fd:4b:4b:c5: b2:03:4b:c9:74:cd:f2:d3:9c:00:d9:7d:a2:0e:89: 56:19:9f:9f:80:f3:4d:90:3e:c3:40:78:a0:ea:d9: 78:ce:e7:dc:09:ed:23:bd:60:09:db:21:2f:50:75: 01:b5:fe:b5:46:11:a6:62:da:84:5b:01:00:e7:9a: 1b:4e:25:66:4c:e9:74:62:f1:bc:d6:7e:ad:77:a6: b5:ef:aa:ae:58:71:7c:eb:a9:79:2e:4b:01:0b:4b: 9b:9e:c8:f9:8b:51:85:29:3c:2f:14:7d:2b:2f:72: f0:d8:e0:da:ae:c0:3f:79:88:eb:5d:da:ac:c0:cf: 30:63:1d:48:90:12:90:3c:0e:fe:25:8c:78:3b:14: df:ba:a4:1d:4a:0f:6d:a1:60:0b:3a:32:77:02:4c: 6b:97:a7:8e:16:ef:a7:8f:fd:8e:86:26:ef:63:da: f9:14:f9:be:6f:fa:a1:db:85:55:40:b5:13:84:1d: dd:58:25:ae:a1:c5:5e:c6:7f:fa:ad:de:37:63:d2: a4:86:b8:d6:ce:78:53:3a:cc:fd:70:46:69:19:45: e8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6B:FC:C7:D4:BB:0E:24:32:F0:15:E2:95:B9:71:78:1C:9C:2D:BF X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b8:7f:b2:d4:49:08:e1:42:c6:08:c5:a6:40:a3:e5:1a:36: a1:ba:52:31:63:72:91:41:c2:03:d9:56:84:eb:21:b9:60:7a: 78:65:81:dd:6b:5c:af:8b:03:f7:87:b5:0f:2d:76:8d:27:c3: 11:5c:b7:9b:11:03:b3:ec:1a:42:a4:44:8e:b5:ce:ff:c0:14: ba:73:b0:65:2c:2e:0b:83:dc:bd:58:9d:b3:f5:38:4a:ac:2c: 01:2a:0a:79:bc:f9:fd:69:d7:74:1b:88:9c:05:3b:55:a0:45: e8:05:5f:d6:9d:d9:61:76:0a:51:b0:ae:78:32:20:05:cb:81: 25:a7:2b:ce:d6:2c:0f:e8:3f:4b:a7:6b:dd:20:98:9a:00:c3: 70:d0:a3:92:80:da:5e:5a:54:a3:9a:83:26:73:73:cd:fb:c4: a1:f5:89:76:6d:c2:1d:f3:c6:30:63:6b:b9:07:37:78:4b:ee: 54:69:a3:8a:12:13:15:f2:e4:82:de:bb:d4:fb:d2:13:39:35: db:0f:b7:f5:79:44:fa:be:d6:15:ea:66:6b:8a:cf:ad:b7:ab: 43:74:43:49:27:e2:53:66:3a:cb:58:ea:25:30:62:ef:ff:bd: fd:ac:56:fe:dd:d3:65:b5:42:ff:43:3b:cd:65:4f:a5:a6:e0: 48:6f:2c:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjQxMTIwMTUyODA3WhcNMjQxMTI3MTUyODA3WjAYMRYwFAYD VQQDEw02NzNlMDAwNy05Y2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0bMNMLd/WZsSBm/xx3xd4nclXgOOinCMCBPxOAqNj8CN1Co6la6kv1LS8Wy A0vJdM3y05wA2X2iDolWGZ+fgPNNkD7DQHig6tl4zufcCe0jvWAJ2yEvUHUBtf61 RhGmYtqEWwEA55obTiVmTOl0YvG81n6td6a176quWHF866l5LksBC0ubnsj5i1GF KTwvFH0rL3Lw2ODarsA/eYjrXdqswM8wYx1IkBKQPA7+JYx4OxTfuqQdSg9toWAL OjJ3Akxrl6eOFu+nj/2OhibvY9r5FPm+b/qh24VVQLUThB3dWCWuocVexn/6rd43 Y9KkhrjWznhTOsz9cEZpGUXoOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5r/MfU uw4kMvAV4pW5cXgcnC2/MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOuH+y1EkI4ULGCMWmQKPlGjahulIxY3KRQcID2VaE6yG5YHp4ZYHd a1yviwP3h7UPLXaNJ8MRXLebEQOz7BpCpESOtc7/wBS6c7BlLC4Lg9y9WJ2z9ThK rCwBKgp5vPn9add0G4icBTtVoEXoBV/WndlhdgpRsK54MiAFy4ElpyvO1iwP6D9L p2vdIJiaAMNw0KOSgNpeWlSjmoMmc3PN+8Sh9Yl2bcId88YwY2u5Bzd4S+5UaaOK EhMV8uSC3rvU+9ITOTXbD7f1eUT6vtYV6mZris+tt6tDdENJJ+JTZjrLWOolMGLv /739rFb+3dNltUL/QzvNZU+lpuBIbyzt -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org