$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: M73oxsWDcj3X7PFK5XN12dWQLMJtq0uTts4n58vluaw= Subject key identifier: 27:E9:90:10:7E:51:3C:73:D6:66:8C:27:50:01:A7:34:3E:93:D9:F9 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 0C Signing time: Thu 21 Nov 2024 06:13:08 +0000 Manifest this update: Thu 21 Nov 2024 06:13:08 +0000 Manifest next update: Thu 28 Nov 2024 06:13:08 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: UdYtaLazFzjZNilVMc0z2dP362mNuGRyLFX74mwAlS4=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: OktGMxzzHPz/jKeXT3HBwpZFefJQX2E3qJieHJ5ZqH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Nov 21 06:13:08 2024 GMT Not After : Nov 28 06:13:08 2024 GMT Subject: CN=673ecf74-a487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ee:e3:70:b3:48:c2:c9:ad:fa:ae:9c:49:3e: f8:e0:95:37:2b:40:26:74:b1:51:af:90:d7:03:1e: e1:94:45:64:55:f4:9c:dd:b8:b1:8d:9e:84:28:af: d5:66:8b:c3:82:3e:ce:38:31:4b:37:e9:3e:59:09: 98:ee:44:86:a7:eb:ce:fc:3b:0d:04:8a:b1:a4:e2: 70:99:dd:b2:4a:d7:41:23:11:b9:dc:9a:37:ee:02: 5e:c9:83:f0:b3:2a:c5:f3:f1:1e:5d:c6:4f:4b:17: 86:fa:f6:6f:80:0e:b7:d8:86:f0:18:80:86:12:25: c2:59:60:0a:d7:70:31:97:9e:16:93:d9:94:c3:62: b9:f6:d6:ce:b2:e7:b1:11:10:68:2b:d8:6e:8a:5a: 8f:f1:ca:66:9f:af:6a:9f:86:c5:d2:1e:3c:8a:c8: 1b:6a:5e:31:b4:a0:b6:67:22:7c:b3:16:48:ac:39: 0f:a0:22:b8:6a:26:b7:05:9a:00:51:b2:b2:d0:35: 25:23:b2:dc:a7:a0:e3:a5:d7:a1:b0:f5:ad:90:c3: 7f:e3:64:e0:c8:ed:4d:96:b5:4e:9f:3a:99:f3:9a: 1d:69:9a:88:30:5d:f3:ef:93:09:fd:d8:3e:1e:b6: 76:82:15:d0:96:af:1e:71:86:b2:e1:bf:de:89:12: 35:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E9:90:10:7E:51:3C:73:D6:66:8C:27:50:01:A7:34:3E:93:D9:F9 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:2c:f9:15:4e:3d:dc:f0:d1:28:17:08:6c:19:ab:ae:3d:b6: 77:ae:b4:80:26:af:45:e2:5c:94:c3:c3:4a:28:1a:23:fc:5f: 6b:5c:67:f1:1d:67:97:fa:d7:e7:7c:ef:b1:f9:76:ff:a7:f8: 39:9b:2f:33:5c:65:d6:dc:35:17:75:8f:aa:60:a0:1f:9e:6b: 1e:80:e9:ba:5b:82:a9:d1:e8:7f:63:e3:63:bd:a8:d6:fe:a6: 50:a6:8e:b0:1a:ad:05:cf:f5:65:11:97:f7:a0:b0:a3:28:22: d9:9d:1d:ce:57:b9:5d:b4:3c:18:65:8f:65:9a:55:cc:ff:0b: 52:98:e4:c9:13:ea:dc:76:e7:4d:af:1c:a9:c8:bd:6c:60:b8: 04:e9:7b:52:f9:02:49:13:15:3d:78:2c:ab:c5:c7:cf:78:60: c5:0f:4a:0e:eb:ed:b2:fd:3f:ce:5d:56:96:0a:5b:98:d8:e9: 31:bd:fd:d8:3c:7a:10:fb:0a:b1:e9:5d:91:db:c1:e9:a7:4c: 7f:c7:64:c5:78:2c:22:78:8e:80:3b:41:13:b2:fc:17:c1:00: 50:38:17:4c:8d:c0:99:1c:56:fb:1c:d9:36:a4:2d:83:4f:a8: b6:b4:e2:29:ba:ae:e3:b2:01:9a:29:23:35:7c:ac:f5:23:38: f3:f2:54:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoMzk5QTdCMUZDNDIwN0VCQTA3MDdBODUxNTE5NUNDNjhF ODM2QUJGODAeFw0yNDExMjEwNjEzMDhaFw0yNDExMjgwNjEzMDhaMBgxFjAUBgNV BAMTDTY3M2VjZjc0LWE0ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ7uNws0jCya36rpxJPvjglTcrQCZ0sVGvkNcDHuGURWRV9JzduLGNnoQor9Vm i8OCPs44MUs36T5ZCZjuRIan6878Ow0EirGk4nCZ3bJK10EjEbncmjfuAl7Jg/Cz KsXz8R5dxk9LF4b69m+ADrfYhvAYgIYSJcJZYArXcDGXnhaT2ZTDYrn21s6y57ER EGgr2G6KWo/xymafr2qfhsXSHjyKyBtqXjG0oLZnInyzFkisOQ+gIrhqJrcFmgBR srLQNSUjstynoOOl16Gw9a2Qw3/jZODI7U2WtU6fOpnzmh1pmogwXfPvkwn92D4e tnaCFdCWrx5xhrLhv96JEjUPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ+mQEH5R PHPWZownUAGnND6T2fkwHwYDVR0jBBgwFoAUOZp7H8QgfroHB6hRUZXMaOg2q/gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1LzhEN0I5QkYyOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFf Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1pwN0g4UWdmcm9IQjZoUlVaWE1hT2cycV9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx MDI1LzhEN0I5QkYyOUQ4NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJv SEI2aFJVWlhNYU9nMnFfZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFEs+RVOPdzw0SgXCGwZq649tneutIAmr0XiXJTDw0ooGiP8X2tcZ/Ed Z5f61+d877H5dv+n+DmbLzNcZdbcNRd1j6pgoB+eax6A6bpbgqnR6H9j42O9qNb+ plCmjrAarQXP9WURl/egsKMoItmdHc5XuV20PBhlj2WaVcz/C1KY5MkT6tx2502v HKnIvWxguATpe1L5AkkTFT14LKvFx894YMUPSg7r7bL9P85dVpYKW5jY6TG9/dg8 ehD7CrHpXZHbwemnTH/HZMV4LCJ4joA7QROy/BfBAFA4F0yNwJkcVvsc2TakLYNP qLa04im6ruOyAZopIzV8rPUjOPPyVMg= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org