$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft File: gqha_fMpJW9H4LcAstFHVqEEwRI.mft (raw, json) Hash identifier: Shwym9mDvqGV/9eKs3pMJ12kZmfUiaitWi076v8ping= Subject key identifier: C4:CA:35:EF:5F:F6:80:AC:55:03:E0:98:6B:C7:21:58:EE:C0:70:65 Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft Manifest number: 051E Signing time: Fri 22 Nov 2024 23:08:50 +0000 Manifest this update: Fri 22 Nov 2024 23:08:50 +0000 Manifest next update: Fri 29 Nov 2024 23:08:49 +0000 Files and hashes: 1: gqha_fMpJW9H4LcAstFHVqEEwRI.crl (hash: HLzHwRDDG6GLd8rlvWXxOv9AHPo0SVrt3y3ECDifg0E=) 2: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (hash: eALzuGTBIdO32t7InjPCWdnlihceQ6Ej+q9aOFO73+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Validity Not Before: Nov 22 23:08:50 2024 GMT Not After : Nov 29 23:08:49 2024 GMT Subject: CN=67410f02-3820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:65:f0:1a:de:f8:03:5c:fb:17:7b:aa:c3:1e: f3:de:73:2f:76:f5:bf:f7:19:8c:0c:b0:b0:fb:a6: 3a:64:a7:00:ba:8e:64:76:f3:71:a1:f8:3a:cf:f5: c9:87:52:d3:6a:53:7c:59:f5:db:8d:9d:b2:85:fc: b2:03:97:4d:ca:7a:35:d8:14:c0:c6:20:03:81:43: 39:4a:55:1d:ba:31:a1:ee:df:5a:41:ae:b7:d7:73: 42:ea:6a:9d:c2:e4:61:8f:7e:21:15:5b:cb:21:6d: ef:62:ea:66:cc:ab:fb:95:71:eb:ea:78:02:f1:b9: 26:30:aa:dc:5a:99:4b:ae:5d:21:6f:0a:30:ac:ce: 7c:44:cd:ae:90:7b:5a:4e:bc:c6:10:5b:16:7f:ff: 1c:ec:54:e9:77:3e:98:30:34:d0:e2:68:a2:79:f8: d3:f4:90:33:5c:61:7c:75:63:0d:1a:ba:45:98:21: 07:41:d2:39:85:a1:70:91:ac:9d:67:e0:92:72:04: 0b:88:20:89:13:81:fb:b1:06:96:41:08:08:ac:41: 23:fa:b2:fa:44:17:d7:13:08:de:e3:e1:ea:8d:2b: ba:7a:5a:22:55:61:d5:8e:51:a5:e5:78:74:ba:89: ce:bc:55:37:a1:7c:ae:3d:99:fd:f6:78:e7:22:c8: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CA:35:EF:5F:F6:80:AC:55:03:E0:98:6B:C7:21:58:EE:C0:70:65 X509v3 Authority Key Identifier: keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e2:54:0d:28:56:f8:64:6f:e8:c7:b8:c7:ab:f2:18:4a:f7: 31:30:55:de:99:5c:42:90:64:ae:a5:8f:fb:77:f8:d8:37:fd: 2d:ac:a6:69:bf:9a:cc:14:09:b9:60:86:97:e2:1b:75:4a:8d: 99:e5:24:85:f5:51:3a:0a:40:3a:c1:cd:03:ea:b1:cc:0d:ae: 82:8e:13:96:86:37:f4:80:e1:56:15:35:8b:47:30:79:09:15: 97:f0:1a:15:51:a7:b4:dc:0e:10:a2:ae:57:1e:e5:b9:8b:1d: 82:d3:a1:8c:0a:78:c8:01:7a:52:ec:0f:62:f3:f6:ef:e9:3b: 6e:5e:67:a9:32:a7:df:10:75:c4:96:89:43:63:9d:3c:b9:18: 7c:44:a3:34:06:83:e9:a7:9d:50:3d:44:3f:dd:b4:30:b3:a5: ba:c0:69:58:dd:8b:83:29:30:77:78:59:ac:77:1d:80:16:83: e4:64:d1:1c:08:91:08:05:fd:12:30:73:89:f0:84:aa:c8:c6: c1:e7:0e:04:68:32:86:8b:5f:82:31:cd:84:f8:7b:d7:5e:fa: 97:92:ca:be:8e:ca:71:5f:ea:64:d1:fd:91:85:e8:c1:21:ac: 7e:df:26:ce:9d:bd:98:24:f8:45:40:7f:41:49:2a:c9:9e:9b: 40:c5:b3:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFDMjMxMTAvBgNVBAUTKDgyQTg1QUZERjMyOTI1NkY0N0UwQjcwMEIyRDE0NzU2 QTEwNEMxMTIwHhcNMjQxMTIyMjMwODUwWhcNMjQxMTI5MjMwODQ5WjAYMRYwFAYD VQQDEw02NzQxMGYwMi0zODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmXwGt74A1z7F3uqwx7z3nMvdvW/9xmMDLCw+6Y6ZKcAuo5kdvNxofg6z/XJ h1LTalN8WfXbjZ2yhfyyA5dNyno12BTAxiADgUM5SlUdujGh7t9aQa6313NC6mqd wuRhj34hFVvLIW3vYupmzKv7lXHr6ngC8bkmMKrcWplLrl0hbwowrM58RM2ukHta TrzGEFsWf/8c7FTpdz6YMDTQ4miiefjT9JAzXGF8dWMNGrpFmCEHQdI5haFwkayd Z+CScgQLiCCJE4H7sQaWQQgIrEEj+rL6RBfXEwje4+HqjSu6eloiVWHVjlGl5Xh0 uonOvFU3oXyuPZn99njnIshWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTKNe9f 9oCsVQPgmGvHIVjuwHBlMB8GA1UdIwQYMBaAFIKoWv3zKSVvR+C3ALLRR1ahBMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUMyMy9DNkJEMUUyQ0RD MTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpXOUg0TGNBc3RGSFZxRUV3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxaGFfZk1wSlc5SDRMY0FzdEZIVnFFRXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUMyMy9DNkJEMUUyQ0RDMTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpX OUg0TGNBc3RGSFZxRUV3UkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR4lQNKFb4ZG/ox7jHq/IYSvcxMFXemVxCkGSupY/7d/jYN/0trKZp v5rMFAm5YIaX4ht1So2Z5SSF9VE6CkA6wc0D6rHMDa6CjhOWhjf0gOFWFTWLRzB5 CRWX8BoVUae03A4Qoq5XHuW5ix2C06GMCnjIAXpS7A9i8/bv6TtuXmepMqffEHXE lolDY508uRh8RKM0BoPpp51QPUQ/3bQws6W6wGlY3YuDKTB3eFmsdx2AFoPkZNEc CJEIBf0SMHOJ8ISqyMbB5w4EaDKGi1+CMc2E+HvXXvqXksq+jspxX+pk0f2RhejB Iax+3ybOnb2YJPhFQH9BSSrJnptAxbMb -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org