$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: ZvfTFnmf9zAhIksaPZqEh1/aKXMDHOgwqRZSe1cRIp4= Subject key identifier: 4D:B7:3A:CA:47:93:63:AF:A0:03:03:B3:1D:89:E7:2D:6D:F6:2C:F4 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0CDE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0CD7 Signing time: Wed 20 Nov 2024 17:59:04 +0000 Manifest this update: Wed 20 Nov 2024 17:59:03 +0000 Manifest next update: Wed 27 Nov 2024 17:59:03 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: WryuVsT6E8QRNEq/rQtTzkJjxCmIY/0og6mMHBJlYCg=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: r4Nn4V4I8uu965S2bp9gePUlDuw+WitBghKmVxEd5Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3294 (0xcde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Nov 20 17:59:03 2024 GMT Not After : Nov 27 17:59:03 2024 GMT Subject: CN=673e2367-0a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d8:4d:72:14:31:ee:ce:37:72:69:49:8a:7e: 5b:8b:bb:3e:ba:9e:aa:6b:e8:23:fa:8d:7e:9c:b6: 4e:66:6f:6c:c0:5c:44:f1:52:dd:e5:fd:73:26:80: 18:11:c8:58:f5:a8:1b:85:13:63:cd:b7:f9:00:28: e4:39:98:32:67:e7:0b:83:22:fd:5e:d2:ba:f6:62: cb:f5:8e:6f:6a:ab:d5:42:de:4d:dc:6e:da:3e:38: bf:00:bb:8e:c9:a9:54:d3:14:07:fe:77:be:4b:37: f5:20:0c:5e:f2:02:9b:2c:5b:f1:ed:59:cf:bc:21: 0b:a1:23:24:1a:35:f0:43:cd:00:f0:92:d6:a4:5b: 2a:46:e4:10:07:f2:03:1b:a7:23:bc:71:1b:06:0a: ba:c6:19:a2:b3:2e:f9:05:a1:d5:20:c2:06:e7:68: 1b:0c:11:32:bd:a0:a4:4b:30:86:fb:62:27:03:30: 25:3d:e1:fc:62:72:3e:0d:8f:6c:39:2a:35:57:8e: ca:e2:20:2c:20:8c:6f:56:5f:e8:f1:6a:93:d6:59: 22:0b:78:41:23:9f:4f:da:f6:f4:c2:4f:08:8e:07: 58:bc:35:98:83:7b:95:d3:fd:1b:83:db:06:bc:d3: 69:e8:3a:b7:26:0a:c6:a6:f1:11:52:4b:1f:f5:39: 77:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B7:3A:CA:47:93:63:AF:A0:03:03:B3:1D:89:E7:2D:6D:F6:2C:F4 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:13:7f:96:50:fa:43:86:1b:ea:f1:69:63:59:f1:b9:be:aa: 9e:ac:1d:0f:02:22:95:73:97:92:ea:76:5b:0c:d7:c4:bb:d7: d5:9e:27:0d:14:85:09:59:ca:dc:61:c2:01:43:09:87:d0:de: 33:8f:4c:79:30:d9:e2:19:f6:38:e6:ef:33:b4:b9:32:ab:1a: 69:6c:76:81:d7:5b:36:5f:ea:65:26:62:3d:1f:3c:a1:88:1c: 5c:c0:b1:cc:b4:a7:16:6f:bc:24:0a:35:82:ff:48:f8:a1:4e: 66:e8:8f:9c:db:16:9e:b6:c7:82:c7:5f:62:48:4d:b8:94:47: b2:c9:d4:48:3a:1a:5d:2d:fe:c0:22:58:91:46:6a:75:0b:29: 84:24:4b:75:3e:3b:0d:ec:53:c6:7a:85:64:81:c5:e8:e4:f5: 01:e6:53:ec:38:c3:af:8e:d6:b5:88:c2:be:c9:d2:05:37:ec: 29:f5:7e:a3:85:d5:59:6e:5e:f0:79:2c:a4:cf:36:3f:6c:39: d8:cc:73:c5:00:e1:fa:2a:03:f0:d0:be:01:9a:1f:62:0d:27: c9:0a:7d:49:8c:8a:ac:f1:65:0c:d1:c7:e6:25:28:0d:73:e7: 84:82:7d:99:34:13:f4:9f:a4:7a:a5:e3:31:3d:79:77:aa:54: 12:ad:f5:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjQxMTIwMTc1OTAzWhcNMjQxMTI3MTc1OTAzWjAYMRYwFAYD VQQDEw02NzNlMjM2Ny0wYTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvthNchQx7s43cmlJin5bi7s+up6qa+gj+o1+nLZOZm9swFxE8VLd5f1zJoAY EchY9agbhRNjzbf5ACjkOZgyZ+cLgyL9XtK69mLL9Y5vaqvVQt5N3G7aPji/ALuO yalU0xQH/ne+Szf1IAxe8gKbLFvx7VnPvCELoSMkGjXwQ80A8JLWpFsqRuQQB/ID G6cjvHEbBgq6xhmisy75BaHVIMIG52gbDBEyvaCkSzCG+2InAzAlPeH8YnI+DY9s OSo1V47K4iAsIIxvVl/o8WqT1lkiC3hBI59P2vb0wk8IjgdYvDWYg3uV0/0bg9sG vNNp6Dq3JgrGpvERUksf9Tl3PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE23OspH k2OvoAMDsx2J5y1t9iz0MB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4E3+WUPpDhhvq8WljWfG5vqqerB0PAiKVc5eS6nZbDNfEu9fVnicN FIUJWcrcYcIBQwmH0N4zj0x5MNniGfY45u8ztLkyqxppbHaB11s2X+plJmI9Hzyh iBxcwLHMtKcWb7wkCjWC/0j4oU5m6I+c2xaetseCx19iSE24lEeyydRIOhpdLf7A IliRRmp1CymEJEt1PjsN7FPGeoVkgcXo5PUB5lPsOMOvjta1iMK+ydIFN+wp9X6j hdVZbl7weSykzzY/bDnYzHPFAOH6KgPw0L4Bmh9iDSfJCn1JjIqs8WUM0cfmJSgN c+eEgn2ZNBP0n6R6peMxPXl3qlQSrfXS -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:09 2024 by rpki-client on console-ams.rpki-client.org