$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: GDOjmTzl2pqRRXj78dwpqbR+4cjLTQgorPh/1Mt02jA= Subject key identifier: EE:15:6B:AC:E4:CF:E2:B8:1F:71:D8:7A:6D:DE:73:E3:9B:F8:0E:DE Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0217 Signing time: Sat 23 Nov 2024 01:31:28 +0000 Manifest this update: Sat 23 Nov 2024 01:31:28 +0000 Manifest next update: Sat 30 Nov 2024 01:31:28 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: XXRqcij1W1C7XYiNOETrY/z+Lvg7GCB6LKpENOarVOw=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: iNGLEhZ74V/teXh5s40LgFHohuZJ0yOem+a3lr8uSKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Nov 23 01:31:28 2024 GMT Not After : Nov 30 01:31:28 2024 GMT Subject: CN=67413070-3ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:c2:b1:5a:bb:a8:4b:f6:63:32:15:62:fe: 80:b9:29:38:3d:5c:5c:9d:20:b5:86:c1:8c:ac:e7: e6:2f:05:85:ce:ff:2b:b4:02:28:b0:dc:81:d2:6e: 6b:c3:7c:c9:9e:93:31:83:74:5c:e0:75:fe:91:b9: 19:34:31:32:06:b3:f9:ff:ef:d4:5c:c7:91:05:62: 84:37:d8:13:87:50:37:57:e5:4d:d3:c0:7b:2d:99: 67:1a:f5:55:e7:25:4c:c2:bd:f9:b1:0b:34:6e:90: 47:e0:31:1d:9a:c6:7d:7f:ee:78:ed:a4:13:d9:48: 24:dd:53:8a:fa:a2:c4:0f:37:ab:5d:9d:40:1f:83: 64:fa:32:25:20:96:6e:49:3e:da:6b:df:b7:b7:08: 49:a9:94:10:ec:4a:4e:5a:2c:fb:1e:46:b5:46:48: df:2a:7b:41:1b:a0:3f:0e:04:e9:bb:ae:65:5c:24: 27:9f:64:e7:c7:04:0e:94:c7:9d:29:2e:c6:5b:b6: 8b:6b:44:51:92:f5:06:77:d9:ac:b2:1a:16:22:17: 45:9b:ce:9a:4d:4b:24:63:5f:9c:e5:d3:5f:6e:8c: f6:da:96:89:ad:7d:c6:c4:26:cf:94:0e:dd:94:23: 41:e4:0b:a7:53:b7:d9:6a:5d:a2:17:e2:3d:37:9f: 05:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:15:6B:AC:E4:CF:E2:B8:1F:71:D8:7A:6D:DE:73:E3:9B:F8:0E:DE X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f6:35:9f:96:5d:03:cd:d8:cc:8e:55:97:70:ee:85:fd:22: 31:3f:29:dd:04:ed:c0:be:a7:64:fc:05:cb:54:f7:b4:5a:e5: fa:09:d3:8c:f0:ea:06:99:f4:7f:c3:44:02:33:01:1c:5e:9f: 67:33:fa:b6:bf:e3:4a:a2:6c:c9:ba:85:b0:7b:86:8a:44:73: 10:49:d4:bb:bf:5c:da:6a:c0:64:68:12:7a:21:8c:e9:87:c1: 8b:30:e1:52:cf:6e:f1:1a:47:42:a6:8e:02:83:ca:7e:59:0c: 79:5d:d7:4b:ce:ca:83:5f:1e:e3:53:eb:17:1a:34:44:e4:3f: b2:cd:1c:7b:53:00:8f:2f:35:00:8a:e2:c5:83:3d:61:f2:b8: 1c:97:8b:73:52:13:4c:25:9f:31:fb:d7:76:a9:6d:84:ff:86: a2:a6:13:8c:4d:8a:c2:c6:bf:b9:b0:b0:8d:ba:d8:ac:fd:b8: 66:6b:b3:56:54:3c:b1:99:68:ed:c5:19:0e:8b:37:62:ad:7e: e1:ad:8b:30:71:14:ee:a0:61:7d:32:87:74:dd:da:a3:5b:96: 01:0f:29:90:67:7f:8b:e3:e5:a8:8a:f6:b9:0c:d1:88:8d:9a: 22:3f:86:bd:05:25:14:dd:9f:9c:79:13:9d:69:23:96:e0:85: 99:3b:d6:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjQxMTIzMDEzMTI4WhcNMjQxMTMwMDEzMTI4WjAYMRYwFAYD VQQDEw02NzQxMzA3MC0zZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpjCsVq7qEv2YzIVYv6AuSk4PVxcnSC1hsGMrOfmLwWFzv8rtAIosNyB0m5r w3zJnpMxg3Rc4HX+kbkZNDEyBrP5/+/UXMeRBWKEN9gTh1A3V+VN08B7LZlnGvVV 5yVMwr35sQs0bpBH4DEdmsZ9f+547aQT2Ugk3VOK+qLEDzerXZ1AH4Nk+jIlIJZu ST7aa9+3twhJqZQQ7EpOWiz7Hka1RkjfKntBG6A/DgTpu65lXCQnn2TnxwQOlMed KS7GW7aLa0RRkvUGd9msshoWIhdFm86aTUskY1+c5dNfboz22paJrX3GxCbPlA7d lCNB5AunU7fZal2iF+I9N58F+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4Va6zk z+K4H3HYem3ec+Ob+A7eMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV9jWfll0DzdjMjlWXcO6F/SIxPyndBO3Avqdk/AXLVPe0WuX6CdOM 8OoGmfR/w0QCMwEcXp9nM/q2v+NKomzJuoWwe4aKRHMQSdS7v1zaasBkaBJ6IYzp h8GLMOFSz27xGkdCpo4Cg8p+WQx5XddLzsqDXx7jU+sXGjRE5D+yzRx7UwCPLzUA iuLFgz1h8rgcl4tzUhNMJZ8x+9d2qW2E/4aiphOMTYrCxr+5sLCNutis/bhma7NW VDyxmWjtxRkOizdirX7hrYswcRTuoGF9Mod03dqjW5YBDymQZ3+L4+Woiva5DNGI jZoiP4a9BSUU3Z+ceROdaSOW4IWZO9Yb -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org