$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: SaeF/0PUeyPutm+aOk8DkNHf9xpbyZmW2JaoQSJaF0Q= Subject key identifier: B4:2C:39:69:67:A0:B3:98:D7:05:89:45:C0:C1:D2:02:A9:DC:6B:E5 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: E2 Signing time: Sat 23 Nov 2024 03:35:34 +0000 Manifest this update: Sat 23 Nov 2024 03:35:33 +0000 Manifest next update: Sat 30 Nov 2024 03:35:33 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: WVhwqA8f6/0286xPSGBjCXcynPj1g+7bccezyaVOMsI=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: YUSUdSQGsAYrkhG5r+Ikfnd8mpcwF6T3vxWqRkOzHrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Nov 23 03:35:33 2024 GMT Not After : Nov 30 03:35:33 2024 GMT Subject: CN=67414d86-8afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:18:8f:b8:cd:61:c6:4c:78:2a:ca:d3:a8:2d: e2:fa:bd:7b:36:61:48:39:da:31:bf:05:50:54:b3: cb:ae:3f:1c:c5:f8:e4:b9:35:88:a5:26:e6:0b:c2: 26:39:59:20:03:ee:67:b9:41:ce:a6:d5:29:f2:de: 6b:00:eb:79:79:45:c9:13:11:44:a8:c1:50:28:7e: 46:65:36:52:4f:c5:3f:e5:55:e6:db:fd:65:6a:2a: 69:93:80:4a:09:2e:47:37:5e:8e:2a:3f:eb:da:f8: e8:bf:ef:00:36:03:21:8b:58:be:1b:ef:94:5e:88: 29:43:ff:c2:4e:4b:34:a8:22:fc:ea:52:d7:10:62: 07:e3:89:68:24:fe:b8:ca:25:ed:78:7e:04:6f:b7: e3:0a:f0:f2:16:ca:01:52:6c:3b:f6:1a:13:d8:07: 41:78:5c:84:34:c2:24:07:d7:b2:65:b4:4c:3d:2c: 34:73:4f:8a:a1:f0:1c:ca:8c:0c:45:4a:d7:5b:41: be:e6:bd:d3:93:44:72:f2:c1:e3:d6:47:df:3f:e7: a3:c8:3e:1b:6d:42:94:7d:45:c9:e7:f8:41:8f:9f: 00:0f:f3:74:c1:37:fa:e2:f3:09:a8:d6:73:fb:03: f9:16:f6:e9:4a:72:79:1c:d5:7a:c9:db:e7:be:a6: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2C:39:69:67:A0:B3:98:D7:05:89:45:C0:C1:D2:02:A9:DC:6B:E5 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:92:b9:a6:1d:e4:5e:3a:42:a3:e6:84:d8:7a:67:30:09:c3: 68:b6:e3:dd:f1:09:33:67:e7:d0:2e:2c:68:bc:36:7c:d9:45: 29:04:58:27:9e:eb:d6:cc:6e:f6:a8:f9:69:17:c1:61:fc:04: 9d:de:85:2d:55:7d:88:fc:00:d8:67:73:a5:a4:87:8f:f4:7d: 70:39:8f:3d:85:c1:14:15:ba:15:15:6f:1b:67:51:56:83:90: 1a:49:c0:95:75:cb:f2:d0:aa:fc:76:51:38:33:79:26:ed:91: 53:54:83:35:82:4c:10:d9:8b:ad:a8:84:16:30:04:8b:02:e3: f3:53:ad:3f:f4:75:b2:3c:d4:01:08:79:22:cf:17:1d:7e:19: e6:f3:10:fa:eb:b1:76:80:f4:ea:33:ba:ef:a7:97:f6:33:cd: d1:c6:1c:97:f0:f5:6a:8d:f0:3e:b7:09:55:16:a4:15:de:a1: 98:13:c8:95:20:e1:76:5c:e0:f3:9a:16:29:19:27:ab:8c:1e: ee:65:51:ed:e9:97:49:c2:b5:87:b9:46:b4:5b:33:84:f0:e6: 99:50:73:b6:0e:22:31:92:8a:37:c6:6f:3b:6a:72:8d:65:79: e5:b6:ab:a2:78:bb:af:96:0a:33:74:ce:17:e7:3a:fa:50:49: 03:40:ed:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjQxMTIzMDMzNTMzWhcNMjQxMTMwMDMzNTMzWjAYMRYwFAYD VQQDEw02NzQxNGQ4Ni04YWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xiPuM1hxkx4KsrTqC3i+r17NmFIOdoxvwVQVLPLrj8cxfjkuTWIpSbmC8Im OVkgA+5nuUHOptUp8t5rAOt5eUXJExFEqMFQKH5GZTZST8U/5VXm2/1laippk4BK CS5HN16OKj/r2vjov+8ANgMhi1i+G++UXogpQ//CTks0qCL86lLXEGIH44loJP64 yiXteH4Eb7fjCvDyFsoBUmw79hoT2AdBeFyENMIkB9eyZbRMPSw0c0+KofAcyowM RUrXW0G+5r3Tk0Ry8sHj1kffP+ejyD4bbUKUfUXJ5/hBj58AD/N0wTf64vMJqNZz +wP5FvbpSnJ5HNV6ydvnvqaFUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQsOWln oLOY1wWJRcDB0gKp3GvlMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpkrmmHeReOkKj5oTYemcwCcNotuPd8QkzZ+fQLixovDZ82UUpBFgn nuvWzG72qPlpF8Fh/ASd3oUtVX2I/ADYZ3OlpIeP9H1wOY89hcEUFboVFW8bZ1FW g5AaScCVdcvy0Kr8dlE4M3km7ZFTVIM1gkwQ2YutqIQWMASLAuPzU60/9HWyPNQB CHkizxcdfhnm8xD667F2gPTqM7rvp5f2M83RxhyX8PVqjfA+twlVFqQV3qGYE8iV IOF2XODzmhYpGSerjB7uZVHt6ZdJwrWHuUa0WzOE8OaZUHO2DiIxkoo3xm87anKN ZXnltquieLuvlgozdM4X5zr6UEkDQO0B -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org