$ rpki-client -vvf rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft File: grMfodzgxL8vZjl3hqbAjkfGuP4.mft (raw, json) Hash identifier: 9lNLIG8WdL9DN4WzCOTeCmHuUjkmduUiKc0ESW4sF/U= Subject key identifier: D9:A3:68:5A:AA:BE:7D:11:8A:B9:5D:90:64:5F:39:32:95:77:87:63 Authority key identifier: 82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE Certificate issuer: /CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft Manifest number: 04C3 Signing time: Fri 22 Nov 2024 23:24:10 +0000 Manifest this update: Fri 22 Nov 2024 23:24:09 +0000 Manifest next update: Fri 29 Nov 2024 23:24:09 +0000 Files and hashes: 1: grMfodzgxL8vZjl3hqbAjkfGuP4.crl (hash: vkdUwXXh2ZzHD41+jxfbVCOsT/QM3n0/BUWL0P4zSeI=) 2: F7307C08FFCA11EB93268E6DC4F9AE02.roa (hash: bQFmQGHXUQ7x87MmTGs+0s+NObqkgDsk8Nc02TDmNdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Validity Not Before: Nov 22 23:24:09 2024 GMT Not After : Nov 29 23:24:09 2024 GMT Subject: CN=67411299-0496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:8b:b0:4a:01:58:2c:ab:e0:06:62:b2:7f: e4:6c:e6:2f:c9:8a:39:6d:22:81:6c:b6:55:4f:06: 21:22:f7:a8:5e:93:22:6b:61:18:b6:ec:7a:39:00: 55:32:ea:65:c2:fa:1d:dc:4e:f1:85:09:63:f7:16: ff:0f:e5:e1:9f:67:02:54:48:1f:43:05:8a:83:1a: d5:d1:4e:04:d2:fa:09:43:a3:1e:72:0d:93:1d:21: 0b:7d:8d:19:26:29:1a:a4:dd:5c:01:de:30:e7:6d: c1:aa:3d:91:e6:27:2c:c6:05:e2:6d:30:4a:7a:61: 7a:f5:a4:7d:7c:57:c6:b5:03:d9:a7:3f:3a:bb:6e: 0d:79:88:ea:9a:d9:b7:4c:9e:c6:39:c4:32:b6:31: e2:8d:92:49:35:b1:6d:47:8b:e7:37:f4:6a:ae:4a: e6:79:2e:fc:0c:88:1d:41:03:4f:ed:dc:25:35:5b: be:ed:a2:a0:1d:fd:f7:99:28:e6:be:9f:a1:f3:a0: b2:5c:ef:35:7c:e8:a6:4a:fa:c1:df:7c:70:08:f6: 94:e2:90:a2:55:63:c6:22:b3:25:27:ad:e6:d6:68: bd:7b:9e:0b:aa:f2:c0:de:0f:50:b7:39:b8:05:b8: e1:1d:93:7f:5e:a7:6e:02:33:a3:76:85:c4:1d:f2: 54:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A3:68:5A:AA:BE:7D:11:8A:B9:5D:90:64:5F:39:32:95:77:87:63 X509v3 Authority Key Identifier: keyid:82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:45:15:a1:cd:76:51:b8:63:3b:2e:cf:5d:85:dd:b5:c7:5c: 4e:95:bd:cd:21:35:45:22:e8:13:0a:c5:31:cf:9f:c8:32:8e: 86:c8:4f:13:57:1b:04:ba:e0:f6:6c:65:00:15:00:b5:0c:cc: b6:26:04:66:3a:b4:03:dc:65:a3:37:7e:75:47:f9:24:c9:02: 58:42:5e:91:cc:d7:7e:6f:98:ad:50:97:27:c6:d3:fe:87:e0: 94:e1:01:aa:67:27:0f:56:45:71:3f:5d:93:81:4d:ff:38:31: 4d:2f:a4:fb:34:88:03:1d:f9:20:b5:c4:93:b2:b2:0e:d4:88: 6f:06:70:db:f8:b3:c8:5e:69:b3:65:bf:97:ce:71:eb:d0:67: 9e:8e:69:c7:29:0e:a4:21:15:d0:28:ef:9b:e1:45:fa:91:e1: 29:14:75:18:c6:10:02:4f:a3:0d:64:ad:63:6c:9c:d8:67:7f: 95:ca:2e:43:a1:ec:78:7b:bb:f0:e0:23:12:90:f6:43:44:5d: bc:9b:a6:7b:cb:56:9a:0b:ad:cb:8c:c9:e1:99:b3:f5:5a:91: 95:f3:67:a6:4e:a0:3a:99:0a:0b:58:28:aa:28:86:a1:41:d5: 68:38:99:98:35:a3:69:8c:96:e0:47:31:e7:29:3c:84:27:94: 6d:de:4f:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk0RjcxMTAvBgNVBAUTKDgyQjMxRkExRENFMEM0QkYyRjY2Mzk3Nzg2QTZDMDhF NDdDNkI4RkUwHhcNMjQxMTIyMjMyNDA5WhcNMjQxMTI5MjMyNDA5WjAYMRYwFAYD VQQDEw02NzQxMTI5OS0wNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxceLsEoBWCyr4AZisn/kbOYvyYo5bSKBbLZVTwYhIveoXpMia2EYtux6OQBV Muplwvod3E7xhQlj9xb/D+Xhn2cCVEgfQwWKgxrV0U4E0voJQ6Mecg2THSELfY0Z JikapN1cAd4w523Bqj2R5icsxgXibTBKemF69aR9fFfGtQPZpz86u24NeYjqmtm3 TJ7GOcQytjHijZJJNbFtR4vnN/RqrkrmeS78DIgdQQNP7dwlNVu+7aKgHf33mSjm vp+h86CyXO81fOimSvrB33xwCPaU4pCiVWPGIrMlJ63m1mi9e54LqvLA3g9Qtzm4 BbjhHZN/XqduAjOjdoXEHfJUbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmjaFqq vn0RirldkGRfOTKVd4djMB8GA1UdIwQYMBaAFIKzH6Hc4MS/L2Y5d4amwI5Hxrj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTRGNy81OUZGMDVBQUZG QzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hMOHZaamwzaHFiQWprZkd1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyTWZvZHpneEw4dlpqbDNocWJBamtmR3VQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTRGNy81OUZGMDVBQUZGQzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hM OHZaamwzaHFiQWprZkd1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfRRWhzXZRuGM7Ls9dhd21x1xOlb3NITVFIugTCsUxz5/IMo6GyE8T VxsEuuD2bGUAFQC1DMy2JgRmOrQD3GWjN351R/kkyQJYQl6RzNd+b5itUJcnxtP+ h+CU4QGqZycPVkVxP12TgU3/ODFNL6T7NIgDHfkgtcSTsrIO1IhvBnDb+LPIXmmz Zb+XznHr0GeejmnHKQ6kIRXQKO+b4UX6keEpFHUYxhACT6MNZK1jbJzYZ3+Vyi5D oex4e7vw4CMSkPZDRF28m6Z7y1aaC63LjMnhmbP1WpGV82emTqA6mQoLWCiqKIah QdVoOJmYNaNpjJbgRzHnKTyEJ5Rt3k9q -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org