$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft File: OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft (raw, json) Hash identifier: KhqzOGHmmbU+cRJ1ovdpC+iBVxsIekGjofdDVZ6oGPQ= Subject key identifier: FE:FE:14:24:30:FC:AD:B1:AF:60:C6:56:B3:A5:C3:98:A5:16:93:05 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft Manifest number: C1 Signing time: Sat 23 Nov 2024 03:58:46 +0000 Manifest this update: Sat 23 Nov 2024 03:58:45 +0000 Manifest next update: Sat 30 Nov 2024 03:58:45 +0000 Files and hashes: 1: OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl (hash: 7qOSEa1t97azpYUqSO1+NFs5tr8QY9SaNjSqQaOZEJU=) 2: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (hash: F1mmz33PgwMDoRRZC6GtV9seLtgQSAErXHweDotrVWA=) 3: C1BECCFC68ED11EF85713047C4F9AE02.roa (hash: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc=) 4: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (hash: drw42sYp0Yh/VWP9xaFHuMDcqO3Tii4R1NV32pLiPSM=) 5: 08310D28339011EFA4FD915FC4F9AE02.roa (hash: SpJu5nU/KENpOPLXjRvExSZV1G2bbDwfeZ2+Dj1X+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Nov 23 03:58:45 2024 GMT Not After : Nov 30 03:58:45 2024 GMT Subject: CN=674152f5-93cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:41:92:e5:f8:fb:36:b4:6f:65:d8:f3:29: a2:f9:21:09:8a:87:83:92:9e:df:45:83:0a:19:d4: 22:dd:bc:4a:64:f0:e6:70:fa:94:ae:e8:fb:7a:57: 4d:93:93:4b:c8:94:c6:cd:d2:7d:ab:2b:fc:ee:dd: 6b:47:2d:15:0d:bb:8f:0e:8b:7f:6c:7d:09:45:9f: a9:23:f2:89:b5:8d:60:e0:50:80:8a:60:bb:9a:d7: ff:fd:69:dd:46:ca:23:a0:9c:bc:94:02:23:c9:08: 05:66:ab:9e:ed:8c:86:2b:5f:8b:bf:ce:68:79:2f: 6d:a7:17:4f:b3:0a:c8:e5:84:4a:bb:44:1e:52:0c: 43:75:2b:6a:34:d3:fa:f1:6d:a3:94:9b:2a:15:f7: 57:c1:bb:ce:29:73:d0:79:a3:ce:a1:6a:c2:94:56: 30:3a:78:a8:b3:88:84:ad:4a:3a:40:05:4a:a3:c0: 06:0c:af:06:86:53:92:c5:60:b5:70:03:56:02:8f: 01:f5:85:71:9a:50:3b:69:fe:03:c4:06:7c:6b:de: 57:f0:fa:e1:a6:bf:eb:f7:ec:ae:28:68:9f:c0:98: 52:f6:06:c2:e9:b4:79:10:85:53:a9:93:d4:06:e2: e9:42:3e:d6:c7:6a:56:60:ca:87:9c:53:37:e7:28: 05:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FE:14:24:30:FC:AD:B1:AF:60:C6:56:B3:A5:C3:98:A5:16:93:05 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:42:88:a7:a0:ab:11:b6:5f:cb:d3:17:0b:79:d5:4c:b8:3d: 30:e3:68:ae:4b:d0:2c:fa:2f:5d:cc:0c:5c:6b:22:a1:06:c4: d5:e8:13:c3:8a:76:46:79:62:e5:20:e0:9a:ef:c9:6b:44:88: 05:d7:e3:08:5d:c2:75:95:08:ab:61:f0:cd:8e:59:1e:22:07: 34:9f:5a:3f:aa:a3:bb:de:16:03:6e:e7:c5:6e:77:1d:2f:ed: 0d:7b:71:d5:2c:38:75:e4:88:79:4a:08:32:c9:84:34:b4:7a: 18:ca:9f:eb:58:1e:1a:8d:f2:97:77:6f:e3:e4:87:0c:56:9c: 04:18:2b:21:6d:b1:90:3f:e1:eb:3e:cc:e6:28:7f:ee:7d:8a: 53:d5:5e:21:ba:41:9f:33:44:bb:88:70:1a:90:0b:9d:fb:26: 3a:4e:2a:4d:4d:76:63:1f:c4:25:b4:a6:d8:5b:69:78:40:df: 6c:7a:af:b6:bb:56:28:4d:93:22:b1:9f:38:e1:4e:9e:b7:e6: 17:01:4b:02:ff:8d:fc:53:c6:4b:b3:05:7e:52:7a:eb:6a:7c: f3:b1:1e:56:ad:5a:16:24:81:4d:33:99:4f:d1:4a:17:98:cd: 9a:e7:cb:ac:57:97:9d:d1:5f:7e:2d:fa:c2:28:6c:3a:bd:c0: 51:5f:13:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjQxMTIzMDM1ODQ1WhcNMjQxMTMwMDM1ODQ1WjAYMRYwFAYD VQQDEw02NzQxNTJmNS05M2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4pBkuX4+za0b2XY8ymi+SEJioeDkp7fRYMKGdQi3bxKZPDmcPqUruj7eldN k5NLyJTGzdJ9qyv87t1rRy0VDbuPDot/bH0JRZ+pI/KJtY1g4FCAimC7mtf//Wnd RsojoJy8lAIjyQgFZque7YyGK1+Lv85oeS9tpxdPswrI5YRKu0QeUgxDdStqNNP6 8W2jlJsqFfdXwbvOKXPQeaPOoWrClFYwOnios4iErUo6QAVKo8AGDK8GhlOSxWC1 cANWAo8B9YVxmlA7af4DxAZ8a95X8Prhpr/r9+yuKGifwJhS9gbC6bR5EIVTqZPU BuLpQj7Wx2pWYMqHnFM35ygFdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7+FCQw /K2xr2DGVrOlw5ilFpMFMB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0tw alNsT3VRQWpnRDNkM3hIbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwQoinoKsRtl/L0xcLedVMuD0w42iuS9As+i9dzAxcayKhBsTV6BPD inZGeWLlIOCa78lrRIgF1+MIXcJ1lQirYfDNjlkeIgc0n1o/qqO73hYDbufFbncd L+0Ne3HVLDh15Ih5SggyyYQ0tHoYyp/rWB4ajfKXd2/j5IcMVpwEGCshbbGQP+Hr PszmKH/ufYpT1V4hukGfM0S7iHAakAud+yY6TipNTXZjH8QltKbYW2l4QN9seq+2 u1YoTZMisZ844U6et+YXAUsC/438U8ZLswV+UnrranzzsR5WrVoWJIFNM5lP0UoX mM2a58usV5ed0V9+LfrCKGw6vcBRXxNC -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org