$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft File: GwdUmyUM_APdrXtURD2oOIkYEco.mft (raw, json) Hash identifier: Ge7fqCt6+KNCGL0KVWn1TcxP0KLJc/oTTCta08dDEW0= Subject key identifier: F0:81:10:69:F1:D9:12:8E:71:8A:C2:BE:6D:2F:22:6B:CB:E0:17:F3 Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft Manifest number: 12 Signing time: Sat 23 Nov 2024 05:53:47 +0000 Manifest this update: Sat 23 Nov 2024 05:53:46 +0000 Manifest next update: Sat 30 Nov 2024 05:53:46 +0000 Files and hashes: 1: GwdUmyUM_APdrXtURD2oOIkYEco.crl (hash: Ru/kDIgoRt4jsS6DytMAcFHohtaMl+Y8FYfcJ3gehuA=) 2: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (hash: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Validity Not Before: Nov 23 05:53:46 2024 GMT Not After : Nov 30 05:53:46 2024 GMT Subject: CN=67416dea-af91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:21:86:8b:51:32:99:bf:ff:7f:d8:25:b7: 73:ea:75:57:c4:77:72:d3:2b:a1:b4:f1:db:5d:5d: 52:a2:bb:b1:d7:43:7d:86:0f:2c:df:07:8e:1e:30: 13:4d:ae:fa:75:ca:9a:a1:ec:44:3e:60:1d:16:d8: 5c:ae:ac:fd:ea:68:99:13:b8:8b:51:a5:7b:0a:46: b6:bb:d9:3c:b3:16:73:32:39:2e:f6:35:81:3d:c4: ca:26:93:05:87:40:d4:e7:9e:b2:77:d6:97:52:f9: 71:9b:e4:c3:9f:d7:8b:66:d3:9c:d4:1a:d5:41:80: 14:fe:37:d1:7f:37:01:ca:28:f7:b0:5a:57:73:a4: 2e:e0:42:b6:1d:5a:3c:ea:03:38:6a:04:1b:c0:24: e3:7a:8b:16:41:1b:db:69:26:85:bb:27:ef:4f:d9: e3:c7:02:c2:b6:b4:a1:1c:41:02:b4:19:73:02:15: 12:f5:64:87:31:d1:0a:c1:82:3c:10:e2:fa:82:6a: 67:75:10:7d:c6:79:51:d0:25:6c:8d:f0:b1:58:b5: 39:38:b0:54:1f:d4:f8:27:1e:76:26:bb:d3:10:74: 06:26:03:49:7f:e2:e0:3f:fa:bf:31:47:6f:10:7c: e0:3d:64:72:f6:5e:fc:39:d2:3d:f7:d7:ca:da:77: 18:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:81:10:69:F1:D9:12:8E:71:8A:C2:BE:6D:2F:22:6B:CB:E0:17:F3 X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:13:03:2b:6a:0d:58:36:f0:81:b1:8a:f4:28:c0:54:b7:0e: bf:b9:f7:e8:84:b9:59:11:9c:9e:be:ee:de:21:e7:01:4a:4b: a9:ab:33:ec:8c:fa:24:3d:66:7c:5d:11:93:30:00:29:80:8a: 0e:62:a8:b5:32:a4:60:08:37:d5:c1:ca:2a:cd:09:d5:5a:e0: 51:a2:47:5c:cb:f5:d0:af:b2:e6:c2:03:8b:c5:a2:e8:41:e1: ce:0b:b4:7f:97:77:af:c8:96:e1:df:e7:d8:01:ab:09:ca:27: 24:9d:97:cb:9a:c4:e0:b3:d8:fc:f6:a0:30:68:d2:74:da:87: 50:a8:b4:02:2e:7d:4a:9d:61:b6:1c:ca:4c:09:4e:2e:08:99: fc:5c:d3:04:da:cf:87:a6:8f:4d:49:ce:3c:50:51:8c:95:00: 60:dc:4b:bd:1f:86:f1:7b:90:88:05:12:8d:e8:dd:a5:c3:90: 4b:b3:79:1d:23:73:13:0c:54:55:f8:df:13:67:f6:ab:37:ba: 3e:04:09:43:0b:f3:e3:ee:1e:47:4f:39:36:94:be:81:7b:15: d7:56:b5:0d:c8:18:84:b7:11:c5:11:42:5c:2d:51:15:fe:f5: 82:1a:a8:c3:09:9f:d8:68:8a:62:c4:5b:74:eb:9e:28:75:7c: c6:df:56:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MThBQzExMC8GA1UEBRMoMUIwNzU0OUIyNTBDRkMwM0REQUQ3QjU0NDQzREE4Mzg4 OTE4MTFDQTAeFw0yNDExMjMwNTUzNDZaFw0yNDExMzAwNTUzNDZaMBgxFjAUBgNV BAMTDTY3NDE2ZGVhLWFmOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/4yGGi1Eymb//f9glt3PqdVfEd3LTK6G08dtdXVKiu7HXQ32GDyzfB44eMBNN rvp1ypqh7EQ+YB0W2FyurP3qaJkTuItRpXsKRra72TyzFnMyOS72NYE9xMomkwWH QNTnnrJ31pdS+XGb5MOf14tm05zUGtVBgBT+N9F/NwHKKPewWldzpC7gQrYdWjzq AzhqBBvAJON6ixZBG9tpJoW7J+9P2ePHAsK2tKEcQQK0GXMCFRL1ZIcx0QrBgjwQ 4vqCamd1EH3GeVHQJWyN8LFYtTk4sFQf1PgnHnYmu9MQdAYmA0l/4uA/+r8xR28Q fOA9ZHL2Xvw50j3318radxgjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8IEQafHZ Eo5xisK+bS8ia8vgF/MwHwYDVR0jBBgwFoAUGwdUmyUM/APdrXtURD2oOIkYEcow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxOEFDL0Q0QkEzRDk4OTZD QzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR3dkVW15VU1fQVBkclh0VVJEMm9PSWtZRWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQx OEFDL0Q0QkEzRDk4OTZDQzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQ ZHJYdFVSRDJvT0lrWUVjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKcTAytqDVg28IGxivQowFS3Dr+59+iEuVkRnJ6+7t4h5wFKS6mrM+yM +iQ9ZnxdEZMwACmAig5iqLUypGAIN9XByirNCdVa4FGiR1zL9dCvsubCA4vFouhB 4c4LtH+Xd6/IluHf59gBqwnKJySdl8uaxOCz2Pz2oDBo0nTah1CotAIufUqdYbYc ykwJTi4Imfxc0wTaz4emj01JzjxQUYyVAGDcS70fhvF7kIgFEo3o3aXDkEuzeR0j cxMMVFX43xNn9qs3uj4ECUML8+PuHkdPOTaUvoF7FddWtQ3IGIS3EcURQlwtURX+ 9YIaqMMJn9hoimLEW3Trnih1fMbfVnU= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org