$ rpki-client -vvf rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft File: gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft (raw, json) Hash identifier: Dd7uBME65xlhDPBt1iZYQpmSb2vVIZO3FxbuAgPud1A= Subject key identifier: B4:86:C5:D1:DC:A4:C9:6E:1F:7B:B9:C5:6C:58:A5:50:53:A7:B8:F2 Authority key identifier: 82:73:5B:3F:9C:9E:A9:75:D4:E0:2A:94:E2:A1:08:1B:A4:A8:AB:24 Certificate issuer: /CN=A91196F9/serialNumber=82735B3F9C9EA975D4E02A94E2A1081BA4A8AB24 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft Manifest number: 55 Signing time: Sat 23 Nov 2024 05:08:16 +0000 Manifest this update: Sat 23 Nov 2024 05:08:16 +0000 Manifest next update: Sat 30 Nov 2024 05:08:16 +0000 Files and hashes: 1: gnNbP5yeqXXU4CqU4qEIG6SoqyQ.crl (hash: 7QS2o33Zio0GHI3kS59oE5qQSSpTFpijRLh/JlcNa8c=) 2: CFD2FAA62A2811EF8313971CC4F9AE02.roa (hash: e+okQTky3rxLnURNJYv8tMNd0/Aev94NgPH4sbrFFlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.crl rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91196F9/serialNumber=82735B3F9C9EA975D4E02A94E2A1081BA4A8AB24 Validity Not Before: Nov 23 05:08:16 2024 GMT Not After : Nov 30 05:08:16 2024 GMT Subject: CN=67416340-2da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e4:b3:58:18:1d:af:e8:2b:84:03:d4:21:5d: 10:08:dc:46:6d:e9:8b:d4:4d:49:a5:ae:eb:cb:7e: be:a6:81:1b:58:2e:bb:e6:7c:7b:22:99:60:14:72: 2c:3d:e1:ee:af:4e:2b:30:a7:8e:49:37:66:0f:cf: d0:36:60:18:74:21:46:b8:64:66:b6:51:38:76:52: d0:b1:2c:91:1c:8b:cd:c5:3a:99:df:03:67:0b:5c: 6c:39:d1:41:8c:ad:66:e3:8c:b0:8e:37:81:d7:d9: cb:72:54:f0:db:63:6c:02:c3:de:54:24:d6:4f:0c: 4f:8c:ac:8f:d9:8c:19:d4:21:09:81:a1:79:ab:81: 15:6f:0b:9b:ed:e2:ac:83:d7:0f:50:62:b1:ce:5e: 41:db:62:63:2b:af:2f:a1:19:87:e1:28:cf:4b:aa: 46:48:e0:54:37:42:6f:8f:05:ee:ed:33:76:c2:ae: 9d:f2:83:21:01:33:cc:d1:64:1d:4b:c7:ef:1a:9d: 36:63:37:ba:17:79:f5:2c:b0:54:6c:31:fd:ab:cb: 4d:ef:15:45:53:98:27:38:15:45:0a:94:c1:a2:74: c9:77:07:3f:97:60:a7:41:85:50:9d:26:6b:f1:7b: 19:67:5b:29:3b:a5:05:bf:c4:c6:19:34:eb:91:9a: d5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:86:C5:D1:DC:A4:C9:6E:1F:7B:B9:C5:6C:58:A5:50:53:A7:B8:F2 X509v3 Authority Key Identifier: keyid:82:73:5B:3F:9C:9E:A9:75:D4:E0:2A:94:E2:A1:08:1B:A4:A8:AB:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:64:03:6b:88:b5:a2:96:c0:1e:7d:8a:75:25:d3:ef:d6:96: 