$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: qPod7Z2qpmxp2z0f//BgWjMAWnhoC2N2V9ZF52ey5JY= Subject key identifier: 09:A0:B5:EC:6B:36:75:C0:06:DB:E3:00:FC:88:3D:8A:B4:AE:3F:59 Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0E3B Signing time: Fri 22 Nov 2024 17:43:24 +0000 Manifest this update: Fri 22 Nov 2024 17:43:23 +0000 Manifest next update: Fri 29 Nov 2024 17:43:23 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: ip0vBTwa/IG6gReyBcudEKyX/N2RgWKeutm87OZ496g=) 2: 5DCDC4FE8E5611E9A403BF44C4F9AE02.roa (hash: ESHAZFQ3N4xus0VWTNPV81i6ivAkzaFgejXUoFrz+sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Nov 22 17:43:23 2024 GMT Not After : Nov 29 17:43:23 2024 GMT Subject: CN=6740c2bc-5b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0f:2a:68:ce:12:48:e4:fb:5d:9c:e8:df:08: c4:0c:05:4f:8c:84:3d:78:28:b4:c2:ce:a8:79:e5: e1:48:ca:43:13:c3:5e:2b:af:6b:31:21:bc:07:67: 02:d7:b9:01:98:2f:05:5b:49:63:9d:96:1c:eb:c1: b3:63:a5:9b:87:1e:52:f5:f2:cb:99:c8:53:12:71: b5:f2:fc:85:f9:fa:e2:d2:1a:a7:53:5d:27:f4:4a: a0:56:55:ab:44:cf:42:1a:10:d1:8e:fa:3c:ab:59: 02:64:f7:ac:37:48:71:37:6d:89:db:ec:5e:1f:5b: f6:5b:c4:bb:04:50:2a:73:cd:d0:f8:46:40:a2:d3: 8a:8c:eb:4e:0e:f5:fa:9e:c2:f0:10:0a:45:e0:90: 2e:c4:7c:dd:65:48:9b:33:fb:66:ef:f1:68:d4:b7: 96:8e:69:94:90:db:65:91:3c:3d:64:53:51:81:72: d5:5f:86:cb:16:89:e4:91:af:f8:5a:a2:ea:14:bb: 8b:1f:39:92:f0:e8:d2:31:5d:45:c4:4d:d3:d6:56: c3:ef:30:ba:7c:3c:e0:07:2c:92:23:a0:6f:ee:24: e3:76:f6:52:2d:bd:b3:4d:c3:18:a0:01:f5:63:80: 94:b6:67:6b:56:14:2c:d3:9f:e7:9c:fa:a8:42:f0: 82:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A0:B5:EC:6B:36:75:C0:06:DB:E3:00:FC:88:3D:8A:B4:AE:3F:59 X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:f8:a6:84:31:52:55:68:d0:df:b9:e1:20:1a:e8:56:9a:73: f1:5b:09:c7:70:1b:e6:c9:fa:21:1f:bf:e1:e2:33:c8:ba:bb: 9c:fe:76:1a:42:73:81:f6:ca:3e:3c:2e:90:95:89:e0:60:58: f8:13:ec:6c:c3:04:6c:b7:4b:3e:63:bf:45:b4:9b:40:8f:8e: 3c:8a:56:48:8a:43:70:54:8a:45:7c:0c:35:92:d9:d8:41:21: 3c:d6:5c:ab:39:bd:1b:1a:be:fd:9f:dd:74:0e:95:68:5c:b0: ce:5f:9d:6a:a0:f3:7e:40:0d:2b:85:b9:d3:99:a5:ec:0d:cd: ff:45:7a:85:cd:41:73:64:a1:67:66:0f:52:2f:ca:5a:1b:a7: 29:4c:6e:fe:43:3d:8e:d0:da:a7:21:2d:0e:42:3e:78:90:de: 97:35:da:0c:39:e4:ad:f4:10:86:4a:84:dc:b8:90:fb:11:1b: bc:c6:7e:4f:70:01:05:c3:1b:71:b1:45:a5:23:60:fd:c9:78: c0:98:26:96:ab:b6:3c:46:b8:36:30:95:38:2a:d6:ae:a0:16: df:f6:d4:76:17:b0:53:ad:42:e2:24:38:5c:06:0a:e0:df:85: ba:1c:91:fb:12:83:e6:e2:e3:b7:f3:d8:24:a3:cd:d3:e9:50: 0d:62:2d:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjQxMTIyMTc0MzIzWhcNMjQxMTI5MTc0MzIzWjAYMRYwFAYD VQQDEw02NzQwYzJiYy01YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg8qaM4SSOT7XZzo3wjEDAVPjIQ9eCi0ws6oeeXhSMpDE8NeK69rMSG8B2cC 17kBmC8FW0ljnZYc68GzY6Wbhx5S9fLLmchTEnG18vyF+fri0hqnU10n9EqgVlWr RM9CGhDRjvo8q1kCZPesN0hxN22J2+xeH1v2W8S7BFAqc83Q+EZAotOKjOtODvX6 nsLwEApF4JAuxHzdZUibM/tm7/Fo1LeWjmmUkNtlkTw9ZFNRgXLVX4bLFonkka/4 WqLqFLuLHzmS8OjSMV1FxE3T1lbD7zC6fDzgByySI6Bv7iTjdvZSLb2zTcMYoAH1 Y4CUtmdrVhQs05/nnPqoQvCCYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmgtexr NnXABtvjAPyIPYq0rj9ZMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8+KaEMVJVaNDfueEgGuhWmnPxWwnHcBvmyfohH7/h4jPIuruc/nYa QnOB9so+PC6QlYngYFj4E+xswwRst0s+Y79FtJtAj448ilZIikNwVIpFfAw1ktnY QSE81lyrOb0bGr79n910DpVoXLDOX51qoPN+QA0rhbnTmaXsDc3/RXqFzUFzZKFn Zg9SL8paG6cpTG7+Qz2O0NqnIS0OQj54kN6XNdoMOeSt9BCGSoTcuJD7ERu8xn5P cAEFwxtxsUWlI2D9yXjAmCaWq7Y8Rrg2MJU4KtauoBbf9tR2F7BTrULiJDhcBgrg 34W6HJH7EoPm4uO389gko83T6VANYi3r -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org