$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: ck/GYL1vBtoyVmwu/vmaadJZBkexm844QkDTyLA1fDU= Subject key identifier: 26:15:DE:06:1D:B1:8A:A3:83:58:DA:D3:47:B0:7A:99:E1:5B:9A:A5 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 27 Signing time: Thu 21 Nov 2024 05:49:27 +0000 Manifest this update: Thu 21 Nov 2024 05:49:26 +0000 Manifest next update: Thu 28 Nov 2024 05:49:26 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: +mQzYUCSrlUsYx9GY9iDTkIF5L5Fc4rHM2e+5juGYa0=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Nov 21 05:49:26 2024 GMT Not After : Nov 28 05:49:26 2024 GMT Subject: CN=673ec9e7-5699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:aa:a7:e5:54:23:50:12:91:ea:27:95:3e:60: e0:14:3b:f7:c2:2d:71:54:93:9b:60:dd:f3:22:97: 08:5d:e2:4c:c1:83:4c:c4:5a:ab:53:1f:15:f5:3f: 04:26:98:e5:06:26:45:bd:88:b6:33:2b:45:01:98: ab:93:1a:b1:ae:c0:74:4b:9c:2f:0e:18:ca:c0:c4: a4:10:45:30:32:3d:0a:f3:d0:ab:8e:d2:3e:66:e9: fb:7c:27:3c:9a:89:66:e3:ba:a9:49:ba:0b:3d:84: d5:8a:8d:ad:2c:d0:de:bf:9c:46:0d:f2:a8:c8:e8: 5e:b7:09:dc:03:1e:16:bf:bc:99:36:5d:54:8e:0d: 52:99:3a:49:6b:55:9b:52:d0:68:37:55:74:22:58: 9c:b0:d5:a8:15:ce:4c:18:d3:2b:b7:3f:f7:aa:a0: 71:d9:0d:9b:d9:93:b7:7d:9b:72:79:ce:3b:b2:86: e4:52:30:db:4f:d4:d6:2e:a3:97:44:8f:b6:19:ee: 8d:6f:7b:0a:a7:df:2b:a4:06:ca:8e:28:82:71:cf: 93:a2:a1:6a:97:30:ad:61:3c:03:54:17:d8:42:8b: ce:23:0a:85:1e:02:90:f4:9f:0d:62:65:97:b5:67: e4:b1:a4:f0:18:6a:9c:bb:f6:25:ac:8a:ba:31:75: 0b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:15:DE:06:1D:B1:8A:A3:83:58:DA:D3:47:B0:7A:99:E1:5B:9A:A5 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e0:ed:18:78:08:a4:80:99:61:dd:13:77:7f:03:72:9f:b3: 9a:f9:84:32:10:68:31:1e:d8:fa:81:e1:26:4f:ae:69:61:72: 59:1f:f0:fb:b7:70:8f:b8:d3:d9:c2:31:b5:81:f3:16:dc:e1: bc:b3:49:a6:5d:42:17:d8:2a:3f:b4:ec:28:17:85:42:4d:bf: a6:1c:1a:19:b5:7d:78:83:ce:12:53:ec:6f:44:35:03:41:e0: 08:c1:fc:46:a1:8e:b7:e2:da:be:6c:2c:6c:ae:a6:b6:97:01: d6:d2:79:4a:c4:e7:f7:f3:ea:d7:a3:da:eb:4b:4c:a1:4f:ab: 33:c3:47:68:b0:76:77:96:c0:70:7a:54:91:1f:65:cb:3e:0a: fc:65:b6:99:cc:18:f6:71:23:92:32:1a:9b:c6:d9:f1:a3:fc: 20:30:41:bd:15:01:c7:c2:48:34:fc:fc:01:95:a8:c6:23:38: b2:7b:80:29:a3:97:bd:4e:43:e7:04:be:fc:aa:aa:e2:13:98: 29:4a:41:6c:f2:ed:f2:aa:60:18:87:00:be:0b:87:d8:a3:bd: d7:80:34:26:ee:15:e1:47:08:8a:05:34:eb:26:45:5b:e8:59: 30:58:d7:11:d8:3d:82:d8:90:94:91:02:63:b5:c5:4e:5f:00: 60:35:a4:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUFCOTExMC8GA1UEBRMoMzgxN0NGRTAwQTVGMUFDQzM2M0I0NzJGNEY2OURBODNC RUI1NjYxMzAeFw0yNDExMjEwNTQ5MjZaFw0yNDExMjgwNTQ5MjZaMBgxFjAUBgNV BAMTDTY3M2VjOWU3LTU2OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKqqflVCNQEpHqJ5U+YOAUO/fCLXFUk5tg3fMilwhd4kzBg0zEWqtTHxX1PwQm mOUGJkW9iLYzK0UBmKuTGrGuwHRLnC8OGMrAxKQQRTAyPQrz0KuO0j5m6ft8Jzya iWbjuqlJugs9hNWKja0s0N6/nEYN8qjI6F63CdwDHha/vJk2XVSODVKZOklrVZtS 0Gg3VXQiWJyw1agVzkwY0yu3P/eqoHHZDZvZk7d9m3J5zjuyhuRSMNtP1NYuo5dE j7YZ7o1vewqn3yukBsqOKIJxz5OioWqXMK1hPANUF9hCi84jCoUeApD0nw1iZZe1 Z+SxpPAYapy79iWsiroxdQsjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJhXeBh2x iqODWNrTR7B6meFbmqUwHwYDVR0jBBgwFoAUOBfP4ApfGsw2O0cvT2nag761ZhMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QUI5L0QxMThDMEJDNkU4 NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0JmUDRBcGZHc3cyTzBjdlQybmFnNzYxWmhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QUI5L0QxMThDMEJDNkU4NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3 Mk8wY3ZUMm5hZzc2MVpoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK/g7Rh4CKSAmWHdE3d/A3Kfs5r5hDIQaDEe2PqB4SZPrmlhclkf8Pu3 cI+409nCMbWB8xbc4byzSaZdQhfYKj+07CgXhUJNv6YcGhm1fXiDzhJT7G9ENQNB 4AjB/Eahjrfi2r5sLGyupraXAdbSeUrE5/fz6tej2utLTKFPqzPDR2iwdneWwHB6 VJEfZcs+CvxltpnMGPZxI5IyGpvG2fGj/CAwQb0VAcfCSDT8/AGVqMYjOLJ7gCmj l71OQ+cEvvyqquITmClKQWzy7fKqYBiHAL4Lh9ijvdeANCbuFeFHCIoFNOsmRVvo WTBY1xHYPYLYkJSRAmO1xU5fAGA1pHs= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org