$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: sYE13DfE6unAXW4II6D1n3p1C2rtv2cXkJG+5uf2FlQ= Subject key identifier: 1F:7C:EA:4A:F1:73:6D:8E:AD:38:C8:54:14:2C:7A:52:3B:A4:55:8C Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 056C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0568 Signing time: Fri 22 Nov 2024 22:55:08 +0000 Manifest this update: Fri 22 Nov 2024 22:55:07 +0000 Manifest next update: Fri 29 Nov 2024 22:55:07 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: mw1WJKhOSUiXG3MMnvGSv9+gIDFJYLZOhBBq7+JFPCM=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: 8xPWjkoE+zFud+TFxgnEq1UzwqrmQYh6gT2DXl5XDNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Nov 22 22:55:07 2024 GMT Not After : Nov 29 22:55:07 2024 GMT Subject: CN=67410bcc-1f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:ec:ba:da:06:7b:eb:0e:a0:77:de:67:03: fa:74:6f:3d:cd:3d:2a:76:58:5f:a2:45:4a:ae:bb: ef:f5:86:f6:37:b8:07:bb:70:8a:bd:f0:0d:d7:4e: be:2f:7c:3b:7b:96:d5:5e:ea:42:db:79:65:e4:c4: ec:bc:12:a8:db:8b:89:f2:2a:3b:38:87:50:6a:33: 46:d2:db:52:07:85:64:e2:50:9f:8a:bf:90:62:c2: 3e:81:cb:0d:e3:bd:b0:45:29:f6:11:f0:24:0a:d8: e7:9b:15:09:5e:27:8f:dc:fc:51:83:04:ce:3c:b6: c3:9d:48:7e:7c:6c:91:16:56:6e:a7:c4:db:ca:ed: 98:7b:7d:64:03:88:5c:98:ad:f3:1f:31:1f:ce:0e: c5:63:67:71:66:16:f2:39:e3:28:18:7e:e9:f0:3b: 6b:8e:0c:fc:ac:83:66:0c:24:01:48:ec:10:b5:9c: f0:ad:4d:43:68:82:b2:91:13:db:9e:c1:d1:47:c8: 36:3c:4e:5f:c1:dd:e4:de:c3:ca:9d:16:e9:81:13: db:91:c3:9f:38:fa:b9:c9:6e:eb:84:e1:5c:f6:60: 9e:22:81:d1:08:db:98:99:05:15:b3:9d:b9:35:2a: fb:cf:b1:24:c4:4c:89:70:f6:fa:43:21:a4:25:90: 57:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7C:EA:4A:F1:73:6D:8E:AD:38:C8:54:14:2C:7A:52:3B:A4:55:8C X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:ca:5e:c3:7e:1e:fd:e1:22:64:9d:47:48:65:c7:49:ca:67: 0e:bb:2b:7c:9f:b9:37:f7:31:5a:4a:4d:8b:d3:b0:17:09:96: 0e:4e:b3:64:b6:92:1b:8f:43:2a:55:bd:58:b0:49:40:70:b0: 83:2c:c8:12:c3:29:33:a0:46:fe:25:a4:47:ae:80:1e:e3:e1: e6:79:ed:c7:91:ed:61:6d:77:f2:6e:0a:9a:dd:ba:75:9b:7a: ed:8f:bc:26:f9:2b:93:d1:24:d9:6a:40:00:f5:76:9d:4e:9d: df:99:b6:7b:06:ce:b1:91:8f:75:f1:55:b6:4b:df:fa:03:ac: b5:fd:3a:c5:0f:00:10:00:83:58:c8:d4:b7:e5:b9:48:28:fc: 4b:d6:93:4b:ca:67:72:7f:ec:f0:98:fe:ba:18:1b:40:ad:83: b1:f4:84:bd:af:52:c4:0f:cb:04:05:7a:90:e6:6d:38:3d:84: 7a:1e:cf:f2:b3:b2:90:6e:e3:e1:53:fb:15:c0:e1:76:6b:81: c7:10:ed:c6:4c:fa:9a:f7:05:b0:5c:ff:02:0b:71:87:b4:09: 58:9b:45:05:35:0d:9b:3a:43:d7:97:f8:b1:ea:ec:d9:f3:15: 56:57:d3:62:c0:63:39:23:4e:41:60:36:29:71:a3:71:93:fd: 06:a6:d0:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjQxMTIyMjI1NTA3WhcNMjQxMTI5MjI1NTA3WjAYMRYwFAYD VQQDEw02NzQxMGJjYy0xZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XLsutoGe+sOoHfeZwP6dG89zT0qdlhfokVKrrvv9Yb2N7gHu3CKvfAN106+ L3w7e5bVXupC23ll5MTsvBKo24uJ8io7OIdQajNG0ttSB4Vk4lCfir+QYsI+gcsN 472wRSn2EfAkCtjnmxUJXieP3PxRgwTOPLbDnUh+fGyRFlZup8Tbyu2Ye31kA4hc mK3zHzEfzg7FY2dxZhbyOeMoGH7p8Dtrjgz8rINmDCQBSOwQtZzwrU1DaIKykRPb nsHRR8g2PE5fwd3k3sPKnRbpgRPbkcOfOPq5yW7rhOFc9mCeIoHRCNuYmQUVs525 NSr7z7EkxEyJcPb6QyGkJZBX3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB986krx c22OrTjIVBQselI7pFWMMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYyl7Dfh794SJknUdIZcdJymcOuyt8n7k39zFaSk2L07AXCZYOTrNk tpIbj0MqVb1YsElAcLCDLMgSwykzoEb+JaRHroAe4+Hmee3Hke1hbXfybgqa3bp1 m3rtj7wm+SuT0STZakAA9XadTp3fmbZ7Bs6xkY918VW2S9/6A6y1/TrFDwAQAINY yNS35blIKPxL1pNLymdyf+zwmP66GBtArYOx9IS9r1LED8sEBXqQ5m04PYR6Hs/y s7KQbuPhU/sVwOF2a4HHEO3GTPqa9wWwXP8CC3GHtAlYm0UFNQ2bOkPXl/ix6uzZ 8xVWV9NiwGM5I05BYDYpcaNxk/0GptCc -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org