$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: 9RXeh/rTnoIi24RwR6v7jC9WVMqJ2y4yNbuj/52bhys= Subject key identifier: 41:FA:8E:7B:EB:59:21:B3:7F:DE:69:EE:89:56:49:5F:BF:6D:BB:2C Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 0328 Signing time: Thu 21 Nov 2024 00:42:42 +0000 Manifest this update: Thu 21 Nov 2024 00:42:42 +0000 Manifest next update: Thu 28 Nov 2024 00:42:41 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: TkHqnDh3v5qTzV8ml5f6BD4vw6hkUVuGEVmMd2sJmPc=) 2: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: 066MiC7m2yWcRm0snJWwWTgqv84DeerHg51vseK6fxg=) 3: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: hKelCQKTkm1p+eKNBmnMODuFaGiG9imTLxYzwJCOCio=) 4: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: BaABEEJUMzOwQ3XJ4WXo+v7cM/zbzd2LSNgZ3M14nRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Nov 21 00:42:42 2024 GMT Not After : Nov 28 00:42:41 2024 GMT Subject: CN=673e8202-7ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:78:c3:ff:53:2e:5c:6c:4d:45:0c:58:bc:f7: 11:c0:4c:1b:f4:40:ee:8a:50:d4:42:a4:e6:a7:48: cb:32:6a:3f:71:6d:09:8d:90:2d:d3:7a:d4:97:ce: 10:49:fd:f2:28:f3:55:fc:de:0e:08:52:12:fa:67: 69:a6:59:9e:ce:ab:22:01:b9:2a:67:26:c4:b0:24: 39:4a:be:a8:8b:8d:bd:82:6d:cd:05:7a:57:e6:01: 6c:53:9e:ba:6e:35:15:4a:44:91:26:6a:2b:88:d9: 54:a4:02:d6:aa:13:50:f0:10:c7:89:d8:87:06:48: 92:43:d7:c2:8d:e2:90:d6:98:10:b6:f9:b8:0d:b5: 3f:ee:59:e6:ea:eb:54:32:ba:7b:e4:b8:46:6d:93: 59:3a:92:50:0f:34:55:cd:ba:d9:80:bd:14:96:1d: 42:6b:29:f3:e9:96:f0:63:21:c5:30:89:28:da:0b: d5:55:d8:10:7f:3b:cf:3e:0f:2d:e5:c2:3c:0d:e7: 7d:7b:d0:95:04:7c:43:d2:0f:4a:06:1e:70:04:29: ad:87:19:af:b0:76:27:6f:41:fd:b9:6b:e0:a2:fe: e8:69:8c:43:bb:a0:21:19:c0:ae:d4:95:4e:ef:6b: d8:e3:1d:a0:71:2c:7b:34:2a:a4:03:b3:c8:e0:e8: 7c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FA:8E:7B:EB:59:21:B3:7F:DE:69:EE:89:56:49:5F:BF:6D:BB:2C X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:55:f8:ca:75:91:5e:2e:a1:06:6e:15:bf:4c:75:d7:a9:bb: 49:91:34:41:ae:4f:b0:6a:50:17:9d:0f:ba:80:63:f4:2b:62: e4:7a:4a:a7:57:c6:66:ce:3d:28:9e:42:5e:f2:55:f6:54:31: 78:be:94:da:0a:b0:94:38:a6:56:ba:11:55:3e:11:13:a8:39: b1:4c:64:ff:3f:f3:5a:29:40:2b:93:64:ba:d2:c2:43:26:97: 32:ec:f7:09:9a:28:fa:f6:74:a9:6c:0f:ab:e9:52:1a:41:9c: d2:af:c9:2f:01:31:7f:9f:92:5e:4a:82:a9:dd:dc:52:e8:4e: 00:80:99:27:0b:f9:70:90:88:dc:ad:c9:59:1b:e3:2e:da:bb: 15:39:b4:7c:03:95:22:6a:59:9f:8a:c6:f7:e4:01:db:b2:12: 05:bf:11:fa:11:a0:b2:26:91:5e:d4:2a:60:27:5e:f8:96:41: 02:b3:ef:a7:ec:42:1f:11:04:c4:cf:aa:66:c7:e9:91:8f:52: 37:cb:6b:00:15:2a:82:84:c4:c6:86:7b:91:f4:12:5a:59:d4: 1f:29:1c:83:54:e1:89:39:ad:bb:d7:16:d9:d4:a9:33:62:83: 9a:6e:b7:a6:54:1e:37:25:c5:01:f8:f7:b6:60:eb:00:ce:2b: 92:14:55:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjQxMTIxMDA0MjQyWhcNMjQxMTI4MDA0MjQxWjAYMRYwFAYD VQQDEw02NzNlODIwMi03Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonjD/1MuXGxNRQxYvPcRwEwb9EDuilDUQqTmp0jLMmo/cW0JjZAt03rUl84Q Sf3yKPNV/N4OCFIS+mdpplmezqsiAbkqZybEsCQ5Sr6oi429gm3NBXpX5gFsU566 bjUVSkSRJmoriNlUpALWqhNQ8BDHidiHBkiSQ9fCjeKQ1pgQtvm4DbU/7lnm6utU Mrp75LhGbZNZOpJQDzRVzbrZgL0Ulh1Caynz6ZbwYyHFMIko2gvVVdgQfzvPPg8t 5cI8Ded9e9CVBHxD0g9KBh5wBCmthxmvsHYnb0H9uWvgov7oaYxDu6AhGcCu1JVO 72vY4x2gcSx7NCqkA7PI4Oh8UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEH6jnvr WSGzf95p7olWSV+/bbssMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfVfjKdZFeLqEGbhW/THXXqbtJkTRBrk+walAXnQ+6gGP0K2Lkekqn V8Zmzj0onkJe8lX2VDF4vpTaCrCUOKZWuhFVPhETqDmxTGT/P/NaKUArk2S60sJD Jpcy7PcJmij69nSpbA+r6VIaQZzSr8kvATF/n5JeSoKp3dxS6E4AgJknC/lwkIjc rclZG+Mu2rsVObR8A5Uialmfisb35AHbshIFvxH6EaCyJpFe1CpgJ174lkECs++n 7EIfEQTEz6pmx+mRj1I3y2sAFSqChMTGhnuR9BJaWdQfKRyDVOGJOa271xbZ1Kkz YoOabremVB43JcUB+Pe2YOsAziuSFFUE -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org