$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: qgaDsPMGXYez508Y3Z0q8StQ4Les+sTiDvgt5CaylMc= Subject key identifier: BF:E9:6C:2D:21:30:0C:3E:0A:55:FA:F6:18:DF:76:C1:22:E6:34:18 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 03DA Signing time: Sat 23 Nov 2024 00:10:19 +0000 Manifest this update: Sat 23 Nov 2024 00:10:19 +0000 Manifest next update: Sat 30 Nov 2024 00:10:19 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: JgfcTHq1y/6mISxyELnl/Qdb8TnWm+xwm1hdSUOrQng=) 2: 0B80B7885D7511ECB1D03353C4F9AE02.roa (hash: TY5wK3sITN+OKgt/XJL0req3LEPsgcIED4VdaLYdaoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Nov 23 00:10:19 2024 GMT Not After : Nov 30 00:10:19 2024 GMT Subject: CN=67411d6b-eef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:41:c0:d1:ba:dc:a5:a5:66:9e:6f:46:0e:80: e0:db:ef:a3:f6:c7:3d:89:cd:d0:ba:20:7d:4f:29: db:9d:9d:ad:15:13:b1:9f:9a:00:44:00:80:b0:fb: 55:9d:ad:c7:78:1a:69:57:b7:41:27:40:7b:e7:ff: 50:df:c2:55:85:e6:ef:55:69:5e:f9:40:64:1e:06: 79:d7:61:ba:b2:c4:ea:8b:b3:81:94:42:0f:f8:17: e8:3b:65:a6:78:03:7b:76:d0:af:f7:8d:8d:72:9f: 32:b4:4f:4a:94:a5:b6:3d:76:0b:86:f7:b4:d6:13: 01:69:e0:79:ef:7d:0e:e7:a3:f8:54:09:70:fd:95: 97:d8:66:97:18:f5:18:7c:25:36:59:8e:06:18:3d: 65:11:4c:49:e3:a8:31:e8:9f:a6:4d:3f:15:51:fd: 68:47:68:2b:85:41:da:93:47:35:6b:f1:be:ad:0d: 64:de:38:fb:58:b9:85:c8:27:02:99:3b:14:3c:fc: f3:84:77:7d:0f:dd:5e:37:72:50:fb:76:71:d7:d8: e5:0a:b8:fd:33:ad:cf:1c:24:f2:03:e0:74:bc:4e: b7:b7:6c:79:10:42:e6:2d:64:52:66:15:c4:23:90: 0c:16:f4:30:11:a9:c7:e5:90:8c:48:e3:dc:3a:b8: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E9:6C:2D:21:30:0C:3E:0A:55:FA:F6:18:DF:76:C1:22:E6:34:18 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:72:34:36:49:a2:7f:0c:08:1c:20:0c:b6:80:a2:e0:f7:0d: b1:b0:14:74:3a:87:91:e4:eb:b1:21:e6:66:a3:0b:36:72:40: 70:4f:24:39:a2:7b:b3:c4:f1:05:3a:5c:58:bd:c3:62:61:6e: 9f:ac:45:57:c9:5a:16:46:d0:a5:9c:ec:b8:75:d9:6b:7d:81: e7:bf:d5:26:b0:69:40:bf:e1:75:7a:bc:1d:37:90:b5:ea:63: 43:5d:23:bd:50:f4:09:dd:c7:7b:b7:8a:a5:8c:8a:46:71:63: c8:b8:5c:a8:ce:8a:53:80:a6:a1:91:5e:75:43:bf:3e:13:4e: f6:61:17:9d:4c:d1:cd:81:f5:19:2e:98:68:ff:50:bc:22:87: 4c:1e:01:b4:ad:e3:5a:1a:a6:45:26:fe:4f:98:2a:9d:a2:25: 7c:5f:ee:49:12:28:0a:a4:ba:5e:04:05:7f:ad:9a:af:9d:c6: be:af:b9:63:f1:1d:ab:a0:a3:d7:f0:58:93:19:8a:95:5a:78: 84:7f:fc:23:0a:69:01:fe:23:ed:c7:5a:41:a2:7d:6a:d7:66: a4:9b:91:49:a9:ff:85:33:7c:d7:65:89:68:1e:b9:71:af:60: 8a:e0:e0:0c:f5:67:9c:76:a3:be:05:f1:3d:f6:64:6d:a2:37: 36:15:e2:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjQxMTIzMDAxMDE5WhcNMjQxMTMwMDAxMDE5WjAYMRYwFAYD VQQDEw02NzQxMWQ2Yi1lZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUHA0brcpaVmnm9GDoDg2++j9sc9ic3QuiB9TynbnZ2tFROxn5oARACAsPtV na3HeBppV7dBJ0B75/9Q38JVhebvVWle+UBkHgZ512G6ssTqi7OBlEIP+BfoO2Wm eAN7dtCv942Ncp8ytE9KlKW2PXYLhve01hMBaeB5730O56P4VAlw/ZWX2GaXGPUY fCU2WY4GGD1lEUxJ46gx6J+mTT8VUf1oR2grhUHak0c1a/G+rQ1k3jj7WLmFyCcC mTsUPPzzhHd9D91eN3JQ+3Zx19jlCrj9M63PHCTyA+B0vE63t2x5EELmLWRSZhXE I5AMFvQwEanH5ZCMSOPcOrhmaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/pbC0h MAw+ClX69hjfdsEi5jQYMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPcjQ2SaJ/DAgcIAy2gKLg9w2xsBR0OoeR5OuxIeZmows2ckBwTyQ5 onuzxPEFOlxYvcNiYW6frEVXyVoWRtClnOy4ddlrfYHnv9UmsGlAv+F1erwdN5C1 6mNDXSO9UPQJ3cd7t4qljIpGcWPIuFyozopTgKahkV51Q78+E072YRedTNHNgfUZ Lpho/1C8IodMHgG0reNaGqZFJv5PmCqdoiV8X+5JEigKpLpeBAV/rZqvnca+r7lj 8R2roKPX8FiTGYqVWniEf/wjCmkB/iPtx1pBon1q12akm5FJqf+FM3zXZYloHrlx r2CK4OAM9WecdqO+BfE99mRtojc2FeKO -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org