$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: X8ubY11EAipIqp8YB0TS0sW0jiXC+2LUj7vDUhaqnsw= Subject key identifier: 9B:F8:42:7E:3D:A7:9D:BB:E3:58:FB:BE:22:4C:98:99:0C:32:20:74 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0586 Signing time: Sat 23 Nov 2024 00:10:30 +0000 Manifest this update: Sat 23 Nov 2024 00:10:30 +0000 Manifest next update: Sat 30 Nov 2024 00:10:30 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: /Knx5DatylwVZk31POjziQGRES7dW6OhyXseui45jQc=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Nov 23 00:10:30 2024 GMT Not After : Nov 30 00:10:30 2024 GMT Subject: CN=67411d76-80e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:e1:85:b3:55:e5:bf:60:b3:31:7b:b6:fd:f4: 2a:c3:0f:72:9f:33:03:44:88:ca:45:bb:ec:52:00: 5d:eb:4f:dd:2c:6b:3e:39:69:53:0d:42:65:48:f2: 61:10:55:6b:5a:54:85:bd:98:a0:97:4b:7c:20:8d: 0e:7c:a7:7d:13:d8:c2:9a:98:4f:9a:09:fb:9a:f4: 44:67:b7:ae:b8:67:48:42:13:72:ef:ba:3d:ec:0c: ae:e1:05:50:fb:ad:ee:89:24:c2:53:2b:77:e4:dd: a9:27:69:30:5a:49:08:23:ea:6a:55:ff:21:38:16: b4:1f:10:3b:be:78:f6:c7:c2:51:8f:eb:41:24:43: dd:30:1f:c5:dd:04:eb:2d:68:c1:f4:89:ee:8e:0f: 5e:15:af:b6:01:85:fa:1a:ef:99:af:2e:0e:95:e4: b9:97:4f:4b:c0:5d:28:c6:ae:9b:03:eb:a4:1d:38: 55:84:67:13:26:63:5d:44:dc:05:a6:94:c2:a0:fa: 73:1c:c7:30:5e:89:06:f6:73:e3:e6:f0:79:c9:52: 8e:ba:4f:7b:f1:86:bb:f5:fd:a5:ed:f7:8e:fa:1a: cf:22:27:20:a7:87:84:f2:81:e8:c0:d1:e3:bf:8e: 2e:98:37:f0:23:3c:77:d1:f3:10:4f:e8:9e:eb:60: 94:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F8:42:7E:3D:A7:9D:BB:E3:58:FB:BE:22:4C:98:99:0C:32:20:74 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:28:3e:77:72:27:22:59:3e:94:5d:61:9e:12:6f:78:83:ed: 32:6f:a9:c3:2f:dd:19:82:06:aa:3e:4e:cc:3d:fa:b1:11:59: 94:a6:88:0d:1a:4d:61:a7:b6:91:28:b7:7e:4f:2b:61:4d:2b: 80:e9:13:6f:ed:c0:14:d5:79:9c:fb:9b:7a:b0:0a:7d:8c:bf: 01:88:dd:c2:38:2e:3f:a7:d7:23:1b:2c:78:f1:fc:82:78:87: 3b:7c:a7:94:c4:eb:ff:4e:ad:59:40:67:e1:9f:f3:c6:9a:3a: 33:3a:3f:44:e2:41:ef:12:08:32:2d:13:fe:d8:d3:60:79:82: 45:81:11:c0:e7:9c:83:1a:88:a7:02:6e:93:90:94:7d:40:cb: 08:78:52:20:1e:25:98:c3:4e:92:7d:fa:d3:cd:7b:79:f6:80: dc:f3:de:e7:89:d4:87:9c:77:86:b0:c1:cd:0f:01:3d:2c:65: a0:1b:44:f4:79:50:c5:96:02:88:27:08:7e:83:f4:ca:cc:be: 6c:2b:e8:54:78:f7:82:47:06:6c:da:3b:08:2d:95:95:65:b5: 01:80:68:3a:18:43:2d:86:46:69:c9:d9:26:0e:7e:86:ce:fa: 5a:e1:2b:e2:75:cc:95:92:a0:bd:23:fb:e7:97:80:a9:a2:10: 33:27:06:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjQxMTIzMDAxMDMwWhcNMjQxMTMwMDAxMDMwWjAYMRYwFAYD VQQDEw02NzQxMWQ3Ni04MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA++GFs1Xlv2CzMXu2/fQqww9ynzMDRIjKRbvsUgBd60/dLGs+OWlTDUJlSPJh EFVrWlSFvZigl0t8II0OfKd9E9jCmphPmgn7mvREZ7euuGdIQhNy77o97Ayu4QVQ +63uiSTCUyt35N2pJ2kwWkkII+pqVf8hOBa0HxA7vnj2x8JRj+tBJEPdMB/F3QTr LWjB9Inujg9eFa+2AYX6Gu+Zry4OleS5l09LwF0oxq6bA+ukHThVhGcTJmNdRNwF ppTCoPpzHMcwXokG9nPj5vB5yVKOuk978Ya79f2l7feO+hrPIicgp4eE8oHowNHj v44umDfwIzx30fMQT+ie62CU2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJv4Qn49 p52741j7viJMmJkMMiB0MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3KD53ciciWT6UXWGeEm94g+0yb6nDL90ZggaqPk7MPfqxEVmUpogN Gk1hp7aRKLd+TythTSuA6RNv7cAU1Xmc+5t6sAp9jL8BiN3COC4/p9cjGyx48fyC eIc7fKeUxOv/Tq1ZQGfhn/PGmjozOj9E4kHvEggyLRP+2NNgeYJFgRHA55yDGoin Am6TkJR9QMsIeFIgHiWYw06SffrTzXt59oDc897nidSHnHeGsMHNDwE9LGWgG0T0 eVDFlgKIJwh+g/TKzL5sK+hUePeCRwZs2jsILZWVZbUBgGg6GEMthkZpydkmDn6G zvpa4SvidcyVkqC9I/vnl4CpohAzJwbh -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org