86:3e:2c:c3:8f:31:fe:64:a9:a2:bb:e5:c1:dc:64:ea:03:52: 67:15:ec:d1:29:2c:dc:47:92:a8:21:c8:25:1c:88:e4:a5:88: f4:9a:94:97:b0:c9:38:c2:2b:45:fe:ba:aa:35:2c:f1:a7:2f: c9:7f:1b:b6:84:88:59:42:fd:79:32:dd:02:f0:77:ea:70:02: f1:cc:47:57:c2:ac:53:4e:ea:8f:60:bd:84:27:1a:5a:6a:56: a3:98:12:22:93:8f:39:d7:1b:8c:b8:57:de:ce:9c:8e:12:ee: 22:97:f6:3e:95:09:1f:2c:7e:8e:08:65:75:fb:77:2b:59:f2: cc:03:44:d2:6d:5b:e6:3f:06:e2:5b:ab:0c:2e:01:d7:22:ba: c2:93:3f:fd:a4:93:8e:21:f7:02:b8:7e:58:a2:bc:a3:68:37: 92:a4:16:10:06:d1:a4:45:a1:06:d3:13:8a:f5:d6:90:95:87: 35:85:de:82:0d:2d:28:03:b3:9b:ef:68:12:ec:7b:91:aa:85: 23:ad:37:c0:39:e7:ab:53:e8:cc:4b:a2:a9:06:48:f2:8f:c3: e2:40:07:40:0d:bf:63:26:9f:f2:53:0e:4f:5d:72:3c:49:c7: 2c:18:38:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTZGOTExMC8GA1UEBRMoODI3MzVCM0Y5QzlFQTk3NUQ0RTAyQTk0RTJBMTA4MUJB NEE4QUIyNDAeFw0yNDExMjMwNTA4MTZaFw0yNDExMzAwNTA4MTZaMBgxFjAUBgNV BAMTDTY3NDE2MzQwLTJkYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv5LNYGB2v6CuEA9QhXRAI3EZt6YvUTUmlruvLfr6mgRtYLrvmfHsimWAUciw9 4e6vTiswp45JN2YPz9A2YBh0IUa4ZGa2UTh2UtCxLJEci83FOpnfA2cLXGw50UGM rWbjjLCON4HX2ctyVPDbY2wCw95UJNZPDE+MrI/ZjBnUIQmBoXmrgRVvC5vt4qyD 1w9QYrHOXkHbYmMrry+hGYfhKM9LqkZI4FQ3Qm+PBe7tM3bCrp3ygyEBM8zRZB1L x+8anTZjN7oXefUssFRsMf2ry03vFUVTmCc4FUUKlMGidMl3Bz+XYKdBhVCdJmvx exlnWyk7pQW/xMYZNOuRmtUJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtIbF0dyk yW4fe7nFbFilUFOnuPIwHwYDVR0jBBgwFoAUgnNbP5yeqXXU4CqU4qEIG6SoqyQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NkY5L0Y5NDk0MDA4MkEx RDExRUZBOUUxRjk4NUM0RjlBRTAyL2duTmJQNXllcVhYVTRDcVU0cUVJRzZTb3F5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ25OYlA1eWVxWFhVNENxVTRxRUlHNlNvcXlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 NkY5L0Y5NDk0MDA4MkExRDExRUZBOUUxRjk4NUM0RjlBRTAyL2duTmJQNXllcVhY VTRDcVU0cUVJRzZTb3F5US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADNkA2uItaKWwB59inUl0+/WloY+LMOPMf5kqaK75cHcZOoDUmcV7NEp LNxHkqghyCUciOSliPSalJewyTjCK0X+uqo1LPGnL8l/G7aEiFlC/Xky3QLwd+pw AvHMR1fCrFNO6o9gvYQnGlpqVqOYEiKTjznXG4y4V97OnI4S7iKX9j6VCR8sfo4I ZXX7dytZ8swDRNJtW+Y/BuJbqwwuAdciusKTP/2kk44h9wK4fliivKNoN5KkFhAG 0aRFoQbTE4r11pCVhzWF3oINLSgDs5vvaBLse5GqhSOtN8A556tT6MxLoqkGSPKP w+JAB0ANv2Mmn/JTDk9dcjxJxywYOBY= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org