$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: GZao64UHTlErrbxC7o7EeWJWpXMbaShznptbymFSlZg= Subject key identifier: C5:CE:A5:27:27:7A:A9:4B:7F:83:65:B1:C7:5A:06:7D:C8:23:80:B6 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0BFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0BEB Signing time: Fri 22 Nov 2024 18:28:44 +0000 Manifest this update: Fri 22 Nov 2024 18:28:44 +0000 Manifest next update: Fri 29 Nov 2024 18:28:44 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: ALHTaQlXWHMOIpLw+u/HJSTvJv07nAyCd3/xicOFKGE=) 2: 3D19A90810AD11ED9FFCFC56C4F9AE02.roa (hash: hqZNi8jb9PfIBZ40ivFfM9w6K9/28vEma8/dZXwTKh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3067 (0xbfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Nov 22 18:28:44 2024 GMT Not After : Nov 29 18:28:44 2024 GMT Subject: CN=6740cd5c-c118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:54:5d:79:27:0a:14:fe:09:b6:26:fc:4c: 44:36:b9:3f:62:fb:bf:f4:69:56:e9:25:31:b4:15: 8f:51:9e:0c:1f:01:35:31:fe:9b:69:72:ca:69:4f: b5:52:2d:c5:7a:51:cb:6c:0e:01:88:c8:f4:64:6f: cc:d9:09:a8:8b:73:a7:bc:59:a5:84:38:f4:af:a5: 71:49:59:11:1c:88:7d:a5:56:fe:7f:56:65:c8:4a: b4:98:7e:6c:17:73:6d:1a:5d:f0:b1:04:e1:2a:9d: 1f:4d:92:a4:45:44:25:02:a7:d8:e3:f9:ed:c7:fd: 87:cd:c0:4d:cd:3f:42:69:bf:c8:3c:2e:1b:81:a3: 53:e2:ed:da:9e:cd:74:b4:ee:6d:51:88:b7:3d:f2: e5:4a:fd:2b:37:c8:60:47:e3:6b:df:db:70:f7:bb: fd:8b:89:4d:64:be:19:6e:7f:3a:a7:48:f4:a6:dc: ce:75:46:4f:ff:89:33:62:b9:01:26:0d:59:5e:da: 20:0d:b1:48:fe:90:14:d0:42:03:e4:b5:88:56:79: 54:b3:96:60:ff:a8:7f:d4:d9:f7:19:26:65:96:0f: 88:da:4a:6a:97:06:ee:8c:ed:c1:13:73:ec:17:40: 71:d3:dd:73:39:9b:2e:89:ad:10:44:20:68:c2:43: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:A5:27:27:7A:A9:4B:7F:83:65:B1:C7:5A:06:7D:C8:23:80:B6 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:aa:1c:d5:13:5f:62:dc:2b:3f:ce:fd:53:71:a8:70:29:f7: e6:71:f2:bc:5d:09:24:76:46:2c:ea:29:64:41:8d:7e:f1:d5: ab:d9:e7:c4:bc:b0:9d:fc:f9:34:47:be:ce:26:fb:ad:89:94: 68:84:0f:4e:94:d2:73:42:5c:06:e8:d6:cd:40:7f:fd:22:1a: b2:30:bb:18:86:53:78:73:5e:6c:91:36:84:4a:dc:9b:03:34: d2:5e:53:58:35:f7:8d:4c:a9:e3:df:06:7e:1b:43:f1:22:86: 07:70:1a:35:28:12:2b:52:4b:ca:a3:f9:c6:d2:3e:57:e9:2e: 69:64:bf:8d:0b:93:ac:af:77:7e:54:76:2a:14:e8:4c:58:4d: 2a:89:47:b1:4b:4b:19:e7:a1:68:c6:d5:1b:7c:c2:ed:b1:bc: f6:fa:83:90:38:4f:18:2d:17:72:0d:51:e9:ca:e4:94:a2:d4: ff:67:9d:97:14:5e:cf:42:63:41:01:5f:02:da:a7:92:b7:0c: 25:17:b1:44:b1:ca:5a:76:6d:a3:0c:88:e7:fe:37:bf:34:88: ae:d1:70:f6:09:b0:5a:5d:b3:93:50:71:77:23:09:82:ff:05: dc:ff:b6:63:c2:b3:12:d9:52:62:37:e4:3e:08:56:00:59:2f: 99:96:14:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjQxMTIyMTgyODQ0WhcNMjQxMTI5MTgyODQ0WjAYMRYwFAYD VQQDEw02NzQwY2Q1Yy1jMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4A9UXXknChT+CbYm/ExENrk/Yvu/9GlW6SUxtBWPUZ4MHwE1Mf6baXLKaU+1 Ui3FelHLbA4BiMj0ZG/M2Qmoi3OnvFmlhDj0r6VxSVkRHIh9pVb+f1ZlyEq0mH5s F3NtGl3wsQThKp0fTZKkRUQlAqfY4/ntx/2HzcBNzT9Cab/IPC4bgaNT4u3ans10 tO5tUYi3PfLlSv0rN8hgR+Nr39tw97v9i4lNZL4Zbn86p0j0ptzOdUZP/4kzYrkB Jg1ZXtogDbFI/pAU0EID5LWIVnlUs5Zg/6h/1Nn3GSZllg+I2kpqlwbujO3BE3Ps F0Bx091zOZsuia0QRCBowkNr0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXOpScn eqlLf4NlscdaBn3II4C2MB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaqhzVE19i3Cs/zv1TcahwKffmcfK8XQkkdkYs6ilkQY1+8dWr2efE vLCd/Pk0R77OJvutiZRohA9OlNJzQlwG6NbNQH/9IhqyMLsYhlN4c15skTaEStyb AzTSXlNYNfeNTKnj3wZ+G0PxIoYHcBo1KBIrUkvKo/nG0j5X6S5pZL+NC5Osr3d+ VHYqFOhMWE0qiUexS0sZ56FoxtUbfMLtsbz2+oOQOE8YLRdyDVHpyuSUotT/Z52X FF7PQmNBAV8C2qeStwwlF7FEscpadm2jDIjn/je/NIiu0XD2CbBaXbOTUHF3IwmC /wXc/7ZjwrMS2VJiN+Q+CFYAWS+ZlhR+ -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org