$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: qlMXy/r+VOOePywswgHh88dhT+jm7+AWMWbZPEmujps= Subject key identifier: 12:AD:EF:4F:17:36:4E:80:51:49:C4:EA:64:E5:26:42:AA:B7:6A:67 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 1000 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 0FF9 Signing time: Fri 22 Nov 2024 17:25:28 +0000 Manifest this update: Fri 22 Nov 2024 17:25:27 +0000 Manifest next update: Fri 29 Nov 2024 17:25:27 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: p1tkSde1B6fkE+IKvx45Zuaik/kqcp7l2h9LgGLQOcg=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: 6FqgiZMUxa33Dx66ztigBXPwvboVUKr0rBQAO7+tpXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4096 (0x1000) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Nov 22 17:25:27 2024 GMT Not After : Nov 29 17:25:27 2024 GMT Subject: CN=6740be88-c439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:10:50:59:c1:35:bd:8c:3d:81:44:ee:5e:5b: cc:67:3a:68:77:69:2f:fc:a6:39:1d:19:a4:c4:12: af:69:bc:de:ec:2b:44:e2:9f:e0:ff:a2:1d:67:a0: 97:73:5e:1d:33:1a:cf:05:5c:b9:fa:37:08:9e:a1: 5d:66:77:c8:53:98:75:02:ef:88:3e:c7:c4:e8:79: 7e:0a:62:5b:88:d0:7f:f8:cf:13:fe:b3:99:2f:2c: 35:59:3f:c5:48:db:17:61:9e:63:c3:e0:a6:3b:00: c1:5e:2d:b7:f9:1f:55:20:96:94:c5:df:1b:06:d4: 97:0e:03:3a:85:a1:35:20:df:5c:4a:32:4b:c4:a3: 1a:16:41:e9:2f:4a:46:68:01:48:a9:8d:3b:f0:dd: 2b:e9:42:32:c2:99:db:41:86:3e:8d:b5:7f:74:b4: 22:48:1e:3b:80:b3:e2:72:12:73:05:17:3d:05:1b: 5d:32:8c:8d:c7:85:16:be:ff:49:e1:c3:b1:c0:38: fa:25:61:dd:ab:0e:39:ee:0e:7a:42:a5:20:79:42: de:83:e1:64:19:cb:dd:f9:4c:3a:8e:3f:96:16:60: 7e:c2:67:16:87:bd:fc:3f:9d:a1:db:b8:bf:51:03: c7:50:17:a0:0e:92:3e:4e:cc:1d:b8:40:5f:4e:3d: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AD:EF:4F:17:36:4E:80:51:49:C4:EA:64:E5:26:42:AA:B7:6A:67 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4e:9e:84:df:e6:48:a7:55:79:82:75:49:f2:a4:5b:15:1f: 54:68:65:21:2a:83:5b:c0:29:4f:38:00:55:3b:9c:f8:90:58: 92:64:4d:c1:94:c9:7d:ad:a0:1e:da:f5:b7:49:39:a9:d6:56: 83:30:8c:02:1c:de:fd:11:ca:e2:a3:50:f9:b0:67:81:44:7b: b6:c3:fc:20:ec:5b:08:42:4c:06:fe:ae:2c:93:0c:8d:8b:3b: bf:9c:39:07:31:7f:a6:7c:d9:12:58:59:b7:bb:41:5c:79:44: 0d:98:f2:7f:3d:0c:56:e9:b6:64:74:7a:30:1e:35:cc:4d:08: 6c:04:00:fb:db:ca:f5:a0:47:21:4a:9e:6e:bd:52:fe:fc:96: 7c:94:1c:85:b0:be:34:ec:70:fa:29:38:82:94:87:2b:56:27: 8b:27:93:c0:dc:07:a5:64:70:8d:1c:35:a4:00:bc:dc:d2:03: 79:bd:81:ab:e6:4d:42:4e:43:36:de:21:b0:45:de:7a:3b:90: 29:71:d5:7f:28:4d:02:94:77:e2:8c:0e:03:8c:74:b6:53:10: a6:61:58:48:62:4c:2b:b6:c7:2f:53:0c:9a:dc:9b:9c:f0:73: 08:6e:16:ec:0c:df:d1:42:bf:79:d3:79:39:ef:50:86:79:79: 0d:b1:c7:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjQxMTIyMTcyNTI3WhcNMjQxMTI5MTcyNTI3WjAYMRYwFAYD VQQDEw02NzQwYmU4OC1jNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BBQWcE1vYw9gUTuXlvMZzpod2kv/KY5HRmkxBKvabze7CtE4p/g/6IdZ6CX c14dMxrPBVy5+jcInqFdZnfIU5h1Au+IPsfE6Hl+CmJbiNB/+M8T/rOZLyw1WT/F SNsXYZ5jw+CmOwDBXi23+R9VIJaUxd8bBtSXDgM6haE1IN9cSjJLxKMaFkHpL0pG aAFIqY078N0r6UIywpnbQYY+jbV/dLQiSB47gLPichJzBRc9BRtdMoyNx4UWvv9J 4cOxwDj6JWHdqw457g56QqUgeULeg+FkGcvd+Uw6jj+WFmB+wmcWh738P52h27i/ UQPHUBegDpI+TswduEBfTj1maQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKt708X Nk6AUUnE6mTlJkKqt2pnMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQTp6E3+ZIp1V5gnVJ8qRbFR9UaGUhKoNbwClPOABVO5z4kFiSZE3B lMl9raAe2vW3STmp1laDMIwCHN79Ecrio1D5sGeBRHu2w/wg7FsIQkwG/q4skwyN izu/nDkHMX+mfNkSWFm3u0FceUQNmPJ/PQxW6bZkdHowHjXMTQhsBAD728r1oEch Sp5uvVL+/JZ8lByFsL407HD6KTiClIcrVieLJ5PA3AelZHCNHDWkALzc0gN5vYGr 5k1CTkM23iGwRd56O5ApcdV/KE0ClHfijA4DjHS2UxCmYVhIYkwrtscvUwya3Juc 8HMIbhbsDN/RQr9503k571CGeXkNsceW -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org