$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: qqtY9WqTRFk4LigF1KqpBGgcR0JV+hDVgK+Xs7jad2s= Subject key identifier: 21:DF:D1:62:EB:BC:2B:C0:0D:D1:95:F6:58:B6:20:7C:53:5C:7B:E0 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 18E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1E0A Signing time: Sun 24 Nov 2024 16:19:40 +0000 Manifest this update: Sun 24 Nov 2024 16:19:39 +0000 Manifest next update: Sun 01 Dec 2024 16:19:39 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: PdvvyUFhJ+0N9t51BhLbuHls6D+ZN9QIduuKB+ZLXtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6373 (0x18e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Nov 24 16:19:39 2024 GMT Not After : Dec 1 16:19:39 2024 GMT Subject: CN=6743521c-4912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:23:56:e6:26:3c:87:6c:5a:c0:ce:cc:75:98: c4:12:32:fe:c0:0d:6f:7c:c8:47:12:06:f1:ba:b3: d3:cf:5a:43:1f:c0:87:ad:24:ad:76:48:aa:a8:e4: 6e:44:9f:a4:05:b4:a5:e7:c7:dc:f1:17:35:15:81: 01:ec:78:e4:88:22:28:a8:f8:1d:8e:e0:c9:80:f0: 79:47:b9:21:1a:56:44:c9:83:95:00:f1:4f:42:82: ec:6d:1f:b6:81:a6:9d:bc:0c:7a:f1:20:fb:9b:55: 38:65:d4:06:84:30:95:df:c8:a5:e6:7f:c6:fb:c8: a6:65:1a:bb:a6:bf:d5:2a:36:30:a3:8d:5b:85:ab: 94:4e:fc:25:0c:23:fa:84:ce:c3:dc:4d:ae:8c:7d: ea:89:81:30:35:e0:79:34:f5:8b:50:65:7c:4b:0d: cb:ee:7c:e1:1f:90:8f:3d:e0:b1:a2:59:1c:c9:e8: 5e:e9:46:2d:c9:90:2e:35:ca:ec:54:3f:23:d6:97: c5:91:a0:ff:6a:1d:8a:33:56:7b:bc:36:dc:f6:29: c7:2f:e2:77:17:a9:68:c2:ec:93:b2:eb:6d:44:0b: 0e:4a:36:17:42:ce:4d:70:6f:19:69:fe:74:d7:6b: cc:0e:ea:ad:f7:66:ff:27:6e:4b:8c:32:a1:64:46: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DF:D1:62:EB:BC:2B:C0:0D:D1:95:F6:58:B6:20:7C:53:5C:7B:E0 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e6:c8:d9:25:56:82:15:73:5d:8c:04:31:71:e0:e4:4d:11: 11:d0:f6:2d:e3:99:de:86:04:68:28:5a:52:61:f7:21:6b:b7: ff:64:28:49:14:f2:e3:20:ca:be:28:db:33:b9:df:a8:94:38: 39:8d:3b:6e:25:ca:dd:75:0b:8c:e5:09:ef:a7:48:49:77:c8: 93:e4:44:e4:b7:60:67:c5:62:fb:5f:9b:f2:bd:02:c2:d7:3d: 34:8d:47:e6:d4:ad:19:3c:a5:77:e6:6c:07:42:a4:23:fb:78: 93:6d:0c:d0:c7:ee:27:d7:15:0f:e2:2f:f7:44:ba:e8:4e:e2: c0:7c:6e:01:64:80:6d:ac:79:00:37:e9:87:24:4d:35:5d:a3: 6e:4b:27:7f:4e:f4:77:ba:58:7b:85:17:a4:9a:37:2a:13:0c: 0e:46:cc:ef:cf:ed:ed:ee:79:6a:82:76:ff:b0:bd:fd:88:c1: 90:49:75:db:45:31:72:37:a7:98:7f:f4:68:32:ec:14:d2:d5: e4:b3:68:d7:8b:f7:3d:07:30:d6:a7:57:e4:e8:27:21:84:84: 93:75:cb:bc:71:9e:b7:b0:0f:e3:1b:de:fb:d9:ee:f4:89:2c: 56:69:4f:6b:5a:f0:ee:c7:fa:3c:c3:75:27:33:ae:85:a6:fe: e4:0c:a2:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjQxMTI0MTYxOTM5WhcNMjQxMjAxMTYxOTM5WjAYMRYwFAYD VQQDEw02NzQzNTIxYy00OTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiNW5iY8h2xawM7MdZjEEjL+wA1vfMhHEgbxurPTz1pDH8CHrSStdkiqqORu RJ+kBbSl58fc8Rc1FYEB7HjkiCIoqPgdjuDJgPB5R7khGlZEyYOVAPFPQoLsbR+2 gaadvAx68SD7m1U4ZdQGhDCV38il5n/G+8imZRq7pr/VKjYwo41bhauUTvwlDCP6 hM7D3E2ujH3qiYEwNeB5NPWLUGV8Sw3L7nzhH5CPPeCxolkcyehe6UYtyZAuNcrs VD8j1pfFkaD/ah2KM1Z7vDbc9inHL+J3F6lowuyTsuttRAsOSjYXQs5NcG8Zaf50 12vMDuqt92b/J25LjDKhZEaYcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHf0WLr vCvADdGV9li2IHxTXHvgMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz5sjZJVaCFXNdjAQxceDkTRER0PYt45nehgRoKFpSYfcha7f/ZChJ FPLjIMq+KNszud+olDg5jTtuJcrddQuM5Qnvp0hJd8iT5ETkt2BnxWL7X5vyvQLC 1z00jUfm1K0ZPKV35mwHQqQj+3iTbQzQx+4n1xUP4i/3RLroTuLAfG4BZIBtrHkA N+mHJE01XaNuSyd/TvR3ulh7hRekmjcqEwwORszvz+3t7nlqgnb/sL39iMGQSXXb RTFyN6eYf/RoMuwU0tXks2jXi/c9BzDWp1fk6CchhISTdcu8cZ63sA/jG9772e70 iSxWaU9rWvDux/o8w3UnM66Fpv7kDKLo -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org