$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft File: 1p-GUNl6UkwplFPMtI13tOZf3yI.mft (raw, json) Hash identifier: 3imduv0MjTibNrr9+TdkBTOvIH7IFe8OIrmqrkJIYQA= Subject key identifier: 39:9B:7C:98:AF:1E:C2:AC:49:2A:98:54:BB:3F:11:EE:85:89:BA:67 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft Manifest number: AE Signing time: Sat 23 Nov 2024 04:11:08 +0000 Manifest this update: Sat 23 Nov 2024 04:11:07 +0000 Manifest next update: Sat 30 Nov 2024 04:11:07 +0000 Files and hashes: 1: 1p-GUNl6UkwplFPMtI13tOZf3yI.crl (hash: CuFlmzgZIqTebXwYgohq1P2WzIRZ1Nkufsq1qclGMmw=) 2: D1054582A0C111EEA54E2F0BC4F9AE02.roa (hash: Czi7PWRQ87B1nKXSiQO2Heb4QoSzR8e/1K23JvG3RhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Validity Not Before: Nov 23 04:11:07 2024 GMT Not After : Nov 30 04:11:07 2024 GMT Subject: CN=674155db-e329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:d5:40:8f:05:09:06:82:9a:39:b9:04:3e: 48:0f:fc:ab:dd:ac:6a:3d:ba:1f:0c:76:f7:bb:fa: 1c:32:f7:d4:0b:cf:cf:b1:4b:22:04:64:ee:09:eb: 1f:da:14:fe:01:58:ce:a9:83:a1:f9:8a:68:0e:cd: 24:ea:42:67:7b:de:5d:c6:13:26:5a:6c:3a:cd:f2: 0f:b7:97:25:fc:12:15:be:ed:bb:b6:e1:76:d5:3f: 22:41:be:c6:79:00:98:49:3c:9a:30:ac:ee:35:da: 97:72:71:4b:49:e5:2d:e4:02:ff:29:d2:fa:cd:6b: 5e:54:60:15:9d:e9:84:1d:60:63:78:e8:2d:26:5f: e6:d8:97:1d:19:fe:04:eb:1e:ea:4d:71:91:f4:ae: 43:21:eb:4e:7a:a1:9f:6d:e8:1e:64:5c:7c:7d:d6: 07:fa:3c:3f:32:7c:f0:6f:d8:75:2a:54:55:b7:d4: e5:fe:0c:ad:bb:04:65:79:fa:3c:e8:49:e3:95:5e: 6c:65:ff:e2:95:90:32:6e:60:25:f7:e0:da:0c:4a: bb:95:e6:88:76:4d:fe:c0:e0:0e:e2:af:67:c3:4d: 55:c9:0c:9c:ae:7a:89:8c:96:ef:e2:99:44:c0:3b: ae:0b:81:06:ee:d5:5b:81:d0:2d:e8:28:38:8f:a4: 64:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9B:7C:98:AF:1E:C2:AC:49:2A:98:54:BB:3F:11:EE:85:89:BA:67 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:31:bc:65:ba:4b:05:52:f9:0d:3a:88:62:2c:ef:60:e6:5b: 0f:2a:23:aa:1f:7c:1f:62:d4:07:67:73:e1:f7:5b:cc:41:84: 98:f1:00:0d:ac:64:51:31:0c:dd:30:78:95:55:f0:78:c4:57: 04:d0:25:94:c9:57:c4:22:17:5d:72:14:66:d5:cb:a8:93:8d: ea:c3:14:33:5c:0d:b8:46:e1:63:be:e1:77:10:6c:56:44:92: c7:2a:37:d4:b5:5c:36:d0:ee:0d:b2:f3:c6:8d:cc:c6:ad:7a: 56:a6:80:a6:26:83:75:66:d9:fc:38:59:30:3b:d4:0e:1a:25: d5:74:fa:57:be:77:05:ac:5c:af:92:c3:ec:b6:74:10:3a:7b: f9:7d:fd:f4:9c:f6:d7:e9:e6:2b:1d:4c:92:c6:64:45:60:65: 43:32:90:d7:09:f4:9c:37:0d:99:07:e2:91:2e:79:4a:16:23: a9:cb:0d:07:7d:55:09:df:0a:64:fd:15:50:12:08:4d:b6:c9: a8:7e:e2:3a:7a:46:50:b8:48:03:90:f4:ac:72:08:16:cc:4d: ce:2d:37:c3:e8:e0:d8:8c:50:1c:81:8a:5f:b0:61:01:0d:6e: b9:a8:64:ee:82:69:23:81:18:83:25:4a:bd:2d:ef:b5:3c:8e: d0:85:46:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA2OTUxMTAvBgNVBAUTKEQ2OUY4NjUwRDk3QTUyNEMyOTk0NTNDQ0I0OEQ3N0I0 RTY1RkRGMjIwHhcNMjQxMTIzMDQxMTA3WhcNMjQxMTMwMDQxMTA3WjAYMRYwFAYD VQQDEw02NzQxNTVkYi1lMzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxLVQI8FCQaCmjm5BD5ID/yr3axqPbofDHb3u/ocMvfUC8/PsUsiBGTuCesf 2hT+AVjOqYOh+YpoDs0k6kJne95dxhMmWmw6zfIPt5cl/BIVvu27tuF21T8iQb7G eQCYSTyaMKzuNdqXcnFLSeUt5AL/KdL6zWteVGAVnemEHWBjeOgtJl/m2JcdGf4E 6x7qTXGR9K5DIetOeqGfbegeZFx8fdYH+jw/Mnzwb9h1KlRVt9Tl/gytuwRlefo8 6EnjlV5sZf/ilZAybmAl9+DaDEq7leaIdk3+wOAO4q9nw01VyQycrnqJjJbv4plE wDuuC4EG7tVbgdAt6Cg4j6Rk1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmbfJiv HsKsSSqYVLs/Ee6FibpnMB8GA1UdIwQYMBaAFNafhlDZelJMKZRTzLSNd7TmX98i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDY5NS83QzY3ODE0OEEw QzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVrd3BsRlBNdEkxM3RPWmYz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDY5NS83QzY3ODE0OEEwQzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVr d3BsRlBNdEkxM3RPWmYzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkMbxluksFUvkNOohiLO9g5lsPKiOqH3wfYtQHZ3Ph91vMQYSY8QAN rGRRMQzdMHiVVfB4xFcE0CWUyVfEIhddchRm1cuok43qwxQzXA24RuFjvuF3EGxW RJLHKjfUtVw20O4NsvPGjczGrXpWpoCmJoN1Ztn8OFkwO9QOGiXVdPpXvncFrFyv ksPstnQQOnv5ff30nPbX6eYrHUySxmRFYGVDMpDXCfScNw2ZB+KRLnlKFiOpyw0H fVUJ3wpk/RVQEghNtsmofuI6ekZQuEgDkPSscggWzE3OLTfD6ODYjFAcgYpfsGEB DW65qGTugmkjgRiDJUq9Le+1PI7QhUZ9 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org