$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: iIjL5F4IeKoP7IRNEOj0JomR3FEiy8mpOsEUD3yEI7U= Subject key identifier: F6:10:FE:F7:D1:E7:B0:BF:16:EE:64:48:46:F6:B2:62:BD:86:AF:B7 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: EA Signing time: Wed 20 Nov 2024 17:43:55 +0000 Manifest this update: Wed 20 Nov 2024 17:43:54 +0000 Manifest next update: Wed 27 Nov 2024 17:43:54 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: yrWKzEH4lm/GQlh/EgFX20a9VmJbFuqFBrxw8HeG3W4=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: 6Te+3VLS/O5qxRt8jv/bM33nUlqEem+47I9pmRS4Z7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Nov 20 17:43:54 2024 GMT Not After : Nov 27 17:43:54 2024 GMT Subject: CN=673e1fdb-b33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:14:73:b5:7b:60:e9:73:d9:77:87:3b:0d:44: f9:2e:bc:87:cb:05:16:a6:2e:82:94:87:6e:e5:b5: 4f:0b:a7:f8:45:cb:8f:4d:45:b9:0a:d1:ba:86:90: ed:58:b5:96:83:36:3a:19:e2:22:8b:c1:0a:cf:4c: d8:b9:08:63:1e:f2:80:de:e6:5e:9b:40:93:70:55: 68:db:05:0d:40:27:97:dd:44:75:12:84:1b:ad:7a: 06:02:dd:4b:6b:c8:f2:75:8e:8a:17:43:b7:e0:ef: 0e:5f:80:df:fd:d1:78:c2:07:a1:0b:01:ac:1e:5e: f2:59:dc:2e:b7:85:97:a2:ff:73:9a:eb:7c:15:20: c1:c3:b3:c6:b3:85:d7:9b:3b:ba:db:31:f4:18:29: d4:c3:4e:27:b9:fd:34:17:be:91:71:bd:8f:84:c1: 1d:bf:f7:26:d4:e6:fd:c4:e8:93:ec:84:47:b3:71: 25:3c:2c:b3:f2:aa:85:14:71:8b:9e:73:33:97:5a: 3d:4d:5e:67:5c:2e:01:1d:22:8c:dd:b1:ae:34:c3: ab:d9:bf:ad:e9:ea:22:c2:74:ff:f2:d6:cd:b4:41: 9f:7b:8f:bc:bd:c6:50:3c:5a:0c:c7:13:f7:30:fc: 3c:f9:39:be:1a:97:ac:e7:b9:41:cf:fb:d0:33:25: ef:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:10:FE:F7:D1:E7:B0:BF:16:EE:64:48:46:F6:B2:62:BD:86:AF:B7 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:f7:cb:d5:2a:e3:22:63:da:ac:b4:7e:4f:ee:08:77:b5:a0: 7d:98:ed:ca:e8:39:f3:95:6c:3f:f4:fd:4a:0d:f5:0f:1b:e0: 40:01:e3:2c:03:2c:41:d7:9c:cc:d6:ad:14:d3:5a:52:e1:d2: 03:ae:11:b0:98:6d:35:6a:42:c5:7f:d4:74:db:46:64:5e:7f: de:86:81:04:9b:0c:31:6c:f4:cf:b1:c2:c7:ce:5c:5b:9d:7d: e1:a1:61:01:cb:53:65:d4:12:0d:ea:2e:0e:74:95:5b:2f:aa: ec:fd:31:bd:44:51:12:e6:3d:67:d4:1c:8a:32:68:da:31:d8: e0:5b:22:d6:f2:ab:01:da:3e:cf:de:e9:e2:f0:f2:f7:fb:74: 48:b5:d7:08:8c:78:ab:f3:62:65:ca:b7:8d:2b:f4:21:2e:8e: 6c:f3:b8:d3:f6:cc:13:c6:3f:ea:9e:94:7f:93:ae:bc:d1:0f: b7:4a:18:d6:34:bc:5f:24:d4:90:9b:06:14:b2:1d:08:73:dc: 98:a9:f3:ba:4b:48:c6:cf:eb:f5:f5:22:7c:f4:c3:0a:aa:e0: d5:39:36:1f:06:b3:70:93:fc:eb:be:d9:23:37:a2:b3:a7:4d: b9:31:73:3f:d6:3a:7a:ef:ed:77:5d:6c:b4:6f:64:9b:de:e4: 6f:1e:c9:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjQxMTIwMTc0MzU0WhcNMjQxMTI3MTc0MzU0WjAYMRYwFAYD VQQDEw02NzNlMWZkYi1iMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhRztXtg6XPZd4c7DUT5LryHywUWpi6ClIdu5bVPC6f4RcuPTUW5CtG6hpDt WLWWgzY6GeIii8EKz0zYuQhjHvKA3uZem0CTcFVo2wUNQCeX3UR1EoQbrXoGAt1L a8jydY6KF0O34O8OX4Df/dF4wgehCwGsHl7yWdwut4WXov9zmut8FSDBw7PGs4XX mzu62zH0GCnUw04nuf00F76Rcb2PhMEdv/cm1Ob9xOiT7IRHs3ElPCyz8qqFFHGL nnMzl1o9TV5nXC4BHSKM3bGuNMOr2b+t6eoiwnT/8tbNtEGfe4+8vcZQPFoMxxP3 MPw8+Tm+Gpes57lBz/vQMyXvRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYQ/vfR 57C/Fu5kSEb2smK9hq+3MB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDd98vVKuMiY9qstH5P7gh3taB9mO3K6DnzlWw/9P1KDfUPG+BAAeMs AyxB15zM1q0U01pS4dIDrhGwmG01akLFf9R020ZkXn/ehoEEmwwxbPTPscLHzlxb nX3hoWEBy1Nl1BIN6i4OdJVbL6rs/TG9RFES5j1n1ByKMmjaMdjgWyLW8qsB2j7P 3uni8PL3+3RItdcIjHir82JlyreNK/QhLo5s87jT9swTxj/qnpR/k6680Q+3ShjW NLxfJNSQmwYUsh0Ic9yYqfO6S0jGz+v19SJ89MMKquDVOTYfBrNwk/zrvtkjN6Kz p025MXM/1jp67+13XWy0b2Sb3uRvHskB -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:09 2024 by rpki-client on console-ams.rpki-client.org