$ rpki-client -vvf rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.mft File: G_l27-qyMS6i2shrmKOYzwxb1vA.mft (raw, json) Hash identifier: dXC83lGsCqtztGsU6KVMmbAEpiARwpYTUaSqV4ze0lM= Subject key identifier: 75:18:8D:A8:5B:29:DA:F9:BD:E2:8F:11:17:8D:C5:CD:A9:B3:39:6E Authority key identifier: 1B:F9:76:EF:EA:B2:31:2E:A2:DA:C8:6B:98:A3:98:CF:0C:5B:D6:F0 Certificate issuer: /CN=A91E772F/serialNumber=1BF976EFEAB2312EA2DAC86B98A398CF0C5BD6F0 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_l27-qyMS6i2shrmKOYzwxb1vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.mft Manifest number: 80 Signing time: Sat 23 Nov 2024 04:39:32 +0000 Manifest this update: Sat 23 Nov 2024 04:39:31 +0000 Manifest next update: Sat 30 Nov 2024 04:39:31 +0000 Files and hashes: 1: G_l27-qyMS6i2shrmKOYzwxb1vA.crl (hash: /3KUBh6AEgkylckiXQb3HJtGnCrtjvQxQEihG90N2tc=) 2: 82743A06E2EB11EEBAC73D0CC4F9AE02.roa (hash: y03lKIB42nw4jlkFQ7G75iFQPvcCfwFRDTzAnmoLg+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.crl rsync://rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_l27-qyMS6i2shrmKOYzwxb1vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E772F/serialNumber=1BF976EFEAB2312EA2DAC86B98A398CF0C5BD6F0 Validity Not Before: Nov 23 04:39:31 2024 GMT Not After : Nov 30 04:39:31 2024 GMT Subject: CN=67415c84-7d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:98:a9:62:70:2b:2c:83:3a:cf:38:44:72: d7:a7:5d:82:fb:15:3a:f2:f7:4a:08:9c:69:76:62: 0c:78:17:9c:39:a3:42:da:f5:3a:20:2b:f8:db:2a: 5c:bb:1b:a6:d6:3c:6f:d2:e0:44:f6:b8:fb:f1:22: 37:96:cf:f3:3d:a1:95:2f:6a:ae:85:ee:51:6e:bd: a3:15:78:cb:9c:0d:e7:ed:75:74:a6:9a:10:4e:5e: de:92:cb:39:1a:48:1f:15:8a:1c:9e:b3:8c:7c:f3: e6:37:1a:27:1a:f7:66:f2:a8:ac:15:84:3e:44:63: 72:89:5a:9e:db:f0:82:5f:1b:30:59:4d:b0:a4:d4: 6e:0b:3a:fd:49:9b:5f:23:9c:c6:e3:4b:62:99:6b: fc:07:a0:fa:b7:1f:b9:44:a9:34:58:16:73:dc:c2: 43:e4:d7:e5:ed:a8:79:87:c0:10:03:65:0e:83:f7: f5:8e:74:76:70:71:24:83:eb:e3:23:20:02:2e:f5: a4:32:5e:32:3e:f7:06:19:9a:cf:d0:12:1b:ef:74: c7:8e:d0:18:0c:f8:b4:9f:7b:b1:0c:cd:0b:6a:80: d7:19:67:a7:1a:62:2b:a9:a5:8a:44:c9:58:7b:b6: 89:9b:9c:d5:89:f8:9f:db:6a:40:b0:84:dc:27:5c: 3a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:18:8D:A8:5B:29:DA:F9:BD:E2:8F:11:17:8D:C5:CD:A9:B3:39:6E X509v3 Authority Key Identifier: