$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: GFkqQldrd+LUxkv+94LmyJWh5G6QUzyVG1h8GKaDrRo= Subject key identifier: 30:7A:4D:B7:5F:AC:E1:B4:79:B5:F3:BC:5A:0D:CD:8F:A0:32:25:33 Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 06C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 06BD Signing time: Fri 22 Nov 2024 21:41:42 +0000 Manifest this update: Fri 22 Nov 2024 21:41:41 +0000 Manifest next update: Fri 29 Nov 2024 21:41:41 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: FCYUOsLTDuSZYn371DvuTjopmeaa5PKPoqChZiK2h2M=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1730 (0x6c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: Nov 22 21:41:41 2024 GMT Not After : Nov 29 21:41:41 2024 GMT Subject: CN=6740fa95-f679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dd:d9:55:77:d0:ca:e2:ca:e9:d1:2f:d7:32: 45:d9:7f:51:60:aa:6a:6e:4a:4c:28:7e:2c:a7:99: 7b:ab:f9:e3:a0:35:8e:31:4c:2f:76:04:5c:4b:cd: 8d:6e:6c:db:71:d0:61:7d:e4:46:80:0c:41:3f:cd: 60:2a:ad:6c:38:40:a9:cd:8a:e7:7f:08:b1:ee:b4: c5:4d:f0:9e:8e:50:66:c3:c7:c3:59:bb:28:60:ab: 02:6b:8b:ee:c6:23:5c:2b:92:b8:db:ea:5a:71:3a: 5c:8c:73:20:03:bc:18:96:7b:92:f5:79:2b:f2:11: 33:e8:95:18:5b:eb:d5:a7:18:79:5f:4c:db:51:b3: bc:35:e1:22:4c:7d:90:77:e1:5e:3d:95:f4:e4:1c: 80:c8:3f:6a:e1:21:37:b1:d2:bf:d8:f4:4f:89:36: ba:35:de:26:c8:bc:4c:72:f7:d2:b7:58:af:b8:37: 25:43:ee:32:cc:29:99:66:5b:fc:38:50:93:a0:33: 4e:d7:90:1b:cc:9d:75:74:c5:62:03:52:9e:71:29: 66:c2:b1:43:02:b7:79:67:c1:44:7e:58:e2:20:6e: 0f:7f:9e:f5:23:52:e6:b3:9e:c7:2b:ce:ba:ac:55: d9:b5:4d:78:3f:02:72:60:6a:dc:c0:64:4f:8e:b1: f6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7A:4D:B7:5F:AC:E1:B4:79:B5:F3:BC:5A:0D:CD:8F:A0:32:25:33 X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:41:01:fd:67:6a:91:9f:dd:3a:ad:1e:00:23:17:76:12:2c: b1:81:80:84:79:1e:7c:31:21:cc:57:1f:99:f0:df:d9:75:7e: 76:1f:54:c4:ae:fb:aa:17:2b:d8:a3:91:65:ca:73:83:7f:6a: 0c:a0:1d:7b:02:50:e6:f9:84:e9:6a:82:dc:f7:39:8e:fa:6b: 7c:9d:4b:4a:51:52:2e:a0:1a:4a:97:47:54:fc:d1:5d:ed:71: ec:3a:cc:aa:03:a9:ca:0a:cd:f9:ff:92:02:27:0c:42:c9:84: 52:42:29:9c:c5:a3:6c:bd:a7:30:53:03:c3:c5:5c:a8:16:68: 12:87:c7:9d:14:02:7d:47:b5:aa:d2:e9:d5:f0:fb:3d:e8:8d: 2c:51:94:48:15:96:75:ab:d5:04:8e:7e:75:70:47:75:f1:99: f0:68:87:41:ec:7c:78:e0:b6:fb:31:ff:43:cd:bf:50:aa:48: 35:7b:01:bf:a2:2c:18:5d:3e:f4:d0:14:b5:0e:34:9c:f4:6f: 89:a0:99:21:e3:67:df:77:0a:b1:56:a1:89:b4:e5:b5:40:01: 5e:2d:90:56:42:33:6c:66:0b:25:0f:90:da:aa:a1:c7:bc:f6: a0:87:4b:e9:be:78:c5:31:d4:2e:79:64:c8:3b:1f:73:ae:91: 6a:26:15:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjQxMTIyMjE0MTQxWhcNMjQxMTI5MjE0MTQxWjAYMRYwFAYD VQQDEw02NzQwZmE5NS1mNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAld3ZVXfQyuLK6dEv1zJF2X9RYKpqbkpMKH4sp5l7q/njoDWOMUwvdgRcS82N bmzbcdBhfeRGgAxBP81gKq1sOECpzYrnfwix7rTFTfCejlBmw8fDWbsoYKsCa4vu xiNcK5K42+pacTpcjHMgA7wYlnuS9Xkr8hEz6JUYW+vVpxh5X0zbUbO8NeEiTH2Q d+FePZX05ByAyD9q4SE3sdK/2PRPiTa6Nd4myLxMcvfSt1ivuDclQ+4yzCmZZlv8 OFCToDNO15AbzJ11dMViA1KecSlmwrFDArd5Z8FEfljiIG4Pf571I1Lms57HK866 rFXZtU14PwJyYGrcwGRPjrH2ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDB6Tbdf rOG0ebXzvFoNzY+gMiUzMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwQQH9Z2qRn906rR4AIxd2EiyxgYCEeR58MSHMVx+Z8N/ZdX52H1TE rvuqFyvYo5FlynODf2oMoB17AlDm+YTpaoLc9zmO+mt8nUtKUVIuoBpKl0dU/NFd 7XHsOsyqA6nKCs35/5ICJwxCyYRSQimcxaNsvacwUwPDxVyoFmgSh8edFAJ9R7Wq 0unV8Ps96I0sUZRIFZZ1q9UEjn51cEd18ZnwaIdB7Hx44Lb7Mf9Dzb9Qqkg1ewG/ oiwYXT700BS1DjSc9G+JoJkh42ffdwqxVqGJtOW1QAFeLZBWQjNsZgslD5DaqqHH vPagh0vpvnjFMdQueWTIOx9zrpFqJhVN -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org