$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft File: oAM_SUNjDclOLd9fKmuI6GZGGuc.mft (raw, json) Hash identifier: DhRsJEWwmdySFjzpPgHNNur0mmyaY8SwVqod4e7vm1I= Subject key identifier: A3:BB:D8:B2:7B:0B:AE:4B:C9:03:6F:5C:53:B1:6E:9D:68:A6:48:77 Authority key identifier: A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 Certificate issuer: /CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft Manifest number: 73 Signing time: Sat 23 Nov 2024 04:50:54 +0000 Manifest this update: Sat 23 Nov 2024 04:50:53 +0000 Manifest next update: Sat 30 Nov 2024 04:50:53 +0000 Files and hashes: 1: oAM_SUNjDclOLd9fKmuI6GZGGuc.crl (hash: OBN/CwNewa0silJSAiCCYIbXISkEEGZNFpDhIZs7Hr8=) 2: EE647C1418A411EFBA690F60C4F9AE02.roa (hash: VBFakaZ9awD9cx+TI8XxVynIxbHG9d2M+i2q1wrUpgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Validity Not Before: Nov 23 04:50:53 2024 GMT Not After : Nov 30 04:50:53 2024 GMT Subject: CN=67415f2d-f574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:84:94:c7:b5:96:e9:31:b2:9e:1e:ed:ff: 74:76:70:75:97:79:85:61:66:f9:29:15:56:79:76: ec:a2:5d:f4:6a:7d:46:b5:05:49:ec:7d:19:3e:1b: c3:0a:40:ef:ea:c8:fc:a7:ca:31:d3:aa:e1:5d:5d: 37:26:73:6a:15:f7:72:12:e7:4e:0f:c2:07:86:5b: 18:38:58:15:6a:d7:dd:c2:a2:78:8b:29:44:19:14: b1:10:94:b3:d1:41:87:d5:09:cc:19:74:9c:79:5d: c9:0b:73:51:af:d8:2f:81:d4:97:71:91:8c:14:2c: 8e:64:43:3a:31:ed:89:b5:8b:ca:98:cb:d7:1a:e5: a8:10:76:03:fe:7c:75:4c:dd:fc:c6:36:bf:c9:30: 08:aa:47:e4:cf:e6:dc:ec:2b:0f:94:77:95:6d:d6: 2f:3c:61:7d:ef:1c:9b:cf:ff:43:c7:a5:16:82:01: 67:8d:a6:da:72:6b:22:54:9b:6f:eb:36:6b:55:0a: 84:9f:c1:7b:bd:4a:e2:b8:75:3c:be:e6:38:4b:30: d1:15:b1:43:e1:86:d9:50:b1:fd:a5:74:8a:fe:34: a8:89:89:66:72:e4:51:a9:56:ea:81:fd:4d:92:14: d7:a7:9a:8f:e7:90:46:b0:f3:0f:26:cd:52:42:31: d2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BB:D8:B2:7B:0B:AE:4B:C9:03:6F:5C:53:B1:6E:9D:68:A6:48:77 X509v3 Authority Key Identifier: keyid:A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f6:93:f4:10:55:dc:ba:5f:54:5d:46:2d:64:50:d1:3d:92: 2d:01:1c:e3:a4:8c:6d:01:b9:d4:0a:93:dd:7d:c9:0c:a6:45: 53:47:7f:7b:2c:ae:12:6e:b5:72:b4:fb:96:30:fa:6f:c9:78: ec:14:64:ca:fc:c2:80:c0:d3:a1:b3:06:85:8c:49:21:64:c2: e8:6e:49:5f:f2:e4:61:a2:1e:9e:ee:56:a8:fb:a5:15:b6:0d: d6:72:ee:bc:ac:5b:18:1e:12:25:ea:89:50:e5:13:de:d1:e9: f5:62:3e:fd:c0:5c:b4:6b:4a:0b:0b:36:05:71:aa:4b:b6:41: 93:e0:4c:17:95:ce:5b:6b:c7:a2:19:03:06:65:cb:b9:b7:ad: 25:00:90:85:cb:4c:42:00:38:da:07:4c:41:da:9e:6d:8c:b3: 10:73:bd:e3:53:00:fa:1e:df:59:a6:b2:83:62:ed:3f:b1:98: 64:e3:64:98:fc:9d:44:08:f6:07:8e:07:8a:26:d9:27:e4:c0: 7e:78:fb:a3:df:fb:cd:f0:67:30:dc:42:19:44:6f:4e:80:2d: 63:2d:60:d9:b3:d1:9f:b4:43:7a:85:9d:6d:dd:a3:fc:e8:03: 63:1a:c2:55:31:5a:bb:bf:08:cf:86:23:b4:47:e9:1c:08:51: 85:1a:c9:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzBGMjExMC8GA1UEBRMoQTAwMzNGNDk0MzYzMERDOTRFMkRERjVGMkE2Qjg4RTg2 NjQ2MUFFNzAeFw0yNDExMjMwNDUwNTNaFw0yNDExMzAwNDUwNTNaMBgxFjAUBgNV BAMTDTY3NDE1ZjJkLWY1NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu+YSUx7WW6TGynh7t/3R2cHWXeYVhZvkpFVZ5duyiXfRqfUa1BUnsfRk+G8MK QO/qyPynyjHTquFdXTcmc2oV93IS504PwgeGWxg4WBVq193ConiLKUQZFLEQlLPR QYfVCcwZdJx5XckLc1Gv2C+B1JdxkYwULI5kQzox7Ym1i8qYy9ca5agQdgP+fHVM 3fzGNr/JMAiqR+TP5tzsKw+Ud5Vt1i88YX3vHJvP/0PHpRaCAWeNptpyayJUm2/r NmtVCoSfwXu9SuK4dTy+5jhLMNEVsUPhhtlQsf2ldIr+NKiJiWZy5FGpVuqB/U2S FNenmo/nkEaw8w8mzVJCMdIPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo7vYsnsL rkvJA29cU7FunWimSHcwHwYDVR0jBBgwFoAUoAM/SUNjDclOLd9fKmuI6GZGGucw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMEYyLzdGMzNFRTI0RkQ3 RTExRUVBMUIzNTM1Q0M0RjlBRTAyL29BTV9TVU5qRGNsT0xkOWZLbXVJNkdaR0d1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0FNX1NVTmpEY2xPTGQ5ZkttdUk2R1pHR3VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD MEYyLzdGMzNFRTI0RkQ3RTExRUVBMUIzNTM1Q0M0RjlBRTAyL29BTV9TVU5qRGNs T0xkOWZLbXVJNkdaR0d1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI32k/QQVdy6X1RdRi1kUNE9ki0BHOOkjG0BudQKk919yQymRVNHf3ss rhJutXK0+5Yw+m/JeOwUZMr8woDA06GzBoWMSSFkwuhuSV/y5GGiHp7uVqj7pRW2 DdZy7rysWxgeEiXqiVDlE97R6fViPv3AXLRrSgsLNgVxqku2QZPgTBeVzltrx6IZ AwZly7m3rSUAkIXLTEIAONoHTEHanm2MsxBzveNTAPoe31mmsoNi7T+xmGTjZJj8 nUQI9geOB4om2SfkwH54+6Pf+83wZzDcQhlEb06ALWMtYNmz0Z+0Q3qFnW3do/zo A2MawlUxWru/CM+GI7RH6RwIUYUayQg= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org