keyid:1B:F9:76:EF:EA:B2:31:2E:A2:DA:C8:6B:98:A3:98:CF:0C:5B:D6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_l27-qyMS6i2shrmKOYzwxb1vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E772F/1E77E732E2EB11EEAD6E9A0BC4F9AE02/G_l27-qyMS6i2shrmKOYzwxb1vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:84:bd:4c:ad:40:27:6b:dd:30:11:b2:ad:4e:d8:4e:33:a0: 23:c6:7e:d0:10:40:17:0e:c2:b7:d0:5a:a1:f3:64:a1:86:56: f6:b6:24:56:62:59:d7:a2:cf:52:1b:47:a8:aa:d8:c8:28:54: 58:df:89:cc:57:42:d3:a5:bf:17:cf:22:79:52:8d:da:fa:41: ee:48:a3:1f:a8:91:57:02:a5:a3:dc:23:8c:61:83:1e:32:f1: 8c:11:0e:14:d3:80:3a:b8:43:e9:12:e7:6e:93:0e:9a:50:9d: ec:b9:98:ba:4b:8e:1e:76:2f:0c:de:d0:01:d7:04:42:20:6b: 98:58:d2:f0:b6:e1:75:7f:01:ab:a0:ff:49:74:de:1b:21:4c: ac:93:16:ce:eb:eb:04:59:e6:8f:e3:a2:aa:f6:fe:af:e6:05: c9:b5:f8:05:04:64:7d:86:47:61:91:24:65:c2:69:a8:fe:5c: a9:92:9b:e3:f1:74:b1:b5:bd:45:cc:4a:6e:7b:1b:06:22:b7: 5a:28:76:61:c5:0e:14:4b:fa:1f:61:3c:42:85:2c:47:32:73: 48:af:cf:a0:cd:8f:c5:cd:f2:05:f3:35:89:36:46:df:1d:ed: 06:e0:ee:52:68:23:4d:13:ec:6e:a7:2d:53:63:78:08:d3:2c: a0:0e:f4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc3MkYxMTAvBgNVBAUTKDFCRjk3NkVGRUFCMjMxMkVBMkRBQzg2Qjk4QTM5OENG MEM1QkQ2RjAwHhcNMjQxMTIzMDQzOTMxWhcNMjQxMTMwMDQzOTMxWjAYMRYwFAYD VQQDEw02NzQxNWM4NC03ZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPOYqWJwKyyDOs84RHLXp12C+xU68vdKCJxpdmIMeBecOaNC2vU6ICv42ypc uxum1jxv0uBE9rj78SI3ls/zPaGVL2quhe5Rbr2jFXjLnA3n7XV0ppoQTl7ekss5 GkgfFYocnrOMfPPmNxonGvdm8qisFYQ+RGNyiVqe2/CCXxswWU2wpNRuCzr9SZtf I5zG40timWv8B6D6tx+5RKk0WBZz3MJD5Nfl7ah5h8AQA2UOg/f1jnR2cHEkg+vj IyACLvWkMl4yPvcGGZrP0BIb73THjtAYDPi0n3uxDM0LaoDXGWenGmIrqaWKRMlY e7aJm5zVifif22pAsITcJ1w60QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUYjahb Kdr5veKPEReNxc2pszluMB8GA1UdIwQYMBaAFBv5du/qsjEuotrIa5ijmM8MW9bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzcyRi8xRTc3RTczMkUy RUIxMUVFQUQ2RTlBMEJDNEY5QUUwMi9HX2wyNy1xeU1TNmkyc2hybUtPWXp3eGIx dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dfbDI3LXF5TVM2aTJzaHJtS09Zend4YjF2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzcyRi8xRTc3RTczMkUyRUIxMUVFQUQ2RTlBMEJDNEY5QUUwMi9HX2wyNy1xeU1T Nmkyc2hybUtPWXp3eGIxdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYhL1MrUAna90wEbKtTthOM6Ajxn7QEEAXDsK30Fqh82Shhlb2tiRW YlnXos9SG0eoqtjIKFRY34nMV0LTpb8XzyJ5Uo3a+kHuSKMfqJFXAqWj3COMYYMe MvGMEQ4U04A6uEPpEudukw6aUJ3suZi6S44edi8M3tAB1wRCIGuYWNLwtuF1fwGr oP9JdN4bIUyskxbO6+sEWeaP46Kq9v6v5gXJtfgFBGR9hkdhkSRlwmmo/lypkpvj 8XSxtb1FzEpuexsGIrdaKHZhxQ4US/ofYTxChSxHMnNIr8+gzY/FzfIF8zWJNkbf He0G4O5SaCNNE+xupy1TY3gI0yygDvS2 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org