$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: 4cfqYQa0LY7X1swihT0YsOqZX3GbN7AMiDoMg/J+rTg= Subject key identifier: 6D:41:F0:0E:BF:72:C5:5F:11:D3:4D:69:99:08:BD:67:A9:48:B3:72 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1302 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 12F7 Signing time: Wed 20 Nov 2024 16:59:45 +0000 Manifest this update: Wed 20 Nov 2024 16:59:44 +0000 Manifest next update: Wed 27 Nov 2024 16:59:44 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: fITEkSN9JnfqcoAaQ8OQWcJ0da58cRQyHQvNZGL6EIE=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: CayamNnE7wETFTDD/NCIu0mz4XuwsUDXz4NCIpKnHG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4866 (0x1302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Nov 20 16:59:44 2024 GMT Not After : Nov 27 16:59:44 2024 GMT Subject: CN=673e1581-d05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a8:ce:45:cc:17:67:85:7e:ed:da:48:f7:6d: c0:f4:c0:45:eb:26:27:81:3d:b4:0a:69:78:17:82: 38:44:7e:34:a9:0f:87:e1:9a:fb:d9:61:23:63:93: 9b:34:99:30:f1:88:78:19:a9:a2:44:9e:41:a5:d1: 9e:62:2c:fc:79:63:03:96:3c:53:93:ef:50:08:ad: d3:0f:32:7f:43:a5:f4:a0:e1:bf:f0:fc:a1:00:e3: a8:6d:12:4c:45:53:e1:d1:44:cc:d2:85:a2:87:97: 0e:5e:a4:0a:43:e6:fa:84:88:34:2b:fb:83:54:c1: 8b:93:bb:a4:3e:5a:ff:20:dd:9c:88:b6:62:d2:f4: 94:a4:b3:03:c7:55:51:f5:da:cf:da:d9:88:8f:81: 59:4e:e6:e5:59:0b:72:2a:d1:5d:06:68:77:43:a0: 15:e7:04:50:6e:3c:fe:24:4f:75:11:a2:20:a3:69: 23:3e:45:da:d8:ca:4f:a0:5f:7c:43:37:d0:0b:a9: 8a:5b:64:f9:28:94:6f:2b:a4:0d:32:f2:f5:26:b5: 54:cf:7e:99:8d:85:9c:8e:79:a3:93:34:27:d3:ab: 9a:4f:70:d4:a3:a9:ea:28:46:e7:25:0d:09:a6:47: 44:9c:11:32:a4:50:ed:9f:0c:1b:36:24:76:02:22: ea:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:41:F0:0E:BF:72:C5:5F:11:D3:4D:69:99:08:BD:67:A9:48:B3:72 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:cf:5e:c9:db:ed:79:a1:d9:22:4e:bb:4f:7c:14:b4:9f:7a: 4e:4a:ac:a5:bb:57:38:cb:40:5e:18:66:b2:28:27:a2:b3:28: 2a:99:c1:c6:76:65:de:2c:25:fc:ef:eb:aa:e5:be:e6:e6:42: d4:76:38:0a:db:dd:cf:38:a4:17:3a:7c:a5:d5:32:36:42:0f: 82:d9:26:c9:2f:f1:7e:6d:cf:39:e5:50:1a:5f:72:35:ae:62: 03:b9:9e:be:5d:51:5d:7d:40:b5:b3:42:47:05:d6:66:aa:0e: 62:f9:87:43:8e:fe:de:64:b9:0a:d6:ed:46:8c:3c:cc:69:5a: ce:fb:e3:9d:ad:f6:38:e2:52:83:b2:1c:00:39:8f:0e:30:80: 90:70:70:e6:4e:ac:ea:9b:df:7c:89:e1:73:a7:a3:89:58:5c: 84:a0:b1:de:e1:54:71:72:4d:9f:08:e7:f4:e8:5f:c0:13:21: 24:ed:61:41:1d:16:a9:22:4b:e0:09:a9:e9:e2:71:04:84:46: 52:a3:c7:07:49:f4:74:26:95:ef:e2:37:d8:49:e8:a1:0d:48: a7:4a:84:ad:96:87:5e:0b:76:f3:04:f4:e1:c1:ba:a5:71:65: e8:2b:c8:04:e3:40:8d:98:93:e7:b3:ce:1a:b8:03:a8:6f:8d: ae:31:c3:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjQxMTIwMTY1OTQ0WhcNMjQxMTI3MTY1OTQ0WjAYMRYwFAYD VQQDEw02NzNlMTU4MS1kMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qjORcwXZ4V+7dpI923A9MBF6yYngT20Cml4F4I4RH40qQ+H4Zr72WEjY5Ob NJkw8Yh4GamiRJ5BpdGeYiz8eWMDljxTk+9QCK3TDzJ/Q6X0oOG/8PyhAOOobRJM RVPh0UTM0oWih5cOXqQKQ+b6hIg0K/uDVMGLk7ukPlr/IN2ciLZi0vSUpLMDx1VR 9drP2tmIj4FZTublWQtyKtFdBmh3Q6AV5wRQbjz+JE91EaIgo2kjPkXa2MpPoF98 QzfQC6mKW2T5KJRvK6QNMvL1JrVUz36ZjYWcjnmjkzQn06uaT3DUo6nqKEbnJQ0J pkdEnBEypFDtnwwbNiR2AiLqWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1B8A6/ csVfEdNNaZkIvWepSLNyMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8z17J2+15odkiTrtPfBS0n3pOSqylu1c4y0BeGGayKCeisygqmcHG dmXeLCX87+uq5b7m5kLUdjgK293POKQXOnyl1TI2Qg+C2SbJL/F+bc855VAaX3I1 rmIDuZ6+XVFdfUC1s0JHBdZmqg5i+YdDjv7eZLkK1u1GjDzMaVrO++OdrfY44lKD shwAOY8OMICQcHDmTqzqm998ieFzp6OJWFyEoLHe4VRxck2fCOf06F/AEyEk7WFB HRapIkvgCanp4nEEhEZSo8cHSfR0JpXv4jfYSeihDUinSoStlodeC3bzBPThwbql cWXoK8gE40CNmJPns84auAOob42uMcNe -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org