$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: tnSZW52VKceFbLl+vreI2S578EqFzRUJJQmt7dp9cA8= Subject key identifier: 00:21:07:C0:6A:2C:3F:AF:31:AD:0E:01:36:07:86:2A:55:52:AC:08 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 05B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 05B3 Signing time: Fri 22 Nov 2024 22:41:23 +0000 Manifest this update: Fri 22 Nov 2024 22:41:23 +0000 Manifest next update: Fri 29 Nov 2024 22:41:23 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: AnpIccv82jTuMhRGR+T9QIK4AA9nkzdfTsJV07Q/weY=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1464 (0x5b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Nov 22 22:41:23 2024 GMT Not After : Nov 29 22:41:23 2024 GMT Subject: CN=67410893-cf7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:d8:e7:e0:34:9c:e4:11:b0:99:d4:86:6b: 2a:35:14:7a:46:4b:1e:62:b5:01:99:e7:f8:3d:92: c1:c1:19:41:86:86:4f:a9:10:92:b9:90:50:ad:8b: bc:45:2c:cc:5c:d9:ff:94:8f:d9:ad:5b:3f:aa:c9: b4:e7:3f:3d:a1:c3:54:a9:48:8b:d9:e5:de:a0:b0: c1:6e:b7:8a:1d:5f:d0:7d:8f:cf:ce:60:1b:06:6a: c4:f8:5f:4e:1c:2d:3b:6b:60:ce:10:18:cc:b4:64: 85:c1:1c:fe:3b:44:22:b5:e0:d4:94:4b:dc:ce:d0: 59:e8:d7:c9:0f:35:d8:65:73:a4:7b:70:11:6f:a1: 3a:65:0a:a9:75:37:14:e7:9f:2b:5b:ee:3a:9a:4a: dc:ac:a0:a0:47:d1:5e:f7:ee:f5:48:dc:67:70:73: a3:eb:93:89:81:df:95:01:de:be:15:c2:8a:72:e1: 87:31:0e:00:3d:f7:51:2a:8f:a0:d7:10:e0:05:77: d9:ec:1d:7e:3f:83:49:3f:2e:9c:4a:2e:97:cd:26: b5:db:3d:63:84:78:09:d4:47:ef:3a:9e:17:00:2b: 84:dd:46:bf:32:8c:cb:aa:15:ef:56:15:78:5f:21: 0e:20:a2:45:ec:4d:21:77:63:da:0c:99:30:ae:00: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:21:07:C0:6A:2C:3F:AF:31:AD:0E:01:36:07:86:2A:55:52:AC:08 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a0:7e:70:3b:07:16:42:f3:87:19:ac:47:0a:1a:a6:2b:df: b1:e4:1b:c6:fc:74:d5:1b:7d:e6:0e:e1:fe:7c:66:e9:82:d5: f1:c7:74:dc:8d:11:32:f9:b4:85:76:6b:ef:ab:37:56:d9:06: 6f:4c:1d:8c:c5:eb:bd:85:38:4f:b0:7f:e4:c6:56:7e:ac:1a: 6b:2e:a8:0b:8e:fe:a8:be:ce:fb:3c:6b:c0:92:6a:d2:13:81: cf:ae:a1:f1:74:a8:35:68:e0:52:62:74:47:8c:56:08:e1:b2: 5c:d5:f2:1d:f0:00:3e:f3:19:0e:e6:7f:e5:41:46:60:9f:e4: 40:34:8b:d7:f8:cd:1f:6a:93:3f:7a:e7:68:1a:27:67:69:a7: 49:8b:cd:5c:cc:bb:92:6c:e3:41:7a:2a:85:88:78:d4:8e:73: c1:fd:e3:ce:18:80:92:75:25:7e:9f:21:37:22:60:0a:a0:26: 8d:7f:2b:96:2d:15:69:5e:87:d8:08:ab:64:19:ce:90:69:58: ab:dc:ac:a2:57:e4:e0:74:7a:8e:69:99:77:84:94:c4:aa:23: a6:7b:d2:37:17:b1:1c:19:3b:35:3b:85:52:1e:a1:74:04:90: ed:9b:75:1f:ed:e2:2e:97:41:07:90:72:e8:91:fd:d8:a9:a3: 18:f9:37:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjQxMTIyMjI0MTIzWhcNMjQxMTI5MjI0MTIzWjAYMRYwFAYD VQQDEw02NzQxMDg5My1jZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0LY5+A0nOQRsJnUhmsqNRR6RkseYrUBmef4PZLBwRlBhoZPqRCSuZBQrYu8 RSzMXNn/lI/ZrVs/qsm05z89ocNUqUiL2eXeoLDBbreKHV/QfY/PzmAbBmrE+F9O HC07a2DOEBjMtGSFwRz+O0QiteDUlEvcztBZ6NfJDzXYZXOke3ARb6E6ZQqpdTcU 558rW+46mkrcrKCgR9Fe9+71SNxncHOj65OJgd+VAd6+FcKKcuGHMQ4APfdRKo+g 1xDgBXfZ7B1+P4NJPy6cSi6XzSa12z1jhHgJ1EfvOp4XACuE3Ua/MozLqhXvVhV4 XyEOIKJF7E0hd2PaDJkwrgD9LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAhB8Bq LD+vMa0OATYHhipVUqwIMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOoH5wOwcWQvOHGaxHChqmK9+x5BvG/HTVG33mDuH+fGbpgtXxx3Tc jREy+bSFdmvvqzdW2QZvTB2Mxeu9hThPsH/kxlZ+rBprLqgLjv6ovs77PGvAkmrS E4HPrqHxdKg1aOBSYnRHjFYI4bJc1fId8AA+8xkO5n/lQUZgn+RANIvX+M0fapM/ eudoGidnaadJi81czLuSbONBeiqFiHjUjnPB/ePOGICSdSV+nyE3ImAKoCaNfyuW LRVpXofYCKtkGc6QaVir3KyiV+TgdHqOaZl3hJTEqiOme9I3F7EcGTs1O4VSHqF0 BJDtm3Uf7eIul0EHkHLokf3YqaMY+TfZ -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org