$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft File: GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json) Hash identifier: g8i/FA8XOPoZMcVJa//1y6KxwFcFTG8MqmS/SOs2xm0= Subject key identifier: EF:06:B4:53:F2:24:04:78:01:9D:21:1B:2A:60:A4:53:A1:A4:4F:41 Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft Manifest number: 02F2 Signing time: Sat 23 Nov 2024 00:50:15 +0000 Manifest this update: Sat 23 Nov 2024 00:50:14 +0000 Manifest next update: Sat 30 Nov 2024 00:50:14 +0000 Files and hashes: 1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: py0YtEj2AZ461BD+uV0BDK7YLE1/AvS6upnVpUUEazs=) 2: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: bwcKq1c0r2cXBrd25MLQlHFjWgMS2hGGf/FnvA7qj34=) 3: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: M4NylbqODaGIV7jb3azGtcDcoPjVhzDh1zfYrf7L1aE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Validity Not Before: Nov 23 00:50:14 2024 GMT Not After : Nov 30 00:50:14 2024 GMT Subject: CN=674126c7-dd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e3:68:3c:c8:06:b0:5b:4b:4c:7f:1f:2a:ca: be:74:e4:71:57:4c:2d:b9:f8:11:fe:39:0f:a6:63: be:33:5c:a7:dc:34:1d:51:1f:7c:cb:df:0a:dd:5c: f9:19:ee:ba:d9:a2:7e:df:0f:d0:de:c8:de:f1:06: b9:1e:29:ba:64:e9:95:5b:9f:ec:ce:c0:6c:dc:a9: f9:72:c3:1c:59:f1:6e:d3:2a:36:c9:34:85:7e:e4: 20:7a:81:eb:72:c1:f2:3c:70:04:38:36:0d:14:bd: db:8c:74:05:d2:9c:6b:c0:d5:9a:bd:d1:15:9b:ca: d7:ea:99:ab:a5:e6:68:9c:48:10:1e:f9:b0:e6:70: b3:27:2b:82:b8:d9:26:31:ee:24:19:38:a3:33:ff: f2:b4:2c:fd:97:0b:3e:ea:80:3f:79:27:a5:45:46: 98:21:f5:b2:da:69:1d:e8:ee:a6:3d:94:95:47:f8: 38:df:09:ac:f9:aa:32:09:d7:d5:1e:8b:68:f4:d0: 59:01:b4:54:4f:19:01:b4:55:29:a5:2a:10:7d:90: 29:ec:39:a2:76:40:30:f0:d3:8d:34:47:ad:c8:77: fe:f7:57:42:6f:bf:b7:4d:8c:25:ff:ab:9d:e5:7c: 7b:24:76:06:a0:50:3d:70:57:0f:ef:f5:65:b0:15: a3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:06:B4:53:F2:24:04:78:01:9D:21:1B:2A:60:A4:53:A1:A4:4F:41 X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:5b:2c:24:63:5e:e4:0a:df:9f:e9:64:d4:d6:e6:a9:f4:a0: e5:9a:dc:3a:a1:d4:eb:f9:e2:de:8c:17:bd:88:b7:a4:4e:dc: 52:91:f6:52:99:9f:a2:e1:01:78:1e:85:60:eb:28:97:ec:b7: 21:7a:91:fc:c7:2f:2a:5a:7c:be:7b:01:44:c6:42:a9:a1:88: 03:e3:40:ff:5f:a0:6f:a6:13:5d:49:ba:00:3c:16:49:cf:8e: 99:84:07:23:93:1b:49:4c:75:be:3c:4d:54:a3:a8:6f:1a:1f: 4a:82:1f:13:28:71:c2:b1:b8:8d:73:93:03:14:9b:5d:01:c9: 3c:0e:53:f2:d8:14:f3:ff:60:cf:e4:1d:ed:ce:c6:b0:56:c2: 67:a0:cd:85:60:1d:2a:a4:c6:bd:22:17:47:27:da:70:be:4d: 1a:0c:c0:81:28:72:50:35:77:6a:11:19:a9:e3:52:c2:ef:6d: d0:a9:18:eb:ab:a2:ae:38:b9:81:98:ee:c6:ea:23:d7:57:5d: 0e:43:01:1c:01:ab:2f:17:d0:32:3d:db:8e:9c:7f:d1:8a:46: fa:e5:68:8b:15:3b:98:e0:d4:53:96:d3:55:d4:05:dc:72:be: 04:fb:ba:30:f7:af:f9:52:bb:05:a2:e6:da:b0:78:7a:04:3c: b2:9c:1a:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjQxMTIzMDA1MDE0WhcNMjQxMTMwMDA1MDE0WjAYMRYwFAYD VQQDEw02NzQxMjZjNy1kZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuNoPMgGsFtLTH8fKsq+dORxV0wtufgR/jkPpmO+M1yn3DQdUR98y98K3Vz5 Ge662aJ+3w/Q3sje8Qa5Him6ZOmVW5/szsBs3Kn5csMcWfFu0yo2yTSFfuQgeoHr csHyPHAEODYNFL3bjHQF0pxrwNWavdEVm8rX6pmrpeZonEgQHvmw5nCzJyuCuNkm Me4kGTijM//ytCz9lws+6oA/eSelRUaYIfWy2mkd6O6mPZSVR/g43wms+aoyCdfV Hoto9NBZAbRUTxkBtFUppSoQfZAp7DmidkAw8NONNEetyHf+91dCb7+3TYwl/6ud 5Xx7JHYGoFA9cFcP7/VlsBWjSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8GtFPy JAR4AZ0hGypgpFOhpE9BMB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjU1RC80MEU0M0I4MEI3QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hm X0lBUGdQOHBhNnNhMDNGT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1WywkY17kCt+f6WTU1uap9KDlmtw6odTr+eLejBe9iLekTtxSkfZS mZ+i4QF4HoVg6yiX7LchepH8xy8qWny+ewFExkKpoYgD40D/X6BvphNdSboAPBZJ z46ZhAcjkxtJTHW+PE1Uo6hvGh9Kgh8TKHHCsbiNc5MDFJtdAck8DlPy2BTz/2DP 5B3tzsawVsJnoM2FYB0qpMa9IhdHJ9pwvk0aDMCBKHJQNXdqERmp41LC723QqRjr q6KuOLmBmO7G6iPXV10OQwEcAasvF9AyPduOnH/Rikb65WiLFTuY4NRTltNV1AXc cr4E+7ow96/5UrsFoubasHh6BDyynBpe -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org