$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: R8Zz/Q2CwgNCnc0CFNtNbdE7AuBxxmUbfAYHbhC4VDw= Subject key identifier: 31:63:B3:BA:C2:32:88:43:2D:C9:85:57:3E:46:08:F8:B4:EF:2B:6B Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: D0 Signing time: Sat 23 Nov 2024 03:46:43 +0000 Manifest this update: Sat 23 Nov 2024 03:46:43 +0000 Manifest next update: Sat 30 Nov 2024 03:46:43 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: qQwMvBtKp+pVhhAMiNIdSLZqMhWGV/BctJyMfZvjyb8=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: QQ5QrwGTURdTMG/7o8+lIRwrf/ztbEh4ekM9cA/bz/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Nov 23 03:46:43 2024 GMT Not After : Nov 30 03:46:43 2024 GMT Subject: CN=67415023-d425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:37:c8:88:b4:c2:29:1d:45:df:99:d3:62: d0:58:e5:ee:9a:ef:84:a9:b2:02:74:a6:15:d2:f0: d3:df:6c:ce:e5:ff:9f:5c:ea:00:14:cb:b9:8f:45: 54:4a:70:6a:f4:82:e7:5c:16:fc:bf:2f:62:a1:06: 3f:57:fc:ad:f0:db:c5:6e:8f:a9:30:c2:73:fe:a6: 36:68:ea:b7:d8:7f:8b:50:97:c6:cf:e0:7b:3e:55: 08:40:29:03:f8:85:94:3a:92:dc:93:f1:01:56:4c: 37:0a:56:d7:98:e0:96:fe:07:8f:ed:d2:49:04:e9: 6c:05:d7:a4:44:96:e8:fd:6e:89:93:59:1a:13:ea: 0d:0f:90:d1:27:c0:44:54:9f:1b:ee:a7:24:f8:4d: 84:bc:35:73:11:db:ba:7e:47:d6:ba:c6:86:1a:01: 95:7a:1a:6d:f1:3c:db:73:72:8e:46:a2:65:42:66: 29:45:75:2b:7c:fb:00:e2:77:9c:de:0b:49:c4:c9: a1:e7:8a:c0:e9:fe:7a:13:2a:90:ae:31:08:93:be: d0:31:d2:ea:1e:0c:e7:d7:45:83:45:11:9f:1c:35: b8:49:94:92:4d:df:6d:7f:47:0a:a9:d6:03:66:77: 33:ef:c8:c7:d5:00:17:26:5b:64:63:f9:66:54:7a: f5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:63:B3:BA:C2:32:88:43:2D:C9:85:57:3E:46:08:F8:B4:EF:2B:6B X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:07:29:25:a8:ec:d1:69:ef:c6:47:6b:01:d8:00:0d:06:5e: 15:89:0c:ba:ff:ba:d7:20:b8:13:d7:2f:1f:ca:fa:bc:45:7b: 1a:1b:5a:5e:5f:30:8a:d7:3e:1f:20:53:f4:f4:21:bd:bc:8f: d0:aa:c1:fd:51:4d:51:3c:11:93:18:85:f1:a0:8c:93:f4:38: 3d:09:43:d6:72:fa:46:e9:43:02:cb:fe:19:b7:a3:94:9c:c9: ec:3a:87:b1:f7:5a:65:ee:69:8e:2f:b0:e0:fc:4d:04:a9:37: a9:9c:b6:53:3a:96:e1:2b:bf:f3:d3:4c:38:14:ad:13:1b:94: 61:36:f3:39:79:8d:74:9f:71:73:71:e1:8a:fd:ab:5c:80:ad: 21:d9:e8:a4:29:ef:86:d8:6f:00:22:e9:e3:58:43:eb:07:77: b6:42:e1:a4:18:2d:47:20:48:6e:ec:90:27:fb:07:e9:03:9a: 24:e5:95:0d:f9:24:93:4e:1e:b8:d0:ba:c7:54:f6:12:a9:02: 6b:fe:63:48:04:35:fc:a6:96:22:d0:8a:97:aa:37:bf:dd:3f: b9:d8:a7:bd:1f:d0:65:16:57:b4:97:23:37:8a:26:61:18:54: 8f:52:c8:f0:03:75:0a:b9:4f:ae:da:2c:72:7b:b2:bd:71:ba: ac:2a:c1:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjQxMTIzMDM0NjQzWhcNMjQxMTMwMDM0NjQzWjAYMRYwFAYD VQQDEw02NzQxNTAyMy1kNDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAQ3yIi0wikdRd+Z02LQWOXumu+EqbICdKYV0vDT32zO5f+fXOoAFMu5j0VU SnBq9ILnXBb8vy9ioQY/V/yt8NvFbo+pMMJz/qY2aOq32H+LUJfGz+B7PlUIQCkD +IWUOpLck/EBVkw3ClbXmOCW/geP7dJJBOlsBdekRJbo/W6Jk1kaE+oND5DRJ8BE VJ8b7qck+E2EvDVzEdu6fkfWusaGGgGVehpt8Tzbc3KORqJlQmYpRXUrfPsA4nec 3gtJxMmh54rA6f56EyqQrjEIk77QMdLqHgzn10WDRRGfHDW4SZSSTd9tf0cKqdYD Zncz78jH1QAXJltkY/lmVHr1QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFjs7rC MohDLcmFVz5GCPi07ytrMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ByklqOzRae/GR2sB2AANBl4ViQy6/7rXILgT1y8fyvq8RXsaG1pe XzCK1z4fIFP09CG9vI/QqsH9UU1RPBGTGIXxoIyT9Dg9CUPWcvpG6UMCy/4Zt6OU nMnsOoex91pl7mmOL7Dg/E0EqTepnLZTOpbhK7/z00w4FK0TG5RhNvM5eY10n3Fz ceGK/atcgK0h2eikKe+G2G8AIunjWEPrB3e2QuGkGC1HIEhu7JAn+wfpA5ok5ZUN +SSTTh640LrHVPYSqQJr/mNIBDX8ppYi0IqXqje/3T+52Ke9H9BlFle0lyM3iiZh GFSPUsjwA3UKuU+u2ixye7K9cbqsKsHe -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org