$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: 0vv1JWjLQM+KxLg9Mxl2apRICtZOL/0KUpyLxpe0F6A= Subject key identifier: C4:95:FC:22:EF:82:A9:14:71:52:D2:DC:D0:6B:76:16:1C:6D:46:30 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2135 Signing time: Wed 20 Nov 2024 15:54:13 +0000 Manifest this update: Wed 20 Nov 2024 15:54:12 +0000 Manifest next update: Wed 27 Nov 2024 15:54:12 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: 9vKl2GhEiFv7WRB/8koUDJcotlbFVi/tdPwTnVipR/M=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8567 (0x2177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Nov 20 15:54:12 2024 GMT Not After : Nov 27 15:54:12 2024 GMT Subject: CN=673e0624-ac37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dd:67:98:5a:97:65:b6:15:cf:46:c9:5b:95: 57:28:0e:91:4a:0f:e1:3b:89:d9:d8:57:18:97:c1: c4:bf:00:c5:f0:37:9b:d7:be:69:24:55:20:b7:92: 3a:62:8d:24:b1:cd:17:2a:d5:5e:6e:24:85:2a:c5: 32:01:5b:b5:00:f1:fc:cb:95:c6:83:1c:7c:1d:51: 4e:17:ea:bf:1d:63:85:c0:06:a4:82:e2:0f:ff:3a: 0e:92:7e:23:63:7c:d4:4f:a4:18:57:a4:13:c8:e6: bd:db:5a:5e:53:51:b9:99:e1:3c:62:a5:fb:61:47: 4b:b8:92:c3:8c:10:19:cc:1d:c0:f8:3d:c7:82:90: f5:2e:10:3b:14:0b:71:72:ae:ec:07:eb:c6:39:1e: b8:b3:4c:a8:7b:a9:5f:b4:ee:01:e2:41:ae:c9:e9: 9d:9a:fe:4d:93:91:ec:c9:32:52:d1:07:67:fc:56: 78:09:1c:e4:56:f2:98:7e:9a:9f:36:db:1a:2a:f6: 95:ba:19:cc:75:f5:db:fd:cd:c4:ae:81:f9:5d:d8: 13:c9:7d:14:8e:01:26:c4:5a:ac:4d:02:ee:b2:c9: 05:ab:50:fb:3a:71:c1:4d:84:29:7f:ec:ac:2d:d8: aa:66:ed:c7:a4:ef:07:46:b9:1e:ad:0d:df:78:17: 33:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:95:FC:22:EF:82:A9:14:71:52:D2:DC:D0:6B:76:16:1C:6D:46:30 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:52:2e:3c:f6:5f:47:70:41:93:be:7f:da:d4:e3:98:fe:b3: c0:63:9c:2a:e0:6e:78:42:f9:0c:86:f7:52:e6:30:94:db:38: 9d:20:6c:02:f1:25:5c:68:b6:26:54:da:0b:e5:93:e0:f5:88: f4:ec:13:40:b2:e4:d8:ee:54:79:a1:83:ef:bc:52:93:1d:59: d8:c5:9b:8c:56:ae:68:d3:3b:62:77:53:65:de:ac:4c:46:4d: f1:4a:ae:8a:c4:4e:4c:77:95:5a:9c:a4:90:fd:3f:c8:87:ba: 73:61:f3:83:a8:21:89:f8:d5:e4:a0:e6:8d:d1:d7:94:1c:63: 90:c2:5f:b2:f5:71:09:dd:24:d9:9b:bc:1c:22:8d:24:68:86: 7d:96:ea:b4:53:96:62:9b:df:af:ad:d5:08:5c:97:4c:53:df: 02:1b:4f:46:c8:fa:58:c5:e3:90:d1:28:31:67:9f:e4:0c:3b: 13:6f:f3:fd:1d:3e:ae:f2:7e:59:ab:a2:52:98:af:ed:9f:ab: b7:43:5d:30:62:dd:f2:cc:dc:3a:75:81:ac:f2:06:03:86:70: 88:7c:d0:ce:9d:b2:25:30:90:b3:58:2f:81:ab:07:a2:ec:47: 5f:a7:c5:ec:82:0f:ab:37:39:bf:2a:05:22:ea:d2:24:b6:64: 8e:80:07:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQxMTIwMTU1NDEyWhcNMjQxMTI3MTU1NDEyWjAYMRYwFAYD VQQDEw02NzNlMDYyNC1hYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd1nmFqXZbYVz0bJW5VXKA6RSg/hO4nZ2FcYl8HEvwDF8Deb175pJFUgt5I6 Yo0ksc0XKtVebiSFKsUyAVu1APH8y5XGgxx8HVFOF+q/HWOFwAakguIP/zoOkn4j Y3zUT6QYV6QTyOa921peU1G5meE8YqX7YUdLuJLDjBAZzB3A+D3HgpD1LhA7FAtx cq7sB+vGOR64s0yoe6lftO4B4kGuyemdmv5Nk5HsyTJS0Qdn/FZ4CRzkVvKYfpqf NtsaKvaVuhnMdfXb/c3EroH5XdgTyX0UjgEmxFqsTQLusskFq1D7OnHBTYQpf+ys LdiqZu3HpO8HRrkerQ3feBczMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSV/CLv gqkUcVLS3NBrdhYcbUYwMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Ui489l9HcEGTvn/a1OOY/rPAY5wq4G54QvkMhvdS5jCU2zidIGwC 8SVcaLYmVNoL5ZPg9Yj07BNAsuTY7lR5oYPvvFKTHVnYxZuMVq5o0ztid1Nl3qxM Rk3xSq6KxE5Md5VanKSQ/T/Ih7pzYfODqCGJ+NXkoOaN0deUHGOQwl+y9XEJ3STZ m7wcIo0kaIZ9luq0U5Zim9+vrdUIXJdMU98CG09GyPpYxeOQ0SgxZ5/kDDsTb/P9 HT6u8n5Zq6JSmK/tn6u3Q10wYt3yzNw6dYGs8gYDhnCIfNDOnbIlMJCzWC+Bqwei 7Edfp8Xsgg+rNzm/KgUi6tIktmSOgAeN -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:08 2024 by rpki-client on console-fra.rpki-client.org