$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: igggPc8ivy7Mz14frA2SsDkyF20h6WQ6kFFlWUKsPOM= Subject key identifier: 00:42:9A:59:4E:6E:F7:F9:72:C4:0A:A0:27:75:96:38:8B:A0:0A:19 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 10 Signing time: Sat 23 Nov 2024 06:00:39 +0000 Manifest this update: Sat 23 Nov 2024 06:00:39 +0000 Manifest next update: Sat 30 Nov 2024 06:00:39 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: hnSVuDXF5cac6Q56VZFbZcIN5LFKd20VcisgrRoOJsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Nov 23 06:00:39 2024 GMT Not After : Nov 30 06:00:39 2024 GMT Subject: CN=67416f87-22ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:10:62:03:6a:8a:65:0d:cf:80:98:b0:72:a9: 92:5e:9b:0f:ec:aa:e5:5e:a7:9c:54:5d:03:60:9d: 58:ed:3a:02:1b:0e:45:5f:aa:89:65:ab:b6:4a:3c: a6:7e:24:44:ea:b8:c7:df:4a:39:4d:d8:4d:1d:de: a1:a1:58:0d:a6:6e:04:c4:75:d9:20:59:e1:68:0c: 35:5b:c9:d5:46:fc:b0:ea:a7:05:b8:30:6e:67:24: 35:c4:34:b1:9c:44:f1:25:bc:57:81:76:39:5a:07: 40:8a:f4:7d:f0:0b:19:8b:96:6b:4f:38:f2:d3:8a: 72:38:43:74:4c:be:0e:bb:33:63:62:53:98:ec:a6: d3:4e:39:d7:24:29:e6:6f:d5:9e:46:7c:be:86:9e: e9:94:69:62:d2:34:6b:61:b1:b9:d3:09:70:3b:96: d5:73:64:03:58:68:7f:2a:1a:74:00:80:cb:78:7d: 18:d5:20:b3:23:d6:14:b7:6b:7e:c7:21:0f:d8:3b: c2:94:f2:ab:c9:74:64:1b:3d:6c:ab:8e:26:0e:ce: 2f:b9:21:3c:8d:dc:55:1e:26:6a:b1:75:7f:6f:b8: 7b:09:ba:ef:ff:cf:0f:37:2c:8b:56:35:ba:47:c6: c3:48:91:13:af:df:f8:f1:71:15:67:57:92:52:a0: 4e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:42:9A:59:4E:6E:F7:F9:72:C4:0A:A0:27:75:96:38:8B:A0:0A:19 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ac:89:5b:8f:d1:ba:91:c9:5e:c8:80:44:b0:ad:15:66:d0: 39:cd:60:66:07:ee:1a:ae:75:c9:bf:77:22:86:28:73:09:26: c8:b2:b5:3b:0e:cc:5f:01:4a:ff:09:68:2f:a2:b3:4a:d3:08: d3:38:fe:ce:52:c9:c3:d2:1b:f4:04:8e:e1:81:0c:dc:fa:ba: b4:ee:cf:1d:55:03:42:81:af:a7:34:4b:dc:9c:27:fe:9f:6f: 64:27:41:0e:db:ab:ab:f1:d4:3c:be:82:5f:ef:a1:85:0b:21: c5:bc:7d:ac:37:54:26:87:c5:2e:0f:f6:3c:1e:c1:25:f0:b4: 1a:fb:93:cc:42:2d:22:d1:d0:48:ef:cb:aa:7f:18:2c:93:60: ad:e1:67:06:8e:0d:a9:17:fd:79:ce:86:d3:de:88:7a:8e:3a: 54:1d:6c:cd:44:f1:89:29:86:9b:66:26:2c:68:21:d5:27:bd: b4:c8:6a:90:c3:98:55:91:61:7a:c0:41:3e:72:23:ad:d5:3c: 09:b0:b3:8e:72:a6:3a:9e:ba:16:67:33:2a:a9:fd:23:cf:30: 2f:d6:de:f0:c8:25:e2:c7:fc:e9:95:cf:ab:5e:ad:78:f4:4c: ba:a6:94:e2:33:4b:f7:9f:1a:dc:61:f3:f3:98:1d:10:0c:04: a6:7b:e2:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNDExMjMwNjAwMzlaFw0yNDExMzAwNjAwMzlaMBgxFjAUBgNV BAMTDTY3NDE2Zjg3LTIyYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7EGIDaoplDc+AmLByqZJemw/squVep5xUXQNgnVjtOgIbDkVfqollq7ZKPKZ+ JETquMffSjlN2E0d3qGhWA2mbgTEddkgWeFoDDVbydVG/LDqpwW4MG5nJDXENLGc RPElvFeBdjlaB0CK9H3wCxmLlmtPOPLTinI4Q3RMvg67M2NiU5jsptNOOdckKeZv 1Z5GfL6GnumUaWLSNGthsbnTCXA7ltVzZANYaH8qGnQAgMt4fRjVILMj1hS3a37H IQ/YO8KU8qvJdGQbPWyrjiYOzi+5ITyN3FUeJmqxdX9vuHsJuu//zw83LItWNbpH xsNIkROv3/jxcRVnV5JSoE4FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAEKaWU5u 9/lyxAqgJ3WWOIugChkwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RDgwL0QyMjNDNUFFOTRDOTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3Vy ZG5vbXBlbzJmTTJlY3AtSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFusiVuP0bqRyV7IgESwrRVm0DnNYGYH7hqudcm/dyKGKHMJJsiytTsO zF8BSv8JaC+is0rTCNM4/s5SycPSG/QEjuGBDNz6urTuzx1VA0KBr6c0S9ycJ/6f b2QnQQ7bq6vx1Dy+gl/voYULIcW8faw3VCaHxS4P9jwewSXwtBr7k8xCLSLR0Ejv y6p/GCyTYK3hZwaODakX/XnOhtPeiHqOOlQdbM1E8YkphptmJixoIdUnvbTIapDD mFWRYXrAQT5yI63VPAmws45ypjqeuhZnMyqp/SPPMC/W3vDIJeLH/OmVz6terXj0 TLqmlOIzS/efGtxh8/OYHRAMBKZ74p4= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org