$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: heqsAow/iXCHRCLzAYxZqC4pdhxS4SQ5SAggkm2SfvQ= Subject key identifier: 7A:0C:27:C5:78:F2:99:FF:21:80:EC:09:9D:86:58:6C:71:77:C7:30 Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 0281 Signing time: Sat 23 Nov 2024 01:10:32 +0000 Manifest this update: Sat 23 Nov 2024 01:10:32 +0000 Manifest next update: Sat 30 Nov 2024 01:10:32 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: 7qUXk3cknhSbP2zm74NKA6E7Xjw2FRUfybFUABCn10E=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: Nov 23 01:10:32 2024 GMT Not After : Nov 30 01:10:32 2024 GMT Subject: CN=67412b88-276b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:3e:70:eb:2b:f3:a7:f1:ac:56:7d:1b:00: 60:35:c5:9f:c1:77:88:8a:82:c6:8e:29:44:d9:1b: 6e:1f:20:37:bc:d9:b3:dd:71:79:1f:52:68:5b:f2: 4b:4d:52:8c:8e:b6:10:e6:77:a7:35:9a:e4:35:39: c8:49:93:57:5b:5c:b7:0b:d3:a1:89:6d:f2:2b:f5: 4f:a7:9d:0c:44:27:bc:23:29:79:8c:12:ce:2e:b9: 13:a5:d1:be:90:80:5e:ab:9d:ee:89:69:f4:b1:50: 9c:85:f6:18:a5:b0:4d:0e:4d:dd:45:34:aa:f0:9d: 3a:2f:06:84:f2:6f:91:0b:36:74:c4:b4:c4:c1:b0: 49:80:07:30:bf:52:4c:cd:fb:f8:41:5a:db:38:13: e6:9d:47:1e:fe:21:23:99:01:d6:ec:7e:62:35:e3: b9:22:1e:c9:c4:83:20:84:5f:dc:d9:6b:b5:a9:6b: 1b:7f:51:c4:b4:22:4c:92:7b:9d:ac:9e:1a:c9:5b: cd:3b:f8:3f:35:36:94:ed:a6:8c:fb:1c:91:2d:84: ff:53:88:3b:73:68:eb:5e:b3:34:65:5d:7b:49:0c: 5d:be:55:9c:40:e7:a5:71:67:ea:49:95:57:da:b2: b2:c8:28:af:65:60:45:70:a0:8c:70:7f:13:a3:96: ad:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:0C:27:C5:78:F2:99:FF:21:80:EC:09:9D:86:58:6C:71:77:C7:30 X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f4:34:0c:d8:c5:b5:0b:b0:20:a8:16:b2:97:60:5f:1b:0e: 5a:d4:c5:e8:9d:70:5d:8c:54:a4:cd:14:ef:f1:c8:f2:8e:a3: 64:09:d7:c4:11:92:aa:b7:37:77:4a:a1:ae:e4:43:59:e4:d5: 2f:b7:df:89:c4:09:ed:14:bc:75:c2:45:1c:2a:0c:db:e0:44: 7e:28:96:aa:b1:6a:63:0c:90:5a:53:07:ac:4c:49:bb:95:5e: 26:99:9b:04:4f:ac:77:61:d2:b3:fa:b9:b5:2b:45:2f:a6:7c: 2d:e7:fa:17:2a:a8:17:cc:a5:b4:90:42:7a:e6:3d:92:d7:de: 22:a7:7b:92:5a:83:3f:9b:11:8d:d9:29:14:5a:b1:26:6e:33: 31:36:ee:47:bd:17:66:12:f5:1c:7f:8d:4e:5b:32:71:91:c2: ed:de:24:78:21:de:66:8c:c7:3d:d9:0f:1f:9c:25:b5:f4:9c: 2a:32:1d:f9:fa:80:8a:46:42:80:27:ae:9f:65:65:65:c8:e2: 46:77:2a:99:20:4d:6a:ae:95:4a:5b:7c:9a:b9:e1:1d:e0:bc: 1c:7c:28:d5:3a:c3:c3:13:eb:7b:a4:e2:85:b0:42:fe:26:95: 16:e7:32:b6:94:8f:be:b9:0c:2d:20:1b:24:6e:89:fc:77:4d: db:1c:7f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjQxMTIzMDExMDMyWhcNMjQxMTMwMDExMDMyWjAYMRYwFAYD VQQDEw02NzQxMmI4OC0yNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWk+cOsr86fxrFZ9GwBgNcWfwXeIioLGjilE2RtuHyA3vNmz3XF5H1JoW/JL TVKMjrYQ5nenNZrkNTnISZNXW1y3C9OhiW3yK/VPp50MRCe8Iyl5jBLOLrkTpdG+ kIBeq53uiWn0sVCchfYYpbBNDk3dRTSq8J06LwaE8m+RCzZ0xLTEwbBJgAcwv1JM zfv4QVrbOBPmnUce/iEjmQHW7H5iNeO5Ih7JxIMghF/c2Wu1qWsbf1HEtCJMknud rJ4ayVvNO/g/NTaU7aaM+xyRLYT/U4g7c2jrXrM0ZV17SQxdvlWcQOelcWfqSZVX 2rKyyCivZWBFcKCMcH8To5atxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoMJ8V4 8pn/IYDsCZ2GWGxxd8cwMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA49DQM2MW1C7AgqBayl2BfGw5a1MXonXBdjFSkzRTv8cjyjqNkCdfE EZKqtzd3SqGu5ENZ5NUvt9+JxAntFLx1wkUcKgzb4ER+KJaqsWpjDJBaUwesTEm7 lV4mmZsET6x3YdKz+rm1K0Uvpnwt5/oXKqgXzKW0kEJ65j2S194ip3uSWoM/mxGN 2SkUWrEmbjMxNu5HvRdmEvUcf41OWzJxkcLt3iR4Id5mjMc92Q8fnCW19JwqMh35 +oCKRkKAJ66fZWVlyOJGdyqZIE1qrpVKW3yaueEd4LwcfCjVOsPDE+t7pOKFsEL+ JpUW5zK2lI++uQwtIBskbon8d03bHH8B -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org