$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: tO3xQ9MmU3Jwerm4xeiJU/haI5eaaK2Mg33Z7UNPGco= Subject key identifier: CF:67:78:A3:05:E0:EC:39:91:10:03:B7:3D:7B:02:55:66:A7:FE:A7 Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: 0C Signing time: Sat 23 Nov 2024 06:04:07 +0000 Manifest this update: Sat 23 Nov 2024 06:04:06 +0000 Manifest next update: Sat 30 Nov 2024 06:04:06 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: mAvoNNUUmvohDhKNLkX855wxydBj+m9Fi2KojEN8Yv0=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: VX9a5YBUtpdceZGelu87X/+pVqEvBk+THvAi7CH5Z+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: Nov 23 06:04:06 2024 GMT Not After : Nov 30 06:04:06 2024 GMT Subject: CN=67417056-726c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:b2:4c:bf:c1:c7:ef:c3:01:80:44:ff:44: fe:72:dc:5b:a7:0c:14:e0:9a:e2:ae:89:92:7a:71: 6e:1f:f3:a8:45:13:65:87:69:05:f4:c6:5f:ee:f2: 4d:93:01:98:f9:a0:be:c0:1e:ce:5a:c2:2f:a1:cb: 16:2d:3d:2c:07:6a:be:67:c7:44:3d:50:af:3d:39: 99:8d:cb:ec:7d:97:f9:9c:01:1d:5f:22:22:0c:92: 90:fa:f2:20:71:fd:34:a9:76:05:55:06:db:a2:b3: 5a:04:1e:51:61:64:bf:49:6e:41:47:7f:24:09:71: d8:eb:ca:1d:4a:43:e5:8c:5e:df:e4:18:e8:06:84: bc:dd:b7:8c:c3:a2:23:4e:d6:53:2f:b0:38:95:e5: a0:79:9a:7a:c3:97:23:98:71:83:c2:c1:73:94:31: 6a:ce:21:27:0e:5f:41:97:0c:94:fb:74:15:cd:c3: 1d:44:ca:8b:7a:a0:a1:5f:f6:1c:8b:d9:be:ef:57: 30:c9:24:49:55:02:e0:9f:64:35:57:5a:5b:17:4f: ba:b0:b2:3f:ac:c9:0d:94:d3:e5:b4:6a:7b:14:7e: 8b:b7:f8:83:e7:8f:e8:03:69:f9:70:2a:ab:7d:7e: ab:e0:50:11:8b:99:18:b3:d5:99:cb:ae:e1:df:8c: 43:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:67:78:A3:05:E0:EC:39:91:10:03:B7:3D:7B:02:55:66:A7:FE:A7 X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0e:09:2a:70:cc:74:74:d6:74:b8:e6:db:ec:f4:e8:03:98: 11:b6:37:87:5e:4c:8d:d3:f7:c4:ae:c2:e7:a9:84:64:7c:e6: a2:a5:df:cc:fd:80:c9:13:db:0a:98:b1:90:3d:42:60:49:64: 7e:f3:fc:8c:03:88:5c:39:26:80:5a:ed:59:ee:29:ba:c3:fc: 13:ed:98:3a:b1:20:e3:a3:c4:f0:47:a8:37:4d:96:ac:91:7e: f8:95:e9:57:e6:5c:02:81:f4:86:bb:12:55:16:17:68:e4:cf: 8f:82:bd:92:2c:05:ec:43:b4:56:e6:b7:b0:c8:58:d0:0e:1d: a2:d7:28:5c:14:46:5d:6d:96:ff:c6:c7:e0:4c:8c:30:41:7c: d2:93:6c:19:44:8e:6c:aa:53:ab:4c:fa:4d:e0:ef:51:95:9d: 66:fe:f4:cf:ee:c2:9a:57:91:18:82:73:21:b0:4c:c5:37:be: 6b:11:34:16:1e:72:23:46:93:3b:84:4d:33:b1:47:77:c5:1a: 33:38:2a:18:3c:8d:2b:5a:1e:b6:65:65:89:25:fb:f7:f4:24: af:1e:22:52:d8:dd:4a:32:81:f7:74:80:b5:e3:e3:fa:d8:7d: 50:11:22:cb:d5:cc:08:74:ca:25:5a:98:f6:d5:14:2d:c2:09: cb:11:8a:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDU4NDExMC8GA1UEBRMoQTBGQTIzNzc2RDU0NEM4Nzc5NDZDQUM3QzQ4Nzc0NjUx OTkzN0RCODAeFw0yNDExMjMwNjA0MDZaFw0yNDExMzAwNjA0MDZaMBgxFjAUBgNV BAMTDTY3NDE3MDU2LTcyNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVf7JMv8HH78MBgET/RP5y3FunDBTgmuKuiZJ6cW4f86hFE2WHaQX0xl/u8k2T AZj5oL7AHs5awi+hyxYtPSwHar5nx0Q9UK89OZmNy+x9l/mcAR1fIiIMkpD68iBx /TSpdgVVBtuis1oEHlFhZL9JbkFHfyQJcdjryh1KQ+WMXt/kGOgGhLzdt4zDoiNO 1lMvsDiV5aB5mnrDlyOYcYPCwXOUMWrOIScOX0GXDJT7dBXNwx1Eyot6oKFf9hyL 2b7vVzDJJElVAuCfZDVXWlsXT7qwsj+syQ2U0+W0ansUfou3+IPnj+gDaflwKqt9 fqvgUBGLmRiz1ZnLruHfjEO3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz2d4owXg 7DmREAO3PXsCVWan/qcwHwYDVR0jBBgwFoAUoPojd21UTId5RsrHxId0ZRmTfbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURENTg0LzMyNzA3MzgyOUNC MTExRUZBRUEwMEQyNUM0RjlBRTAyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1BvamQyMVVUSWQ1UnNySHhJZDBaUm1UZmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE NTg0LzMyNzA3MzgyOUNCMTExRUZBRUEwMEQyNUM0RjlBRTAyL29Qb2pkMjFVVElk NVJzckh4SWQwWlJtVGZiZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALUOCSpwzHR01nS45tvs9OgDmBG2N4deTI3T98SuwuephGR85qKl38z9 gMkT2wqYsZA9QmBJZH7z/IwDiFw5JoBa7VnuKbrD/BPtmDqxIOOjxPBHqDdNlqyR fviV6VfmXAKB9Ia7ElUWF2jkz4+CvZIsBexDtFbmt7DIWNAOHaLXKFwURl1tlv/G x+BMjDBBfNKTbBlEjmyqU6tM+k3g71GVnWb+9M/uwppXkRiCcyGwTMU3vmsRNBYe ciNGkzuETTOxR3fFGjM4Khg8jStaHrZlZYkl+/f0JK8eIlLY3Uoygfd0gLXj4/rY fVARIsvVzAh0yiVamPbVFC3CCcsRim0= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org