$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: DbEG5w0gLZmS/88EUb74DDMv2qZAwvjsYr2ihM84AtQ= Subject key identifier: F5:B7:41:2C:F7:9F:D2:4B:E4:68:49:42:90:09:42:7C:A3:5E:BF:FD Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 01FF Signing time: Sat 23 Nov 2024 01:36:15 +0000 Manifest this update: Sat 23 Nov 2024 01:36:14 +0000 Manifest next update: Sat 30 Nov 2024 01:36:14 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: KPULPVpqbsxZriW5ZZV44maDbIu7YW+ou1LRj7n9g18=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 7zo0d8WdBwFw00aoFQkrW7v2ow8E9G0bE4Wwabr7enI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Nov 23 01:36:14 2024 GMT Not After : Nov 30 01:36:14 2024 GMT Subject: CN=6741318f-b3d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:30:4f:f7:b4:76:71:75:98:e0:26:bb:77:05: c5:ad:4c:39:7f:af:4c:51:64:b4:e4:75:76:9b:70: a9:18:67:d2:8e:70:ee:86:72:3e:b1:50:b6:2a:f1: 96:84:62:76:dc:42:b4:cb:c4:48:8a:2c:53:47:2c: 65:ef:c9:cf:60:83:07:0a:f7:a1:cb:34:de:a1:f8: 15:87:59:dc:c7:89:6d:26:0e:ce:dc:a8:c7:e2:fa: b5:af:fe:ac:78:d7:11:a5:da:8d:50:38:c6:1a:6f: be:21:a9:3a:69:ef:43:97:84:49:77:9b:83:8b:c5: 68:bf:b8:35:b5:9d:fb:c7:98:3e:e0:8a:d3:54:96: a1:55:ce:50:9b:cc:20:d9:f6:44:33:67:ca:7d:91: 1d:23:49:26:10:f1:a7:4f:5e:84:f8:52:78:b9:c0: dc:b4:23:f1:84:4f:7b:09:b9:7f:7e:34:77:09:d8: 3e:31:81:71:cf:c0:9a:4b:dc:3f:03:4e:0d:6d:8d: 97:0d:b3:8c:82:55:2e:35:f6:be:c1:da:2d:bd:5a: 00:1f:db:8a:41:7e:03:0e:de:0d:69:8e:a5:1c:6e: 04:f7:c2:ae:ad:2c:0f:dc:5c:44:af:9e:b4:c4:03: e0:81:54:e1:ee:7a:a1:bc:81:e7:32:d8:ad:dc:49: 21:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B7:41:2C:F7:9F:D2:4B:E4:68:49:42:90:09:42:7C:A3:5E:BF:FD X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:36:cd:01:92:ba:6f:6b:55:8d:0f:1e:fe:a5:17:06:62:92: 36:29:3a:85:05:ae:ea:40:de:c2:37:75:ae:5a:37:a3:37:49: 44:8c:93:c9:3c:05:71:e0:2e:4f:cb:af:19:11:fc:5f:f0:1c: 3f:2a:7b:0c:45:41:1e:83:21:95:47:7b:0e:ba:9f:5c:b8:5a: 3a:b0:3e:a0:3e:db:6b:fd:1b:39:49:3e:73:31:82:63:9d:aa: e4:af:95:e5:33:ae:88:f4:19:03:50:8a:0e:70:cd:df:7a:45: c7:94:94:3d:88:eb:21:48:1f:53:1c:03:62:68:fa:99:4c:c2: 1a:43:70:9e:7a:1c:ee:24:7d:20:4b:31:aa:7b:96:ee:9e:63: 67:c8:54:71:ed:e8:1c:77:7e:20:02:81:fd:5d:82:de:f1:f9: 4e:99:e5:77:0f:14:30:dc:07:cd:7f:16:62:54:2b:7b:2b:36: 12:7b:c7:a0:c0:e5:85:16:00:fb:7e:89:00:4b:13:8d:e8:c1: e0:4e:22:e9:55:6a:89:3b:1b:af:38:4d:ab:05:73:fd:c2:3c: 79:ea:e9:4b:c6:ef:d1:b6:c3:22:8e:67:f7:95:56:02:a6:24: b8:26:f8:73:1c:ea:b3:5a:db:67:2a:a7:12:1c:65:cd:05:64: 9d:f8:b7:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjQxMTIzMDEzNjE0WhcNMjQxMTMwMDEzNjE0WjAYMRYwFAYD VQQDEw02NzQxMzE4Zi1iM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjBP97R2cXWY4Ca7dwXFrUw5f69MUWS05HV2m3CpGGfSjnDuhnI+sVC2KvGW hGJ23EK0y8RIiixTRyxl78nPYIMHCvehyzTeofgVh1ncx4ltJg7O3KjH4vq1r/6s eNcRpdqNUDjGGm++Iak6ae9Dl4RJd5uDi8Vov7g1tZ37x5g+4IrTVJahVc5Qm8wg 2fZEM2fKfZEdI0kmEPGnT16E+FJ4ucDctCPxhE97Cbl/fjR3Cdg+MYFxz8CaS9w/ A04NbY2XDbOMglUuNfa+wdotvVoAH9uKQX4DDt4NaY6lHG4E98KurSwP3FxEr560 xAPggVTh7nqhvIHnMtit3Ekh5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPW3QSz3 n9JL5GhJQpAJQnyjXr/9MB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrNs0Bkrpva1WNDx7+pRcGYpI2KTqFBa7qQN7CN3WuWjejN0lEjJPJ PAVx4C5Py68ZEfxf8Bw/KnsMRUEegyGVR3sOup9cuFo6sD6gPttr/Rs5ST5zMYJj narkr5XlM66I9BkDUIoOcM3fekXHlJQ9iOshSB9THANiaPqZTMIaQ3CeehzuJH0g SzGqe5bunmNnyFRx7egcd34gAoH9XYLe8flOmeV3DxQw3AfNfxZiVCt7KzYSe8eg wOWFFgD7fokASxON6MHgTiLpVWqJOxuvOE2rBXP9wjx56ulLxu/RtsMijmf3lVYC piS4JvhzHOqzWttnKqcSHGXNBWSd+Lf2 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:51 2024 by rpki-client on console-fra.rpki-client.org