$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: Popo8lx38qJSy4ZmVIXi1Da9g3D8SIL7AkI1uEU40HY= Subject key identifier: F0:7E:24:3B:2D:8D:0A:98:34:CE:97:0B:35:88:72:26:8B:5F:75:AA Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 3427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 3427 Signing time: Fri 22 Nov 2024 14:35:36 +0000 Manifest this update: Fri 22 Nov 2024 14:35:35 +0000 Manifest next update: Fri 29 Nov 2024 14:35:35 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: T7O50g/KjzfqkGlH6AdsQhu/9BSwEyl/NxL51JzZ4/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13351 (0x3427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Nov 22 14:35:35 2024 GMT Not After : Nov 29 14:35:35 2024 GMT Subject: CN=674096b7-688a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:84:59:f9:70:e1:6b:e3:d1:6f:67:a3:99:85: d6:90:36:a5:49:1f:ea:56:e6:14:1c:ce:f3:e4:8f: 20:4c:e7:cd:58:79:65:fb:a4:4b:46:cc:9c:4e:fa: c6:69:1f:9e:03:50:ee:06:66:67:4a:98:d4:03:e4: 9c:79:b2:a6:f9:3e:47:7e:a5:bb:7b:1a:98:d5:0a: b7:c8:56:d1:c1:c2:94:29:03:62:85:12:21:ae:01: 27:0b:75:69:d4:d4:fe:14:e7:0f:72:b9:8d:0d:b5: a0:5d:8d:42:1e:b5:92:78:4a:b2:2a:54:97:ed:6a: 2d:50:38:2a:de:1f:84:48:51:60:e1:33:f7:9e:9f: 49:ea:dd:3a:0b:d7:62:b3:f8:4a:90:0a:5a:47:27: a8:47:84:02:64:d5:81:22:4a:00:87:d9:22:1a:8b: 9b:f3:89:af:56:81:8a:09:51:bb:e5:a6:fc:24:a7: fb:eb:f0:93:21:00:e0:7e:c9:98:fe:40:74:78:1d: 4a:62:cb:e3:43:dc:ad:e5:ae:16:33:a0:03:38:e2: 38:b8:f3:cc:9f:f8:c6:3c:95:d2:65:6a:7b:9a:00: 18:45:87:04:44:64:12:8c:70:8a:01:c4:c5:a8:cf: 08:9b:07:cd:ef:33:f0:c0:49:13:24:ad:eb:9b:8e: c0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7E:24:3B:2D:8D:0A:98:34:CE:97:0B:35:88:72:26:8B:5F:75:AA X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:75:46:7a:21:1d:cc:d0:19:39:d4:3b:f8:d0:2a:08:e1:a4: 83:b3:41:b0:f3:d8:b8:26:22:29:94:43:28:92:ba:c2:5d:88: 3c:bd:b9:fa:99:7a:a7:73:6b:f1:17:bb:61:66:14:27:7e:71: fd:37:67:4c:4c:36:72:f8:a8:49:d6:e2:6e:1e:cb:58:4e:7f: 8d:2e:38:f9:99:4a:58:3b:4b:ad:de:5c:c1:89:f6:84:12:35: 38:3d:da:5b:1d:2c:c0:0c:37:d9:a6:31:4d:9b:07:b0:b6:c3: 83:b7:27:82:8c:42:1a:b0:2d:26:12:63:1d:8b:48:60:ec:48: 33:ba:34:ea:7c:73:1c:6d:31:62:37:db:08:6f:23:21:d4:ea: c6:3a:3f:cc:fa:cd:0b:09:e6:eb:b9:88:97:73:4a:42:95:8e: 79:22:7a:25:3a:26:ed:f1:76:8b:79:f3:89:16:58:45:21:fa: 8d:5e:6b:b2:aa:64:79:a2:24:6c:3f:b5:8a:31:7a:a0:73:79: cf:a3:cb:7d:3e:16:7c:ec:f5:81:63:83:a6:3f:9f:be:76:ba: 7f:63:8f:d1:d8:1c:13:f6:39:e6:e6:c5:16:62:2e:df:3f:5a: 54:8d:76:d9:b7:3b:c6:db:d7:e1:af:2e:24:94:51:98:b6:4f: 47:11:d3:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjQxMTIyMTQzNTM1WhcNMjQxMTI5MTQzNTM1WjAYMRYwFAYD VQQDEw02NzQwOTZiNy02ODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIRZ+XDha+PRb2ejmYXWkDalSR/qVuYUHM7z5I8gTOfNWHll+6RLRsycTvrG aR+eA1DuBmZnSpjUA+ScebKm+T5HfqW7exqY1Qq3yFbRwcKUKQNihRIhrgEnC3Vp 1NT+FOcPcrmNDbWgXY1CHrWSeEqyKlSX7WotUDgq3h+ESFFg4TP3np9J6t06C9di s/hKkApaRyeoR4QCZNWBIkoAh9kiGoub84mvVoGKCVG75ab8JKf76/CTIQDgfsmY /kB0eB1KYsvjQ9yt5a4WM6ADOOI4uPPMn/jGPJXSZWp7mgAYRYcERGQSjHCKAcTF qM8ImwfN7zPwwEkTJK3rm47AcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPB+JDst jQqYNM6XCzWIciaLX3WqMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBldUZ6IR3M0Bk51Dv40CoI4aSDs0Gw89i4JiIplEMokrrCXYg8vbn6 mXqnc2vxF7thZhQnfnH9N2dMTDZy+KhJ1uJuHstYTn+NLjj5mUpYO0ut3lzBifaE EjU4PdpbHSzADDfZpjFNmwewtsODtyeCjEIasC0mEmMdi0hg7EgzujTqfHMcbTFi N9sIbyMh1OrGOj/M+s0LCebruYiXc0pClY55InolOibt8XaLefOJFlhFIfqNXmuy qmR5oiRsP7WKMXqgc3nPo8t9PhZ87PWBY4OmP5++drp/Y4/R2BwT9jnm5sUWYi7f P1pUjXbZtzvG29fhry4klFGYtk9HEdND -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org