$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: 1bmD1BFFf24lJa1VXm+PCs/9gvfEIwirQOD0XhgsbBA= Subject key identifier: E9:CE:D8:23:B0:C6:02:94:22:D3:32:DE:3F:1B:FF:02:6D:6F:82:70 Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: F1 Signing time: Sat 23 Nov 2024 03:25:41 +0000 Manifest this update: Sat 23 Nov 2024 03:25:40 +0000 Manifest next update: Sat 30 Nov 2024 03:25:40 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: Ye7Zl61U+yBbBX6uDQ39+CvFoIFQpAt6RbCDghL8a0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: Nov 23 03:25:40 2024 GMT Not After : Nov 30 03:25:40 2024 GMT Subject: CN=67414b34-57c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:6d:1f:50:ac:8e:28:b4:78:32:7a:7d:30: 78:0e:13:f8:c6:68:37:2b:bb:7b:46:b2:20:0d:d8: 14:80:1f:ba:b2:65:11:31:85:35:e2:44:8c:b5:38: 47:fb:e5:66:40:50:44:fe:f1:3c:22:5b:c0:61:5c: 6c:d5:6b:f4:f2:3c:b7:c2:d2:3c:24:13:03:03:c9: b0:db:99:74:b3:51:d6:76:53:c0:5b:33:b5:36:29: bc:89:1b:5e:b5:e7:14:ad:9b:1c:d4:94:7c:c0:c3: de:41:ae:ff:b5:f2:7b:cd:c7:e5:d6:a8:07:54:d5: 92:98:4a:cb:5d:ef:64:1f:72:8e:1d:b6:27:44:ec: 6d:4d:23:cc:4a:72:9e:0a:f5:27:36:ca:24:bc:bf: f1:b1:25:0e:bc:87:e7:b5:79:1f:fa:0b:2d:e3:f8: ff:69:73:5a:5c:ec:67:b5:44:56:e5:78:46:8b:4b: 6a:e2:ff:92:18:83:dc:51:63:15:eb:9b:22:da:49: 59:5c:e9:25:4a:ee:2a:3c:a1:9e:d7:32:26:34:a5: 0f:34:6b:bb:da:71:b0:3e:69:28:5e:d0:43:12:37: 2d:f2:94:83:7e:e8:27:40:35:26:36:b1:3f:5e:a7: 00:cc:ce:66:7d:44:ec:45:79:ea:80:1d:ea:4a:78: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CE:D8:23:B0:C6:02:94:22:D3:32:DE:3F:1B:FF:02:6D:6F:82:70 X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:98:c3:0b:ba:e0:39:d2:2d:39:95:f1:bd:31:1e:0b:b9:bc: 79:89:31:16:ba:54:5f:3f:fd:e3:0a:b9:ed:51:7e:31:46:89: e6:ae:84:0d:55:f2:9e:f3:e4:01:9f:ae:3b:90:22:8b:12:56: f8:a6:9b:94:f5:c0:43:22:cc:69:19:2a:fe:d5:f5:00:fc:3d: 9e:0a:f3:07:c9:f9:64:24:e9:8d:4a:f2:7c:e4:d1:b4:3f:f8: 10:83:96:d9:eb:5e:3b:3d:0c:03:2c:47:02:c9:5b:67:9d:e4: c2:b1:40:b8:d0:c7:dc:e7:9c:b8:15:fc:e3:2d:72:e5:4b:d0: d0:c3:44:c6:ce:1d:ec:0e:35:b2:d2:fb:e9:b8:6b:85:15:e0: 91:fb:2f:11:c7:e8:19:51:05:da:eb:88:37:eb:95:40:3f:f4: 8c:92:02:2c:6c:b3:26:3d:09:a9:ec:a4:c2:4f:21:f7:a5:0d: cb:f7:b1:88:f6:a5:c1:97:11:66:a8:09:93:3b:bd:7f:f5:ee: 8e:d4:a1:a1:cc:6f:cf:0e:91:7f:41:e7:49:bc:d5:bd:b1:43: 39:39:3f:8f:81:c5:17:5d:df:84:fe:5b:3c:89:e1:c7:d3:49: 0c:cf:3c:7c:62:3d:6d:33:97:ea:05:10:c6:c9:a8:c2:f6:26: 0b:9d:69:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjQxMTIzMDMyNTQwWhcNMjQxMTMwMDMyNTQwWjAYMRYwFAYD VQQDEw02NzQxNGIzNC01N2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCJtH1Csjii0eDJ6fTB4DhP4xmg3K7t7RrIgDdgUgB+6smURMYU14kSMtThH ++VmQFBE/vE8IlvAYVxs1Wv08jy3wtI8JBMDA8mw25l0s1HWdlPAWzO1Nim8iRte tecUrZsc1JR8wMPeQa7/tfJ7zcfl1qgHVNWSmErLXe9kH3KOHbYnROxtTSPMSnKe CvUnNsokvL/xsSUOvIfntXkf+gst4/j/aXNaXOxntURW5XhGi0tq4v+SGIPcUWMV 65si2klZXOklSu4qPKGe1zImNKUPNGu72nGwPmkoXtBDEjct8pSDfugnQDUmNrE/ XqcAzM5mfUTsRXnqgB3qSniWKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnO2COw xgKUItMy3j8b/wJtb4JwMB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1mMMLuuA50i05lfG9MR4Lubx5iTEWulRfP/3jCrntUX4xRonmroQN VfKe8+QBn647kCKLElb4ppuU9cBDIsxpGSr+1fUA/D2eCvMHyflkJOmNSvJ85NG0 P/gQg5bZ6147PQwDLEcCyVtnneTCsUC40Mfc55y4FfzjLXLlS9DQw0TGzh3sDjWy 0vvpuGuFFeCR+y8Rx+gZUQXa64g365VAP/SMkgIsbLMmPQmp7KTCTyH3pQ3L97GI 9qXBlxFmqAmTO71/9e6O1KGhzG/PDpF/QedJvNW9sUM5OT+PgcUXXd+E/ls8ieHH 00kMzzx8Yj1tM5fqBRDGyajC9iYLnWkx -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org