$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: 219v3RFFKpXFpzFkQrGIwIawtsEqhEPyH+fBOC44SDo= Subject key identifier: EB:B0:6B:98:39:56:03:57:8F:26:42:AB:8D:7F:B0:31:18:1D:1E:EB Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0B54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0B4F Signing time: Fri 22 Nov 2024 18:55:07 +0000 Manifest this update: Fri 22 Nov 2024 18:55:07 +0000 Manifest next update: Fri 29 Nov 2024 18:55:07 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: qc119xNCFnY819njmOaeyUhyy0bMRTa0GbTPwJFw9kg=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 4a+tMAEiWkCKQaegnjxPyUcAuZa9uA285YsrVwUzfCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2900 (0xb54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Nov 22 18:55:07 2024 GMT Not After : Nov 29 18:55:07 2024 GMT Subject: CN=6740d38b-6d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:c1:70:18:13:d2:74:7e:a3:ee:86:5c:30: ab:d8:c6:2b:ec:e4:c5:8f:be:0e:80:e6:d8:69:33: c1:5f:44:88:54:a9:ba:c9:eb:60:33:ff:ec:13:33: ff:48:30:01:4a:ce:8c:9c:05:5e:25:aa:0e:6a:43: fe:81:a9:9f:dd:5c:11:38:4a:64:87:17:61:57:da: 5d:ee:2c:fe:b0:2c:ef:ea:37:3d:f5:a7:31:3a:88: 36:55:43:f6:a8:44:2a:9c:a7:9b:b8:03:b1:46:b2: da:14:38:64:4e:52:1a:24:a3:80:bf:72:17:41:0d: 21:5c:5a:aa:a2:9b:e1:09:44:2d:0d:cd:16:93:e1: c0:51:4d:ee:09:a5:e5:e8:7d:ab:de:10:7a:37:9c: bd:ed:81:c4:ea:65:b2:e3:ff:64:aa:55:e0:51:3f: 19:4f:7e:4e:6e:f6:b5:c2:f0:11:4f:f3:25:19:d7: 45:e4:da:c8:f6:16:52:3b:4c:5e:63:93:9a:12:cd: 79:f9:92:b2:3b:8b:d9:7f:15:f5:f1:fe:04:5b:77: c6:e7:06:f6:b2:88:cd:fb:eb:9e:6d:60:17:0e:ce: ca:fd:63:bd:7c:e7:dc:8e:6c:76:44:1a:6f:ab:fc: 3f:79:d7:26:8b:d0:e8:b0:71:6a:c7:dc:88:b8:89: 48:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B0:6B:98:39:56:03:57:8F:26:42:AB:8D:7F:B0:31:18:1D:1E:EB X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:20:9f:f7:c7:47:5d:94:be:b2:84:f8:d8:c4:d8:2c:90:ac: 8b:52:ea:8d:74:0e:37:87:f1:08:fe:70:d1:75:7a:fb:d8:af: 2c:36:5f:a4:61:fa:cc:ff:17:33:69:c4:9b:ff:d0:af:73:96: 81:dc:03:09:5e:32:7d:81:c7:9a:70:24:23:a7:0f:da:a6:b9: 13:54:fd:fa:52:b6:00:5e:48:9c:a4:73:53:d8:4e:15:4c:01: 35:7f:f9:76:f6:63:b8:71:aa:0f:0e:12:53:3d:cf:81:5f:b0: 90:25:fa:96:9d:c1:da:60:39:6b:f6:0b:d5:b1:3d:fe:9f:aa: fa:5a:5d:1c:35:15:49:fe:65:ab:e0:81:c9:d0:ab:0d:a8:b0: 07:49:af:93:72:4d:37:52:d8:00:c2:7e:af:b3:2c:0e:a7:86: 77:ab:2e:32:e0:27:0e:a8:d2:0a:38:f8:8b:53:66:37:3a:bb: 27:af:48:a1:68:72:c3:3e:a0:84:d4:d1:7f:f4:9b:7b:1b:86: cb:28:d2:bc:12:d8:8b:15:20:85:4d:85:af:08:61:f6:20:9e: e1:8e:89:21:b6:03:fd:fe:71:94:d3:8c:42:1c:63:26:02:d6: 66:10:bc:f6:a0:c7:d6:94:77:ed:a5:b4:d7:71:ca:b8:ec:c2: 28:4f:a6:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjQxMTIyMTg1NTA3WhcNMjQxMTI5MTg1NTA3WjAYMRYwFAYD VQQDEw02NzQwZDM4Yi02ZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH/BcBgT0nR+o+6GXDCr2MYr7OTFj74OgObYaTPBX0SIVKm6yetgM//sEzP/ SDABSs6MnAVeJaoOakP+gamf3VwROEpkhxdhV9pd7iz+sCzv6jc99acxOog2VUP2 qEQqnKebuAOxRrLaFDhkTlIaJKOAv3IXQQ0hXFqqopvhCUQtDc0Wk+HAUU3uCaXl 6H2r3hB6N5y97YHE6mWy4/9kqlXgUT8ZT35Obva1wvART/MlGddF5NrI9hZSO0xe Y5OaEs15+ZKyO4vZfxX18f4EW3fG5wb2sojN++uebWAXDs7K/WO9fOfcjmx2RBpv q/w/edcmi9DosHFqx9yIuIlIzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuwa5g5 VgNXjyZCq41/sDEYHR7rMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACIJ/3x0ddlL6yhPjYxNgskKyLUuqNdA43h/EI/nDRdXr72K8sNl+k YfrM/xczacSb/9Cvc5aB3AMJXjJ9gceacCQjpw/aprkTVP36UrYAXkicpHNT2E4V TAE1f/l29mO4caoPDhJTPc+BX7CQJfqWncHaYDlr9gvVsT3+n6r6Wl0cNRVJ/mWr 4IHJ0KsNqLAHSa+Tck03UtgAwn6vsywOp4Z3qy4y4CcOqNIKOPiLU2Y3Orsnr0ih aHLDPqCE1NF/9Jt7G4bLKNK8EtiLFSCFTYWvCGH2IJ7hjokhtgP9/nGU04xCHGMm AtZmELz2oMfWlHftpbTXccq47MIoT6ay -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:55 2024 by rpki-client on console-fra.rpki-client.org