$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: uU27l9AFeY7nGhomRL+Qb7FjrFvUsn2QT6XGxGNEnc8= Subject key identifier: FF:0B:1E:FA:06:03:70:26:66:8B:20:68:16:48:46:98:D7:EB:AE:29 Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 0472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 046E Signing time: Fri 22 Nov 2024 23:39:06 +0000 Manifest this update: Fri 22 Nov 2024 23:39:06 +0000 Manifest next update: Fri 29 Nov 2024 23:39:06 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: T5E4ihaqyNI5sqSkgqWt/wm+5KA3FhhFhCnN4EvqlMU=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: zo/+qmy2jk+AEg81LNIAMqSUawhw2XH+KNnnn5Sp1YU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1138 (0x472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Nov 22 23:39:06 2024 GMT Not After : Nov 29 23:39:06 2024 GMT Subject: CN=6741161a-855a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d5:eb:19:0b:8a:1f:5c:b5:45:4e:ab:95:ab: bc:37:96:25:53:e3:42:d7:98:d0:d5:9c:3a:1d:60: 77:52:5d:d8:1f:d6:c8:48:e9:7e:fe:c8:92:74:49: 70:1b:34:96:fd:53:59:da:8e:ab:72:95:9b:ca:c3: de:42:d7:65:82:23:ac:9e:4a:9d:f9:b6:2b:79:05: 35:a5:6f:bb:a3:6a:31:6e:fb:33:c8:72:54:79:22: dd:76:9a:36:91:b4:2e:c5:fa:5e:d3:e2:ae:0c:f2: e2:15:67:3a:4d:5c:e3:50:25:1c:d3:6a:a9:e4:8f: 74:16:05:3d:f2:7c:a5:80:e7:9d:e7:73:8e:c8:6e: dc:3b:3f:3e:c4:47:31:2b:b1:23:66:35:17:e2:00: 34:37:ac:14:34:12:9d:a9:dc:ba:19:40:52:3d:3e: 68:f0:19:62:cf:c5:1a:50:17:9d:c6:69:0b:ff:46: 61:b6:7b:95:10:ca:84:28:9c:9f:99:24:b0:1f:42: c3:d0:e5:43:2f:ac:fb:e2:9f:c5:42:ab:6d:98:24: 44:34:73:01:b8:31:cb:d8:4b:e0:59:6a:c9:d4:45: b8:05:45:91:7f:26:8c:b3:3c:eb:a9:76:5e:d5:ed: e1:24:bc:8e:68:06:85:e8:9f:60:a0:6d:27:dc:ac: c0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:0B:1E:FA:06:03:70:26:66:8B:20:68:16:48:46:98:D7:EB:AE:29 X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:28:98:6d:55:5d:ba:ad:8c:70:d2:2f:fb:59:6a:38:ff:34: 86:65:42:92:21:fd:ec:44:50:ad:1a:d7:b8:52:c2:95:65:8f: f8:bd:5c:e1:21:e0:a7:03:31:3b:a9:0f:0e:39:eb:c7:65:d9: e8:91:1d:dd:98:d8:45:b9:b2:a7:3b:dd:c3:72:e6:b7:d5:44: 4f:05:32:2d:7d:e0:a5:64:f2:6d:27:60:b2:77:3e:37:de:81: 12:42:13:d2:16:85:2f:a0:21:d7:da:41:30:26:78:d4:74:70: 75:0a:b0:b3:a0:4c:fa:33:5d:9b:c3:d0:77:bc:b9:f0:ef:87: 9c:79:3e:93:d4:2b:c4:d8:de:6b:2d:05:23:5e:f6:de:5a:e2: 63:b7:3c:a4:e9:ae:62:c8:13:f1:48:ea:51:27:7d:2e:24:4b: 79:74:bf:7d:3e:a9:15:0e:5d:d5:91:d0:32:2f:54:5d:5b:b7: aa:a8:62:90:45:9b:97:06:03:ae:73:7d:7f:00:da:ce:50:17: 8b:89:49:f8:2e:9f:51:f0:c6:99:f4:b6:5e:45:25:da:21:05: 99:61:53:d8:30:22:05:df:45:19:b1:a7:cb:38:de:d3:89:69: a0:7a:8c:b2:65:72:c8:8f:fb:a6:61:02:35:48:81:12:d5:df: ec:1e:ad:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjQxMTIyMjMzOTA2WhcNMjQxMTI5MjMzOTA2WjAYMRYwFAYD VQQDEw02NzQxMTYxYS04NTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9XrGQuKH1y1RU6rlau8N5YlU+NC15jQ1Zw6HWB3Ul3YH9bISOl+/siSdElw GzSW/VNZ2o6rcpWbysPeQtdlgiOsnkqd+bYreQU1pW+7o2oxbvszyHJUeSLddpo2 kbQuxfpe0+KuDPLiFWc6TVzjUCUc02qp5I90FgU98nylgOed53OOyG7cOz8+xEcx K7EjZjUX4gA0N6wUNBKdqdy6GUBSPT5o8Bliz8UaUBedxmkL/0ZhtnuVEMqEKJyf mSSwH0LD0OVDL6z74p/FQqttmCRENHMBuDHL2EvgWWrJ1EW4BUWRfyaMszzrqXZe 1e3hJLyOaAaF6J9goG0n3KzAUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8LHvoG A3AmZosgaBZIRpjX664pMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgKJhtVV26rYxw0i/7WWo4/zSGZUKSIf3sRFCtGte4UsKVZY/4vVzh IeCnAzE7qQ8OOevHZdnokR3dmNhFubKnO93Dcua31URPBTItfeClZPJtJ2Cydz43 3oESQhPSFoUvoCHX2kEwJnjUdHB1CrCzoEz6M12bw9B3vLnw74eceT6T1CvE2N5r LQUjXvbeWuJjtzyk6a5iyBPxSOpRJ30uJEt5dL99PqkVDl3VkdAyL1RdW7eqqGKQ RZuXBgOuc31/ANrOUBeLiUn4Lp9R8MaZ9LZeRSXaIQWZYVPYMCIF30UZsafLON7T iWmgeoyyZXLIj/umYQI1SIES1d/sHq2M -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org