$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: jiG5bNJU3QjtsfrDla1jb7M2QNOI8rDQ3zJlSqi6u3k= Subject key identifier: 41:D4:79:A5:C1:13:0B:4D:B6:3E:AB:43:AB:BB:7C:DB:82:4D:5C:11 Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0C43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0C3B Signing time: Fri 22 Nov 2024 18:11:40 +0000 Manifest this update: Fri 22 Nov 2024 18:11:39 +0000 Manifest next update: Fri 29 Nov 2024 18:11:39 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: nOPZAbLH/qrQa6r8Ohq/QhlPXnEv+vFF91Vx+uuocZ0=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: T2/7+GhD0gC7tHcYOfbrfDJ70g/35K+/3DgLmDK20MU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: Nov 22 18:11:39 2024 GMT Not After : Nov 29 18:11:39 2024 GMT Subject: CN=6740c95b-dd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:4e:5a:4a:06:78:fc:ff:a7:db:01:a6:83: 8a:f9:6a:51:da:64:51:0f:8a:20:a4:d2:27:a4:6f: 11:11:d4:f9:e5:69:b9:8a:ab:86:b8:37:53:e3:e9: c4:7c:32:f8:30:8d:0a:32:3c:d4:74:fa:7c:6c:31: a9:d1:ba:76:6d:31:6d:f1:53:6e:84:71:d8:c6:42: 7f:1f:00:51:5f:56:e3:85:19:01:cd:78:a6:3a:92: f7:f8:96:40:32:b9:cc:9c:f9:f2:fa:5d:dd:0d:ed: f1:64:3c:4a:7b:9b:f5:04:57:e8:b1:c1:12:0d:88: 9f:a8:4c:2d:72:4f:f1:4f:a5:58:e4:db:44:99:ec: ff:21:70:6b:aa:c7:cc:fc:66:97:5b:07:7b:32:43: 6e:53:c6:86:79:52:4a:ef:2b:5a:f0:7f:a0:d2:8d: 0a:de:3b:7e:c8:c7:cb:c2:3b:e2:28:3d:77:aa:5a: a8:30:d5:37:a0:b5:1e:01:30:64:72:25:37:93:5b: 42:c8:18:ed:a6:7c:50:46:ae:65:45:00:91:72:4c: 30:41:45:e5:79:ee:be:d8:04:d9:d5:24:cf:b1:2a: 2a:48:86:e9:ec:a5:69:88:d0:79:47:4b:04:6b:b1: a8:20:94:93:93:84:b6:e0:d1:52:1a:3d:31:5a:1a: d7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D4:79:A5:C1:13:0B:4D:B6:3E:AB:43:AB:BB:7C:DB:82:4D:5C:11 X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:96:40:d3:f6:84:82:33:3f:32:4d:00:9a:93:c3:a1:f7:13: 7d:60:ae:8a:49:29:81:5e:2a:b5:07:16:64:c5:df:4a:89:0c: be:84:fc:6b:d4:da:31:66:15:81:d0:85:fa:45:e2:ae:db:9c: e7:73:1a:db:d5:7d:20:68:0d:cb:21:ae:56:40:d0:83:4f:5f: 99:a7:88:22:03:ab:18:fd:02:07:90:41:21:b7:16:8d:1c:8f: 1b:12:c4:4d:9a:7a:c8:a8:67:6a:80:d1:d4:d8:f7:11:e5:3c: 12:00:f4:a7:5a:f7:2e:9d:e9:2d:fc:4a:03:d9:3a:c8:fa:d6: 81:f3:76:79:27:98:a1:cf:94:1c:2b:a1:a2:63:10:77:d2:f3: 57:d7:af:e8:34:e3:8a:1c:5e:a7:74:90:21:7a:dc:cf:61:e1: a0:06:3c:bb:52:4d:bc:f4:99:15:a1:e0:a0:fa:08:4d:7b:be: 96:bc:67:37:5d:ea:2c:1b:4f:d1:a4:73:05:37:8f:be:b1:2e: 04:ab:8e:e9:03:1e:81:83:14:e4:8b:7e:c7:bb:a3:ca:e7:4d: 17:85:af:25:ee:05:7b:1c:8b:fc:68:d4:24:e0:56:4f:43:f6: 6c:e4:28:70:29:0f:a8:09:f3:a0:4b:14:35:a9:8a:d8:b2:e2: 9a:b4:ff:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjQxMTIyMTgxMTM5WhcNMjQxMTI5MTgxMTM5WjAYMRYwFAYD VQQDEw02NzQwYzk1Yi1kZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMhOWkoGePz/p9sBpoOK+WpR2mRRD4ogpNInpG8REdT55Wm5iquGuDdT4+nE fDL4MI0KMjzUdPp8bDGp0bp2bTFt8VNuhHHYxkJ/HwBRX1bjhRkBzXimOpL3+JZA MrnMnPny+l3dDe3xZDxKe5v1BFfoscESDYifqEwtck/xT6VY5NtEmez/IXBrqsfM /GaXWwd7MkNuU8aGeVJK7yta8H+g0o0K3jt+yMfLwjviKD13qlqoMNU3oLUeATBk ciU3k1tCyBjtpnxQRq5lRQCRckwwQUXlee6+2ATZ1STPsSoqSIbp7KVpiNB5R0sE a7GoIJSTk4S24NFSGj0xWhrXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHUeaXB EwtNtj6rQ6u7fNuCTVwRMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALlkDT9oSCMz8yTQCak8Oh9xN9YK6KSSmBXiq1BxZkxd9KiQy+hPxr 1NoxZhWB0IX6ReKu25zncxrb1X0gaA3LIa5WQNCDT1+Zp4giA6sY/QIHkEEhtxaN HI8bEsRNmnrIqGdqgNHU2PcR5TwSAPSnWvcunekt/EoD2TrI+taB83Z5J5ihz5Qc K6GiYxB30vNX16/oNOOKHF6ndJAhetzPYeGgBjy7Uk289JkVoeCg+ghNe76WvGc3 XeosG0/RpHMFN4++sS4Eq47pAx6BgxTki37Hu6PK500Xha8l7gV7HIv8aNQk4FZP Q/Zs5ChwKQ+oCfOgSxQ1qYrYsuKatP8e -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org