$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: nSHuWlCeAhyPYDQ7e8yds+6w9HCDcnurF46rEjYHZA0= Subject key identifier: D0:49:6D:46:58:21:DC:06:B1:D9:70:A4:15:2F:DD:94:20:06:C7:07 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0776 Signing time: Fri 22 Nov 2024 20:56:18 +0000 Manifest this update: Fri 22 Nov 2024 20:56:17 +0000 Manifest next update: Fri 29 Nov 2024 20:56:17 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: cmFS22wwpMiYmL+FNWMaMzLg3ZY9JL1xOs+V5l3nzfc=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D3ma4u6sODLuLAngk8FcCD8+uVZql4Y+2zbRzUVe9cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Nov 22 20:56:17 2024 GMT Not After : Nov 29 20:56:17 2024 GMT Subject: CN=6740eff2-45a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0d:d7:f4:70:3b:7b:35:75:db:37:46:61:07: 2b:a0:92:66:7e:ef:0f:84:94:8b:bc:b1:6e:97:06: 84:35:fe:9e:0b:f3:ba:f9:56:e5:b9:9c:5c:f7:8f: 88:fa:d6:50:0e:60:38:9f:31:45:45:bc:79:9f:92: 4a:02:71:c4:10:21:69:6d:46:a7:91:b1:1e:f5:15: a0:b1:5e:38:f6:e5:31:bc:af:2b:a5:8d:08:bf:5b: f1:af:a1:d2:0b:4a:88:fb:4e:1e:d8:17:d9:bd:6a: 03:4d:6a:96:67:77:9e:c5:b4:9b:80:43:8c:8c:f2: e0:52:55:6d:3b:d7:1b:ca:41:14:fa:7d:9e:ac:80: 70:3c:84:3f:02:bb:49:e8:c5:52:ef:89:d4:6e:ef: 36:09:f0:61:b5:d5:d3:41:c3:40:b2:6f:49:c9:db: 1c:8a:17:39:ed:36:13:ff:fb:86:19:66:5f:4b:39: 98:07:9d:5d:9e:fc:87:2e:a9:7c:94:57:24:d4:5c: 9f:3f:49:14:2d:c8:7c:5d:cd:6c:4a:08:f2:a7:02: 53:4e:b7:83:95:cd:17:83:86:9e:b9:44:f0:b9:44: b2:16:51:71:c6:7d:1d:3b:a0:e1:0b:f6:75:54:a2: 9a:2c:e9:84:1f:9f:dd:28:7a:e7:f7:1f:a2:f0:62: 51:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:49:6D:46:58:21:DC:06:B1:D9:70:A4:15:2F:DD:94:20:06:C7:07 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d0:e5:64:b9:9f:03:b2:ca:e1:52:10:63:5a:91:8a:b1:ee: e7:9d:0a:34:22:61:97:20:dc:ef:5f:7c:b2:9b:11:de:ee:c1: fb:a6:96:27:ee:27:2c:f2:4e:f1:f5:e3:fe:ab:96:72:a5:a7: 19:58:9a:46:0f:f8:6b:8b:1a:cd:06:50:f2:ee:bc:92:4d:c7: e7:08:78:0d:42:e3:de:99:b6:c8:cd:9c:40:7e:82:35:44:16: b7:12:00:79:f7:70:aa:7b:6a:7b:19:af:bb:55:f5:a4:29:b9: 92:67:e2:e3:2c:db:ed:d7:5f:a5:21:ca:64:bc:62:00:3c:78: 12:22:1b:86:ab:a7:6c:08:a0:66:83:17:a0:ff:1c:a9:83:3d: 63:6e:c3:a3:b6:52:0f:51:8f:71:37:2e:ea:19:85:99:34:8f: 88:70:f2:4b:5d:6c:96:e7:5b:95:28:68:1e:bc:31:d5:44:34: db:b5:6e:8f:8a:87:4f:ed:6c:19:1a:98:23:25:18:93:97:e6: 9f:26:ef:7a:eb:cb:10:f0:98:e3:74:4e:52:74:b3:d6:d3:c6: 74:c6:03:9f:81:e1:ef:b1:80:64:cc:9b:e8:f2:fc:d1:be:f8: d4:7c:de:77:d3:3b:f4:cc:1e:4f:5a:b4:cc:cd:5a:65:0c:42: 50:0b:8c:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjQxMTIyMjA1NjE3WhcNMjQxMTI5MjA1NjE3WjAYMRYwFAYD VQQDEw02NzQwZWZmMi00NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w3X9HA7ezV12zdGYQcroJJmfu8PhJSLvLFulwaENf6eC/O6+VbluZxc94+I +tZQDmA4nzFFRbx5n5JKAnHEECFpbUankbEe9RWgsV449uUxvK8rpY0Iv1vxr6HS C0qI+04e2BfZvWoDTWqWZ3eexbSbgEOMjPLgUlVtO9cbykEU+n2erIBwPIQ/ArtJ 6MVS74nUbu82CfBhtdXTQcNAsm9Jydscihc57TYT//uGGWZfSzmYB51dnvyHLql8 lFck1FyfP0kULch8Xc1sSgjypwJTTreDlc0Xg4aeuUTwuUSyFlFxxn0dO6DhC/Z1 VKKaLOmEH5/dKHrn9x+i8GJRQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBJbUZY IdwGsdlwpBUv3ZQgBscHMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN0OVkuZ8DssrhUhBjWpGKse7nnQo0ImGXINzvX3yymxHe7sH7ppYn 7ics8k7x9eP+q5ZypacZWJpGD/hrixrNBlDy7rySTcfnCHgNQuPembbIzZxAfoI1 RBa3EgB593Cqe2p7Ga+7VfWkKbmSZ+LjLNvt11+lIcpkvGIAPHgSIhuGq6dsCKBm gxeg/xypgz1jbsOjtlIPUY9xNy7qGYWZNI+IcPJLXWyW51uVKGgevDHVRDTbtW6P iodP7WwZGpgjJRiTl+afJu9668sQ8JjjdE5SdLPW08Z0xgOfgeHvsYBkzJvo8vzR vvjUfN530zv0zB5PWrTMzVplDEJQC4xC -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org