$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft File: gja7zXAtSCL93VuwVmDPEDjsjH4.mft (raw, json) Hash identifier: PILNji37f7lDyFrNxUmbibND3UkoR0jiL5+XkFHlyJ0= Subject key identifier: 85:04:13:9D:BC:1D:6F:EC:56:43:04:30:77:5B:83:65:4E:AF:16:1E Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft Manifest number: 07CC Signing time: Fri 22 Nov 2024 20:42:25 +0000 Manifest this update: Fri 22 Nov 2024 20:42:24 +0000 Manifest next update: Fri 29 Nov 2024 20:42:24 +0000 Files and hashes: 1: gja7zXAtSCL93VuwVmDPEDjsjH4.crl (hash: 2Y2n0GIbRt2zyczccDlwT2v23574OfmkBbiL05lF/yg=) 2: 3ABFAC2231E211EFA341983CC4F9AE02.roa (hash: HLJ4E+O4+cyS3vrwMtki5z6A2KFnmKhIcHCO2Ezqz2E=) 3: 63B7CB76D0E511EA9916E053C4F9AE02.roa (hash: I3TylIitR1gs3qeVyLm/iGnBJAcsnmMydwLVLUYv63M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Nov 22 20:42:24 2024 GMT Not After : Nov 29 20:42:24 2024 GMT Subject: CN=6740ecb0-d458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0b:38:76:5d:38:bc:01:63:c6:73:45:9f:6a: ef:9c:dc:22:30:70:33:6e:6b:2b:e5:72:58:ba:cb: 2a:a5:1a:8a:4c:4e:d2:0a:b8:e0:5f:c0:05:64:df: 78:84:24:c6:e0:90:17:92:b9:b3:2b:37:a1:e8:9f: 53:f5:a8:25:22:8f:b8:9d:30:df:a4:f6:77:b9:86: 4f:20:99:ce:97:8a:d5:ab:38:a8:22:a9:99:cc:d4: e3:85:f9:0a:26:79:71:d1:27:8e:04:90:b7:e1:a9: 60:e6:ae:27:a3:98:02:ba:c2:8b:2a:16:29:62:ad: 2f:6d:ff:c1:b9:8b:ff:fb:f6:1d:07:35:3c:c8:0e: b9:b1:19:b2:c6:18:c2:6a:a6:85:c5:f7:0d:8c:d6: be:0c:87:0b:4e:d0:b8:7d:9a:97:a7:0c:4d:dc:82: ba:9d:50:20:af:e4:63:02:c3:a4:10:d7:61:43:b5: 4d:34:5d:be:aa:18:d3:93:72:82:85:cd:ba:72:bd: 99:70:15:b5:d8:96:40:bd:48:07:b3:3c:ae:c5:5f: 9a:a8:0a:cb:d2:b6:3d:63:f0:29:dd:53:17:07:a4: d5:b6:ac:31:a0:3e:2d:9b:44:dd:12:a7:25:19:35: bd:d2:85:96:2e:79:fc:91:4b:4e:83:74:3b:78:6a: 52:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:04:13:9D:BC:1D:6F:EC:56:43:04:30:77:5B:83:65:4E:AF:16:1E X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:2e:2f:b5:ad:80:59:0c:00:e4:33:a4:40:8d:12:b5:60:6b: be:40:92:a7:65:2e:48:01:8c:ab:56:51:20:cf:84:5f:82:da: 2e:6e:37:44:cb:d2:ef:11:1f:a3:aa:f9:85:03:27:ae:0b:6a: b5:28:4d:8f:1a:4f:df:9a:40:c9:75:7a:7d:60:09:a3:9e:20: 4b:d3:93:2c:1b:af:e6:7d:52:38:45:83:f4:3e:c1:fb:58:99: 3a:0f:2f:a2:08:4e:89:46:33:be:e2:6a:f8:63:d4:22:ce:1a: fb:8c:7a:4f:39:80:ba:73:36:b5:38:e9:e3:f6:5b:20:32:f4: 89:70:75:88:07:36:b0:09:d6:5c:b1:af:6f:bd:85:19:83:a1: e2:f3:9b:16:22:bd:bb:89:47:99:e1:cd:52:c0:91:ad:d4:50: 9e:66:2b:d7:d9:79:dd:37:ab:6a:3e:16:91:e5:e8:c8:84:9a: ea:66:ec:bd:2f:e6:71:c2:e0:23:43:00:50:ce:5f:7c:38:32: e9:18:5f:84:3d:59:d5:31:22:35:18:75:f8:9a:34:0a:dd:d4: 07:04:2e:43:f4:91:af:bc:a3:86:55:20:9a:8c:44:bc:40:e8: c9:5b:73:0c:56:6b:40:7a:bf:53:58:52:ec:d1:c9:99:02:00: fe:c0:1c:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjQxMTIyMjA0MjI0WhcNMjQxMTI5MjA0MjI0WjAYMRYwFAYD VQQDEw02NzQwZWNiMC1kNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAs4dl04vAFjxnNFn2rvnNwiMHAzbmsr5XJYussqpRqKTE7SCrjgX8AFZN94 hCTG4JAXkrmzKzeh6J9T9aglIo+4nTDfpPZ3uYZPIJnOl4rVqzioIqmZzNTjhfkK Jnlx0SeOBJC34alg5q4no5gCusKLKhYpYq0vbf/BuYv/+/YdBzU8yA65sRmyxhjC aqaFxfcNjNa+DIcLTtC4fZqXpwxN3IK6nVAgr+RjAsOkENdhQ7VNNF2+qhjTk3KC hc26cr2ZcBW12JZAvUgHszyuxV+aqArL0rY9Y/Ap3VMXB6TVtqwxoD4tm0TdEqcl GTW90oWWLnn8kUtOg3Q7eGpSbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUEE528 HW/sVkMEMHdbg2VOrxYeMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0Qi8yNEE2OEU5Q0QwRTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFND TDkzVnV3Vm1EUEVEanNqSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyLi+1rYBZDADkM6RAjRK1YGu+QJKnZS5IAYyrVlEgz4RfgtoubjdE y9LvER+jqvmFAyeuC2q1KE2PGk/fmkDJdXp9YAmjniBL05MsG6/mfVI4RYP0PsH7 WJk6Dy+iCE6JRjO+4mr4Y9Qizhr7jHpPOYC6cza1OOnj9lsgMvSJcHWIBzawCdZc sa9vvYUZg6Hi85sWIr27iUeZ4c1SwJGt1FCeZivX2XndN6tqPhaR5ejIhJrqZuy9 L+ZxwuAjQwBQzl98ODLpGF+EPVnVMSI1GHX4mjQK3dQHBC5D9JGvvKOGVSCajES8 QOjJW3MMVmtAer9TWFLs0cmZAgD+wByo -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org