$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: luD3meVgTZpo++W0i1gm8IrsUPG36O11uRaV7KoqXzw= Subject key identifier: D2:46:E1:C7:11:30:27:71:2E:33:AF:49:DB:49:BF:88:68:08:3E:17 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 19 Signing time: Thu 21 Nov 2024 06:00:47 +0000 Manifest this update: Thu 21 Nov 2024 06:00:47 +0000 Manifest next update: Thu 28 Nov 2024 06:00:47 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: wGJ3Ni3nD6byU3BmFUBgTQRFoV1WNTBtWnBd7w4MwPY=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: Yh+9ZtLGM0yeId0yqsUGDk1PUuIX4Mo5I7LLnDotARk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Nov 21 06:00:47 2024 GMT Not After : Nov 28 06:00:47 2024 GMT Subject: CN=673ecc8f-74f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0b:d4:11:66:ff:00:8d:58:e0:ca:40:8c:3e: b6:d5:2f:b4:93:6d:8e:6e:cd:97:c6:94:9e:e6:4b: 18:34:aa:b8:94:fe:77:55:b7:c6:06:4c:1d:55:a3: 6c:90:f5:13:c9:a1:0c:a5:66:71:3a:66:16:fe:e5: 16:cb:ed:4e:51:67:cf:5e:9e:4f:74:18:36:ef:f0: eb:49:c8:fe:c3:8e:21:25:6b:5d:c6:26:6c:6b:81: a2:9f:92:f4:ec:e6:83:0b:a1:fc:e9:db:9c:ff:ac: bd:a1:15:40:86:01:14:2a:3c:98:a7:8d:59:3d:28: e5:d0:af:84:a1:c8:3d:88:8c:47:06:2f:63:a4:5e: 1b:02:a7:a5:da:f6:54:5f:3b:aa:9c:32:b4:18:d1: 78:05:84:c9:35:8a:43:e9:52:8a:ae:96:00:b2:ab: e4:d0:41:13:66:42:f9:f8:8a:f9:8a:35:11:88:5f: f0:4e:3a:15:85:9f:e6:10:a2:3d:7f:8b:22:bf:bb: 13:58:ce:18:4b:04:86:d3:27:83:fd:db:2d:ec:88: 71:70:a1:28:45:e7:90:3f:2b:5b:36:49:10:fd:ab: 63:06:19:3a:2f:f7:6e:29:5b:7d:55:2c:b0:5f:6c: 6b:10:3b:ee:5d:1e:23:a9:87:71:56:5b:68:e9:d7: 9c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:46:E1:C7:11:30:27:71:2E:33:AF:49:DB:49:BF:88:68:08:3E:17 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:31:d9:c7:96:57:5c:06:ba:a4:0a:cd:25:ff:ea:4e:f4:b0: e5:06:c0:79:3f:20:02:23:01:c3:6b:73:cf:33:e5:f1:d7:9e: 34:74:41:86:89:7c:75:30:61:ec:73:91:c4:74:c0:fa:00:86: c0:67:12:ab:4d:ab:b0:ca:7c:38:a3:eb:a4:cf:2f:3d:c3:a3: a8:e4:32:cb:79:b2:08:fa:bf:57:bb:6b:5f:5a:ac:39:15:a4: a4:05:ee:ad:a7:6f:d5:cf:35:44:99:b3:df:61:dd:dd:af:fc: 86:12:5a:52:38:92:81:64:33:92:d3:1f:70:17:55:85:8c:24: d3:c3:a9:b5:46:c5:7a:e0:07:89:28:ad:6c:be:ab:62:96:cd: 93:c6:be:0a:6f:f5:b4:0a:dd:9c:31:71:bf:a2:b8:0a:e9:ad: c1:ab:22:06:8a:04:6a:64:91:e9:68:8e:29:9d:8e:56:73:26: ed:e8:0a:9d:59:e2:70:be:b9:33:2e:3b:1a:0b:2d:33:34:53: 1a:08:09:b1:22:77:65:a4:c9:5b:df:d5:9f:8c:04:3e:17:f9: 6b:24:eb:c6:36:36:f3:40:c1:ff:dd:59:87:94:d5:72:15:87: f0:9e:da:8a:75:35:86:cd:f0:a3:e0:4d:8f:74:36:bb:fe:21: 15:4e:2a:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNDExMjEwNjAwNDdaFw0yNDExMjgwNjAwNDdaMBgxFjAUBgNV BAMTDTY3M2VjYzhmLTc0ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcC9QRZv8AjVjgykCMPrbVL7STbY5uzZfGlJ7mSxg0qriU/ndVt8YGTB1Vo2yQ 9RPJoQylZnE6Zhb+5RbL7U5RZ89enk90GDbv8OtJyP7DjiEla13GJmxrgaKfkvTs 5oMLofzp25z/rL2hFUCGARQqPJinjVk9KOXQr4ShyD2IjEcGL2OkXhsCp6Xa9lRf O6qcMrQY0XgFhMk1ikPpUoqulgCyq+TQQRNmQvn4ivmKNRGIX/BOOhWFn+YQoj1/ iyK/uxNYzhhLBIbTJ4P92y3siHFwoShF55A/K1s2SRD9q2MGGTov924pW31VLLBf bGsQO+5dHiOph3FWW2jp15wDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0kbhxxEw J3EuM69J20m/iGgIPhcwHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19H SkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEox2ceWV1wGuqQKzSX/6k70sOUGwHk/IAIjAcNrc88z5fHXnjR0QYaJ fHUwYexzkcR0wPoAhsBnEqtNq7DKfDij66TPLz3Do6jkMst5sgj6v1e7a19arDkV pKQF7q2nb9XPNUSZs99h3d2v/IYSWlI4koFkM5LTH3AXVYWMJNPDqbVGxXrgB4ko rWy+q2KWzZPGvgpv9bQK3Zwxcb+iuArprcGrIgaKBGpkkelojimdjlZzJu3oCp1Z 4nC+uTMuOxoLLTM0UxoICbEid2WkyVvf1Z+MBD4X+Wsk68Y2NvNAwf/dWYeU1XIV h/Ce2op1NYbN8KPgTY90Nrv+IRVOKoY= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org