$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft File: gprYV1claHsfCkxV-UIq8zsA_LE.mft (raw, json) Hash identifier: 0UeALdK6TITDHq0XSzwBjGMghq/x2ghW3B70PVj6KFY= Subject key identifier: 45:0D:26:75:05:E4:4C:33:99:1A:37:F0:0A:CB:1E:DD:9E:38:70:3B Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:19:11 +0000 Manifest this update: Thu 19 Sep 2024 06:19:10 +0000 Manifest next update: Thu 26 Sep 2024 06:19:10 +0000 Files and hashes: 1: gprYV1claHsfCkxV-UIq8zsA_LE.crl (hash: fbd8XJ466Rk83LULxGmLaTE8a1xe7QooSbF9O2yC4Ng=) 2: 833934745B9E11EFA7D10E5BC4F9AE02.roa (hash: EnqdtS67GGIoHjrrVwErYsAO96Kw850mS6kZEXiWy+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: Sep 19 06:19:10 2024 GMT Not After : Sep 26 06:19:10 2024 GMT Subject: CN=66ebc25e-ae66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:67:b2:b3:c3:46:58:76:fb:68:f4:5b:d6: 58:b7:44:fd:a6:15:01:64:0c:ca:f3:3c:90:e7:ca: 9c:1f:c1:19:50:36:de:57:9a:6f:e0:27:57:8f:35: 03:ca:a5:de:7d:2b:f1:81:fb:9e:4e:78:c4:bb:4e: a5:6f:cf:fd:74:e4:8e:c5:0a:e7:b3:d5:80:6a:e5: ce:bf:ed:b3:ce:45:4f:04:00:b2:ef:bb:2e:8f:d5: f7:4e:4e:7b:73:68:de:98:f4:4f:4c:12:36:8e:2a: 8d:0f:8a:ab:07:83:ca:7d:4e:b4:81:e6:07:21:84: 45:9e:4f:1b:65:6a:66:26:22:d7:a7:95:b4:88:1e: 6a:96:ae:b0:21:d0:43:fa:e0:f5:00:1d:f4:61:18: 14:aa:aa:ab:15:d4:b5:b3:e4:49:9f:e7:c1:34:57: 71:e7:89:2f:dc:2c:c2:9c:59:36:9f:99:0e:a9:e8: e3:4d:ae:a6:7d:0a:27:1c:be:9a:0c:a3:76:9e:9a: c5:d2:43:8b:90:5e:57:23:c8:68:f9:2c:5a:a7:e8: 73:d1:bd:16:c0:ca:fc:16:ee:fd:e0:26:87:bc:81: 06:70:34:5a:25:c4:54:a8:da:4d:1b:ae:46:1c:32: ea:e6:f9:89:27:7e:07:fa:5d:c6:2f:c9:3e:bc:9a: ca:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0D:26:75:05:E4:4C:33:99:1A:37:F0:0A:CB:1E:DD:9E:38:70:3B X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ac:07:23:68:69:01:ee:b3:34:a3:98:45:d5:c8:8f:c9:00: ce:27:9f:05:e1:62:02:01:f6:f1:ef:96:f0:52:8d:76:27:bd: 7f:c6:32:aa:d9:0c:57:6a:20:79:f5:a5:a6:da:7f:41:e1:21: ea:c1:89:45:0d:33:a8:03:1f:5d:54:56:09:b9:db:e9:66:84: f6:78:74:bd:cd:09:c4:8c:98:63:65:4c:10:46:25:75:2d:0b: 0d:d6:e6:70:71:b9:8e:1d:25:87:a8:fe:05:ee:46:f0:92:e9: 95:f9:38:e8:1c:e8:3b:fa:9b:e9:96:84:8a:da:65:f7:28:36: 3a:28:d5:d2:2f:88:fd:f6:75:b9:6c:79:ed:e2:9b:14:a0:4b: 4a:c7:f8:c1:a2:8b:0a:e6:e9:3b:8d:63:b0:4f:92:e0:f9:0e: 57:b3:f1:4a:32:b7:01:fc:b7:3c:2d:09:e7:4b:e0:7b:0a:9d: 2a:22:91:a5:4a:83:2b:9a:a6:3c:11:39:cd:f4:0c:79:ae:d7: ff:e1:5e:3c:3b:38:79:28:44:84:5f:61:dc:81:27:c7:fe:b5: 3a:11:4d:36:8b:f5:01:a4:06:05:e6:10:a8:2c:94:60:0e:b2: ef:bc:aa:47:74:ef:2c:6f:fa:70:de:c0:91:6d:10:49:2e:91: cf:4d:5d:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUxMTExMC8GA1UEBRMoODI5QUQ4NTc1NzI1Njg3QjFGMEE0QzU1Rjk0MjJBRjMz QjAwRkNCMTAeFw0yNDA5MTkwNjE5MTBaFw0yNDA5MjYwNjE5MTBaMBgxFjAUBgNV BAMTDTY2ZWJjMjVlLWFlNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1IGeys8NGWHb7aPRb1li3RP2mFQFkDMrzPJDnypwfwRlQNt5Xmm/gJ1ePNQPK pd59K/GB+55OeMS7TqVvz/105I7FCuez1YBq5c6/7bPORU8EALLvuy6P1fdOTntz aN6Y9E9MEjaOKo0PiqsHg8p9TrSB5gchhEWeTxtlamYmItenlbSIHmqWrrAh0EP6 4PUAHfRhGBSqqqsV1LWz5Emf58E0V3HniS/cLMKcWTafmQ6p6ONNrqZ9CiccvpoM o3aemsXSQ4uQXlcjyGj5LFqn6HPRvRbAyvwW7v3gJoe8gQZwNFolxFSo2k0brkYc Murm+Yknfgf6XcYvyT68mso3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURQ0mdQXk TDOZGjfwCsse3Z44cDswHwYDVR0jBBgwFoAUgprYV1claHsfCkxV+UIq8zsA/LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTExLzJEQ0ZGNjEyNUI5 RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9M RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3ByWVYxY2xhSHNmQ2t4Vi1VSXE4enNBX0xFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTExLzJEQ0ZGNjEyNUI5RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhz ZkNreFYtVUlxOHpzQV9MRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOsByNoaQHuszSjmEXVyI/JAM4nnwXhYgIB9vHvlvBSjXYnvX/GMqrZ DFdqIHn1pabaf0HhIerBiUUNM6gDH11UVgm52+lmhPZ4dL3NCcSMmGNlTBBGJXUt Cw3W5nBxuY4dJYeo/gXuRvCS6ZX5OOgc6Dv6m+mWhIraZfcoNjoo1dIviP32dbls ee3imxSgS0rH+MGiiwrm6TuNY7BPkuD5Dlez8UoytwH8tzwtCedL4HsKnSoikaVK gyuapjwROc30DHmu1//hXjw7OHkoRIRfYdyBJ8f+tToRTTaL9QGkBgXmEKgslGAO su+8qkd07yxv+nDewJFtEEkukc9NXYk= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:51 2024 by rpki-client on console-fra.rpki-client.org