$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: tGX0Yd78tOuoZdKQ2EfcXPb/mTQte8Jxw/gbEoxkduE= Subject key identifier: CF:80:54:2B:D0:39:C1:08:28:A3:B6:53:C3:76:C8:2C:71:64:53:0F Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 020D Signing time: Sat 23 Nov 2024 01:33:34 +0000 Manifest this update: Sat 23 Nov 2024 01:33:33 +0000 Manifest next update: Sat 30 Nov 2024 01:33:33 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: BWNE5PKNZDmozHtCv5+DmsBqjpCo2YkV9pzCJ/iWJOc=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: /RoBHSg+ngqFh2UJ3g0lpB7Yit0McfV7uuriZB6CNaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Nov 23 01:33:33 2024 GMT Not After : Nov 30 01:33:33 2024 GMT Subject: CN=674130ee-93b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:38:a2:b2:fd:0f:8c:5b:eb:eb:0e:2b:be: 78:16:9b:35:fd:8d:72:92:ff:a1:ca:6b:4f:55:9f: 7a:b4:2d:ce:36:88:0d:ca:f0:f7:f2:3c:e7:04:f1: e4:83:f1:60:d4:f8:0c:37:3a:44:33:41:a1:15:3c: 81:85:05:a7:21:28:e3:da:81:c7:5c:69:ed:ba:ae: 14:97:26:2c:c6:ee:c3:97:25:2c:2d:5a:e5:76:95: 56:76:69:78:32:46:f2:cc:5c:64:9e:a0:04:2e:7c: ab:a6:26:98:ad:38:42:f5:54:2c:d6:07:12:09:28: a8:06:61:bd:3d:87:85:99:90:b1:de:88:5e:79:9d: 9b:23:94:1e:9d:2e:ef:42:ee:a8:e9:98:41:c4:e4: 47:65:64:84:8a:97:ae:53:25:0c:05:d1:52:76:53: a2:81:36:03:c3:30:bc:d5:29:4f:2a:fe:45:a5:1b: 31:38:5e:a0:55:85:ac:e7:84:8e:25:85:50:56:7e: 45:99:2d:25:88:df:64:5f:79:88:56:0f:f6:39:dd: d7:23:8c:7c:41:4b:7a:1e:71:2a:ba:c3:02:3f:b5: f5:4b:5d:54:4a:68:f4:59:f9:19:d0:40:5b:0b:e6: be:cf:b7:00:40:bc:cc:3a:bb:8e:26:fc:17:f5:47: 69:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:80:54:2B:D0:39:C1:08:28:A3:B6:53:C3:76:C8:2C:71:64:53:0F X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:67:65:81:36:ab:49:b9:6c:15:fb:a8:c8:f7:b4:27:f7:5b: 96:15:a7:89:94:fc:ce:1f:ac:eb:26:a2:01:ad:6b:ab:c9:be: 46:cb:d7:e8:16:01:74:77:71:99:cd:a7:76:26:27:f5:0d:e1: aa:d1:e3:ec:44:ef:33:97:bd:52:52:b6:d5:3d:bd:01:22:2d: d8:5b:ce:4f:20:96:69:69:9d:a6:46:c9:3c:a5:bd:74:31:3e: fb:40:78:14:f5:65:d6:7c:f3:44:72:70:c0:57:01:0e:00:09: e1:a6:87:2e:53:70:8d:63:59:0c:f5:a0:98:6b:a5:ea:5b:7b: e1:c7:b6:df:8f:35:a2:d4:77:22:85:bb:9d:18:7b:91:e3:e1: a8:c7:1b:84:ec:95:1e:6e:f1:f7:d7:a5:62:20:db:7f:95:9f: 67:1a:cd:bd:f4:1d:57:1b:29:eb:60:5f:58:0f:55:9a:9c:d4: 99:f9:20:70:71:12:53:c6:f9:50:d6:08:f5:18:bd:66:90:59: 4c:d4:c7:f6:07:c5:48:49:af:03:72:04:0b:dd:bc:e5:ca:f8: 6b:2e:83:9d:1b:be:21:14:62:ea:ef:51:8e:fe:1b:de:c0:06: 06:2f:d8:b8:2d:e4:e9:ef:45:39:af:25:43:2d:3d:08:1d:dc: 7d:64:dd:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjQxMTIzMDEzMzMzWhcNMjQxMTMwMDEzMzMzWjAYMRYwFAYD VQQDEw02NzQxMzBlZS05M2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdQ4orL9D4xb6+sOK754Fps1/Y1ykv+hymtPVZ96tC3ONogNyvD38jznBPHk g/Fg1PgMNzpEM0GhFTyBhQWnISjj2oHHXGntuq4UlyYsxu7DlyUsLVrldpVWdml4 MkbyzFxknqAELnyrpiaYrThC9VQs1gcSCSioBmG9PYeFmZCx3oheeZ2bI5QenS7v Qu6o6ZhBxORHZWSEipeuUyUMBdFSdlOigTYDwzC81SlPKv5FpRsxOF6gVYWs54SO JYVQVn5FmS0liN9kX3mIVg/2Od3XI4x8QUt6HnEqusMCP7X1S11USmj0WfkZ0EBb C+a+z7cAQLzMOruOJvwX9UdpAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+AVCvQ OcEIKKO2U8N2yCxxZFMPMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbZ2WBNqtJuWwV+6jI97Qn91uWFaeJlPzOH6zrJqIBrWuryb5Gy9fo FgF0d3GZzad2Jif1DeGq0ePsRO8zl71SUrbVPb0BIi3YW85PIJZpaZ2mRsk8pb10 MT77QHgU9WXWfPNEcnDAVwEOAAnhpocuU3CNY1kM9aCYa6XqW3vhx7bfjzWi1Hci hbudGHuR4+GoxxuE7JUebvH316ViINt/lZ9nGs299B1XGynrYF9YD1WanNSZ+SBw cRJTxvlQ1gj1GL1mkFlM1Mf2B8VISa8DcgQL3bzlyvhrLoOdG74hFGLq71GO/hve wAYGL9i4LeTp70U5ryVDLT0IHdx9ZN32 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org