$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft File: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json) Hash identifier: vOqnLcRiBDCXR5+AhA8TEM5UIQ3hBXtArWAc1G27fQc= Subject key identifier: 82:42:D6:02:68:04:3F:69:23:C6:8A:D5:F3:8F:FF:65:63:7D:96:21 Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft Manifest number: 0674 Signing time: Sun 24 Nov 2024 21:45:00 +0000 Manifest this update: Sun 24 Nov 2024 21:44:59 +0000 Manifest next update: Sun 01 Dec 2024 21:44:59 +0000 Files and hashes: 1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: pmpMMJFzxcRVHImdjkqpGYWOsrR1GyIv5L/gCC2Bs7A=) 2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: t1CpQ4L3GyTj4BVSlvWpp+W4Kme3xXKFI0Eh6kMBBD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: Nov 24 21:44:59 2024 GMT Not After : Dec 1 21:44:59 2024 GMT Subject: CN=67439e5b-d573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c6:ea:33:d8:5b:80:1d:7c:57:52:20:f1:06: 90:6e:9e:4f:26:95:4d:a8:0b:0e:f8:8e:5c:f3:6c: d8:04:97:44:18:55:a4:02:bc:d0:97:02:c1:58:4e: ce:bc:18:30:1c:01:3f:2a:00:fb:59:e3:f8:6d:9c: 9a:ac:90:7e:0e:a7:74:72:a1:64:cc:82:4e:e6:ab: 47:3e:18:68:5b:1d:50:ae:d9:12:29:a6:c5:15:f9: 1c:0c:6f:17:30:0c:98:09:ab:6f:01:59:4b:88:9e: 42:20:3b:6c:00:7d:5e:e3:62:4c:dc:99:2b:82:29: 6a:40:37:dc:aa:0b:93:c7:b9:ca:07:59:fe:54:1e: 90:b6:14:03:29:26:8d:c6:20:86:d8:cd:e6:2d:10: 93:86:79:35:a8:25:6e:68:c9:68:a8:8f:ec:47:42: 24:2f:0d:05:55:e2:1a:db:20:e3:f1:5b:88:b1:0c: a4:75:d1:42:a3:c7:cc:45:92:c2:30:73:39:7e:09: 3e:31:5b:8a:8d:4f:52:bd:63:f1:05:3f:17:08:d7: 83:5d:6a:28:89:f3:9b:fd:1b:47:70:f2:8f:2e:3d: 09:2e:33:ed:e2:11:43:c3:c9:97:f3:eb:ba:b8:5a: b6:50:50:0d:d5:26:64:7f:8e:bf:e1:77:45:f4:5e: 0d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:42:D6:02:68:04:3F:69:23:C6:8A:D5:F3:8F:FF:65:63:7D:96:21 X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c0:13:f2:cb:fe:95:65:24:8f:f6:15:c6:04:e7:f7:ba:d0: 95:d9:38:e7:ae:0a:a7:47:74:cf:c3:5d:ed:60:d9:e4:e3:5b: 83:c3:83:de:d4:f5:73:cb:e3:5f:ce:c9:a8:3a:11:33:6b:92: 86:11:04:36:14:ad:f0:bb:db:99:26:c8:68:64:f8:93:2b:43: ee:e5:98:f8:df:cf:b8:f7:6b:bd:6a:00:83:99:f7:83:b6:5e: ca:19:ec:7c:4f:26:b3:f3:ca:cc:69:df:5b:13:f7:a0:c8:89: 8c:ad:98:24:7f:58:db:89:a6:3b:7b:ba:69:b0:af:fa:47:93: 03:ec:d4:d7:a9:36:ff:2b:01:0e:4c:01:5b:bf:e1:82:63:03: 6e:92:90:a6:b7:ca:99:e4:eb:d6:9d:e7:2d:e5:11:19:72:c6: 58:ea:72:de:87:a6:be:51:16:33:36:27:aa:55:82:36:01:41: d8:a5:bc:a1:80:fa:05:46:0b:20:fd:56:d8:56:e8:f3:55:96: 1f:63:8e:41:be:a2:f6:70:8e:29:d2:51:b0:52:ee:61:8d:dc: 38:f2:80:4f:20:6a:60:6c:dd:06:fd:cb:6e:c0:e6:e7:73:5a: 63:3f:f7:7d:b0:da:2f:09:2f:0d:45:c3:56:ad:68:b7:42:9d: 9f:a0:b1:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjQxMTI0MjE0NDU5WhcNMjQxMjAxMjE0NDU5WjAYMRYwFAYD VQQDEw02NzQzOWU1Yi1kNTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8bqM9hbgB18V1Ig8QaQbp5PJpVNqAsO+I5c82zYBJdEGFWkArzQlwLBWE7O vBgwHAE/KgD7WeP4bZyarJB+Dqd0cqFkzIJO5qtHPhhoWx1QrtkSKabFFfkcDG8X MAyYCatvAVlLiJ5CIDtsAH1e42JM3JkrgilqQDfcqguTx7nKB1n+VB6QthQDKSaN xiCG2M3mLRCThnk1qCVuaMloqI/sR0IkLw0FVeIa2yDj8VuIsQykddFCo8fMRZLC MHM5fgk+MVuKjU9SvWPxBT8XCNeDXWooifOb/RtHcPKPLj0JLjPt4hFDw8mX8+u6 uFq2UFAN1SZkf46/4XdF9F4NwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJC1gJo BD9pI8aK1fOP/2VjfZYhMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MThBRi9ENzkyRjQ3NDU2QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZ dERfVlExaVRqZEh6R2hhUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnwBPyy/6VZSSP9hXGBOf3utCV2TjnrgqnR3TPw13tYNnk41uDw4Pe 1PVzy+NfzsmoOhEza5KGEQQ2FK3wu9uZJshoZPiTK0Pu5Zj438+492u9agCDmfeD tl7KGex8Tyaz88rMad9bE/egyImMrZgkf1jbiaY7e7ppsK/6R5MD7NTXqTb/KwEO TAFbv+GCYwNukpCmt8qZ5OvWnect5REZcsZY6nLeh6a+URYzNieqVYI2AUHYpbyh gPoFRgsg/VbYVujzVZYfY45BvqL2cI4p0lGwUu5hjdw48oBPIGpgbN0G/ctuwObn c1pjP/d9sNovCS8NRcNWrWi3Qp2foLGC -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org