$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: 1aUe9HDM/eE2e82qqBwg/+1K3/Q0jyFPMSMlx7Bkp5k= Subject key identifier: C9:CC:06:40:61:A6:85:0C:C0:09:FE:22:69:66:52:A1:7C:CB:B8:54 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 1350 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 1346 Signing time: Wed 20 Nov 2024 16:57:48 +0000 Manifest this update: Wed 20 Nov 2024 16:57:47 +0000 Manifest next update: Wed 27 Nov 2024 16:57:47 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: PJzoHrI9ITzCcWHTfsl0xoZHUXUWr7+RPDrAAvYxsrM=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4944 (0x1350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Nov 20 16:57:47 2024 GMT Not After : Nov 27 16:57:47 2024 GMT Subject: CN=673e150b-a5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:76:ed:22:a4:a2:56:74:90:fe:e3:6d:fd: c2:ec:89:d3:d9:c8:94:9a:45:2f:bf:a8:35:e7:42: e1:46:ab:e1:6b:31:cf:ff:44:82:1b:3f:3e:51:83: 70:24:c6:f3:ec:34:c4:04:77:02:99:cb:08:36:f4: c4:bb:10:9d:1c:70:73:85:a5:36:8a:2b:c9:7e:f4: ac:30:a3:33:9a:f5:7a:a2:d6:5a:56:ee:70:a6:07: 1a:5d:f0:5b:bc:a5:bc:66:13:5a:94:f8:77:ef:f5: 26:89:20:4d:27:ec:b9:df:b4:ac:30:61:02:41:be: ca:50:5c:19:da:4a:13:9e:57:fe:af:fd:b8:8e:fa: 1d:4d:ee:a8:5f:ed:fe:20:ea:60:78:b9:dd:59:91: a8:af:47:08:4e:c9:9f:f4:cf:78:35:9e:21:a1:12: ea:c2:ac:ed:39:1d:be:a6:a1:ff:ed:ec:1b:88:bd: aa:ec:da:b4:7a:de:8b:01:9b:de:91:de:3b:2a:69: fa:08:6b:9e:78:f3:5a:42:88:08:80:ad:87:9e:61: c0:bf:61:c1:88:cd:5f:c4:de:76:f5:27:88:58:86: 07:18:91:e0:d9:71:c3:d1:c1:6b:99:f1:78:4b:e1: 57:95:1b:53:2c:10:4b:46:8a:e6:94:29:43:a3:b8: 7e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:CC:06:40:61:A6:85:0C:C0:09:FE:22:69:66:52:A1:7C:CB:B8:54 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:21:bd:40:ff:ba:46:ef:3b:3a:16:93:04:83:56:35:4a:e6: f7:6f:4b:c0:f6:cf:0e:0d:5c:f5:78:7c:4b:34:08:fe:88:21: d0:fb:98:15:86:a6:f1:14:9e:db:e3:41:92:c5:60:8d:fb:f0: 24:2b:c3:95:a8:ff:01:10:79:7f:8e:f5:dd:2b:92:c6:97:d7: aa:8f:48:46:58:68:4f:26:15:33:d8:d9:d4:6b:c2:48:ed:05: 41:8e:a2:cf:76:2d:35:56:86:29:12:85:04:aa:cb:76:52:89: c7:d5:f9:3d:06:0e:f2:2f:90:bd:9b:b2:ab:18:e1:be:e2:c8: 5a:80:be:15:38:4e:43:ab:2a:ad:cd:ee:d1:d1:87:1c:48:3e: 5d:6c:16:44:00:4b:bb:e5:e3:e1:51:24:2a:5b:f6:46:50:f8: fa:54:5f:31:df:8d:87:93:f1:e3:90:e4:46:47:1a:36:34:2f: 39:60:90:11:c7:d4:0c:0a:d1:76:e2:fd:c8:08:83:42:d5:56: 87:45:03:24:2e:d4:1e:09:74:6f:c5:32:a1:f4:ea:6c:68:d0: 36:83:3f:32:19:c8:5b:4d:2c:e4:7c:91:ea:2c:94:f5:66:bb: 2d:33:45:e4:ef:7d:f2:e3:78:ac:eb:45:a5:15:a9:da:5d:d5: 18:d2:e0:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjQxMTIwMTY1NzQ3WhcNMjQxMTI3MTY1NzQ3WjAYMRYwFAYD VQQDEw02NzNlMTUwYi1hNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWN27SKkolZ0kP7jbf3C7InT2ciUmkUvv6g150LhRqvhazHP/0SCGz8+UYNw JMbz7DTEBHcCmcsINvTEuxCdHHBzhaU2iivJfvSsMKMzmvV6otZaVu5wpgcaXfBb vKW8ZhNalPh37/UmiSBNJ+y537SsMGECQb7KUFwZ2koTnlf+r/24jvodTe6oX+3+ IOpgeLndWZGor0cITsmf9M94NZ4hoRLqwqztOR2+pqH/7ewbiL2q7Nq0et6LAZve kd47Kmn6CGueePNaQogIgK2HnmHAv2HBiM1fxN529SeIWIYHGJHg2XHD0cFrmfF4 S+FXlRtTLBBLRormlClDo7h+wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnMBkBh poUMwAn+ImlmUqF8y7hUMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaIb1A/7pG7zs6FpMEg1Y1Sub3b0vA9s8ODVz1eHxLNAj+iCHQ+5gV hqbxFJ7b40GSxWCN+/AkK8OVqP8BEHl/jvXdK5LGl9eqj0hGWGhPJhUz2NnUa8JI 7QVBjqLPdi01VoYpEoUEqst2UonH1fk9Bg7yL5C9m7KrGOG+4shagL4VOE5Dqyqt ze7R0YccSD5dbBZEAEu75ePhUSQqW/ZGUPj6VF8x342Hk/HjkORGRxo2NC85YJAR x9QMCtF24v3ICINC1VaHRQMkLtQeCXRvxTKh9OpsaNA2gz8yGchbTSzkfJHqLJT1 ZrstM0Xk733y43is60WlFanaXdUY0uCa -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:12 2024 by rpki-client on console-ams.rpki-client.org