$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: iWU3vIbmF9bcDkRITjSrr2ZRI+ZNYu9svMuvR6dy8Z8= Subject key identifier: 66:30:A2:9E:D5:BE:8E:FE:0C:9D:43:2F:B6:C3:22:06:7D:0A:EF:32 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 022B Signing time: Sat 23 Nov 2024 01:25:19 +0000 Manifest this update: Sat 23 Nov 2024 01:25:18 +0000 Manifest next update: Sat 30 Nov 2024 01:25:18 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: ScF/B5YU2XJ2wN9kBH52G4TQzoVCWWkBalaTht9mv3s=) 2: 98D755EC05B311ED99658959C4F9AE02.roa (hash: uwLp1/Q6G+FuSFkcfPepkB3cVRgLufL9+AUBfneegzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Nov 23 01:25:18 2024 GMT Not After : Nov 30 01:25:18 2024 GMT Subject: CN=67412efe-1c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a2:7c:69:3d:09:ff:2d:ae:ac:20:67:02:ba: 08:1d:83:a4:ad:08:68:cc:4b:6e:c7:31:f9:c5:74: e2:37:3b:b4:a0:82:c4:1c:be:9f:8e:69:8f:fe:f9: bb:75:ae:7f:27:94:ef:1e:39:cf:b0:79:07:03:26: a0:3c:4b:bf:05:52:da:bc:e8:00:30:ec:5c:23:eb: 10:87:6e:22:3e:fd:75:8a:1c:7e:a4:e6:0d:5f:d9: 54:87:03:3e:11:d9:5e:c9:20:3f:99:17:99:24:49: f9:3d:93:de:ec:c6:38:69:12:20:a4:2f:ee:95:56: e4:42:76:11:e4:07:d1:7c:43:35:9c:a2:c0:d8:30: 2b:40:89:28:1c:83:4d:65:52:03:04:8f:1e:dd:57: 52:82:e9:4a:ab:33:01:31:a2:fe:c4:43:0c:09:c4: 9e:a9:67:1c:a7:89:eb:a4:3f:f1:e7:8e:42:5f:fb: 20:6f:90:b5:65:3a:99:bd:ea:3d:54:84:0c:7a:45: 95:34:b6:be:66:f5:9d:f6:99:2d:f4:55:6f:a3:35: 33:39:34:54:17:bc:03:78:b5:14:ea:44:e4:0d:08: cc:aa:a1:3e:ac:29:7a:2b:bc:5b:e2:b0:5f:f2:d9: 9e:b7:7b:3b:9d:58:9b:6c:70:7f:dd:97:56:e0:35: 9c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:30:A2:9E:D5:BE:8E:FE:0C:9D:43:2F:B6:C3:22:06:7D:0A:EF:32 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a5:d6:b9:2d:e7:db:d7:e0:33:d1:a9:29:60:e4:e9:a0:32: d1:d1:80:a0:ea:32:e6:a8:17:50:d3:67:91:da:23:a3:20:3e: c6:5c:b3:22:5f:10:81:d2:5d:cb:a9:6e:6e:c0:0c:69:65:ba: 87:5d:b9:8d:7a:24:76:7c:27:f3:5f:65:b1:6d:8c:24:26:17: 6e:b8:f8:da:6d:d8:45:26:63:4b:1d:af:8d:5d:19:0a:bf:b3: 05:42:f8:3a:43:f5:9c:89:cd:68:c2:cd:20:00:09:9c:95:e8: 6a:fe:e8:c1:20:d6:24:bc:46:8b:59:32:c8:22:46:6b:57:ea: 8b:76:ed:69:4c:25:db:e7:c2:a0:26:e6:06:5b:ca:52:01:17: af:5a:6d:f0:12:a2:d1:af:fe:57:1f:b1:20:ea:8f:51:a0:15: e4:83:58:18:24:54:56:ea:46:7e:c4:01:4b:af:ed:0e:dc:7d: e2:dd:c0:15:87:d1:81:54:ca:79:16:a4:53:f2:e6:c3:3f:12: 37:c0:bb:7b:63:5e:5f:d9:21:00:d5:eb:b6:21:71:89:a6:a6: 76:41:a0:d7:54:8f:62:8c:be:b5:07:23:64:26:8a:f7:7d:3e: b7:29:8f:99:a7:ed:b4:94:27:60:4c:9a:91:4a:26:86:7d:39: 5f:ad:74:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjQxMTIzMDEyNTE4WhcNMjQxMTMwMDEyNTE4WjAYMRYwFAYD VQQDEw02NzQxMmVmZS0xYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06J8aT0J/y2urCBnAroIHYOkrQhozEtuxzH5xXTiNzu0oILEHL6fjmmP/vm7 da5/J5TvHjnPsHkHAyagPEu/BVLavOgAMOxcI+sQh24iPv11ihx+pOYNX9lUhwM+ EdleySA/mReZJEn5PZPe7MY4aRIgpC/ulVbkQnYR5AfRfEM1nKLA2DArQIkoHINN ZVIDBI8e3VdSgulKqzMBMaL+xEMMCcSeqWccp4nrpD/x545CX/sgb5C1ZTqZveo9 VIQMekWVNLa+ZvWd9pkt9FVvozUzOTRUF7wDeLUU6kTkDQjMqqE+rCl6K7xb4rBf 8tmet3s7nVibbHB/3ZdW4DWcLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYwop7V vo7+DJ1DL7bDIgZ9Cu8yMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClpda5Lefb1+Az0akpYOTpoDLR0YCg6jLmqBdQ02eR2iOjID7GXLMi XxCB0l3LqW5uwAxpZbqHXbmNeiR2fCfzX2WxbYwkJhduuPjabdhFJmNLHa+NXRkK v7MFQvg6Q/Wcic1ows0gAAmclehq/ujBINYkvEaLWTLIIkZrV+qLdu1pTCXb58Kg JuYGW8pSARevWm3wEqLRr/5XH7Eg6o9RoBXkg1gYJFRW6kZ+xAFLr+0O3H3i3cAV h9GBVMp5FqRT8ubDPxI3wLt7Y15f2SEA1eu2IXGJpqZ2QaDXVI9ijL61ByNkJor3 fT63KY+Zp+20lCdgTJqRSiaGfTlfrXTP -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org