$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft File: gprYV1claHsfCkxV-UIq8zsA_LE.mft (raw, json) Hash identifier: qjI0BKHT0OavmLK5mp+S+ofafMmaXIMi7Y4xb7N3Qdc= Subject key identifier: 5D:14:8C:D9:76:47:EB:15:64:6E:FA:0F:B2:3E:FA:92:9A:22:A1:91 Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:39:14 +0000 Manifest this update: Thu 21 Nov 2024 05:39:14 +0000 Manifest next update: Thu 28 Nov 2024 05:39:14 +0000 Files and hashes: 1: gprYV1claHsfCkxV-UIq8zsA_LE.crl (hash: qX1QWyB0/VfrSDNzLjF6a//rsECxxqOdZTgq3uEwZ+o=) 2: 833934745B9E11EFA7D10E5BC4F9AE02.roa (hash: EnqdtS67GGIoHjrrVwErYsAO96Kw850mS6kZEXiWy+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: Nov 21 05:39:14 2024 GMT Not After : Nov 28 05:39:14 2024 GMT Subject: CN=673ec782-5b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2f:c7:f0:a6:18:cc:29:04:17:40:37:63:6a: 8a:9a:b3:fe:8f:2f:f5:26:24:8c:92:17:77:55:d4: a7:f5:29:fe:db:b4:93:db:bf:64:fc:de:e3:00:21: 40:70:b0:e0:eb:f4:33:95:f3:ab:37:b0:ca:de:bb: 43:89:43:40:91:c1:3d:c0:12:9e:dd:c3:d6:9e:c0: 51:19:fa:12:45:7f:35:bb:0f:eb:0f:bb:94:ce:d0: d0:9e:69:77:2e:0d:21:30:ba:c4:bf:88:a9:d2:bb: 54:ba:12:7f:e8:a9:b6:6b:d6:96:d3:cc:14:34:63: eb:b2:f5:b2:99:c4:49:fd:45:bb:bd:d7:1c:21:48: 17:0f:6b:2f:c1:62:dc:bd:a8:48:b2:d8:c2:92:e3: 57:7c:09:85:c2:eb:27:25:6d:9a:47:a2:dd:74:05: d8:12:cd:57:0e:d2:30:a8:d7:5e:8f:de:1a:72:80: 0c:a0:54:16:b9:9c:03:cc:e6:0c:a0:63:65:71:ee: bc:14:e2:5c:04:e0:f2:ae:f3:d9:ff:88:b0:df:ce: 3b:48:1f:a3:55:ca:41:c2:e9:90:2e:63:eb:92:73: e9:b5:d5:cf:1c:9f:6c:bd:63:18:38:2c:24:38:5d: 2e:0b:4a:41:47:05:4d:3f:66:e2:d4:e4:eb:97:ab: 57:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:14:8C:D9:76:47:EB:15:64:6E:FA:0F:B2:3E:FA:92:9A:22:A1:91 X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:b7:10:b6:26:ad:95:d1:b0:96:43:26:8c:e2:7e:43:4a:f5: 11:b3:ec:b4:1c:92:bf:44:cb:e3:7e:ee:62:a1:0e:8a:8e:ad: ab:1b:ec:83:9f:21:bd:26:ac:9e:80:a7:d0:ab:4c:36:2c:2d: 30:51:78:c4:18:a8:c4:bf:4e:2c:c7:fe:16:e3:5b:2a:8f:c9: 54:a2:9c:51:57:5f:fc:1c:2e:4e:74:84:35:c4:63:ff:5f:e0: 38:69:d4:2e:be:4f:5d:70:0f:a4:c5:fa:06:bc:ec:da:46:11: 13:6a:48:c4:06:39:0f:b9:8c:08:9b:b3:6e:8c:41:27:47:b4: 7c:e1:23:70:b1:02:10:be:4c:c5:2d:1f:75:e6:b4:17:84:76: e7:40:d5:aa:54:4c:3e:83:b7:56:ad:0b:2a:83:33:1d:11:d2: 96:e2:99:77:41:c9:95:ac:07:8c:79:19:f0:67:76:c3:16:f5: 78:9e:45:19:47:62:ee:81:d2:16:b9:98:6c:97:4d:9f:d1:ef: 33:ca:16:ce:a3:d7:02:a7:fc:99:3e:e8:b3:0f:c2:00:42:f1: 63:64:3e:07:e7:bd:28:b9:13:64:ba:5c:57:7c:34:03:b9:f6: d1:6b:27:10:74:6d:a4:ba:ae:22:43:2e:18:51:70:7c:5f:e9: 1c:c2:ec:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUxMTExMC8GA1UEBRMoODI5QUQ4NTc1NzI1Njg3QjFGMEE0QzU1Rjk0MjJBRjMz QjAwRkNCMTAeFw0yNDExMjEwNTM5MTRaFw0yNDExMjgwNTM5MTRaMBgxFjAUBgNV BAMTDTY3M2VjNzgyLTViNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsL8fwphjMKQQXQDdjaoqas/6PL/UmJIySF3dV1Kf1Kf7btJPbv2T83uMAIUBw sODr9DOV86s3sMreu0OJQ0CRwT3AEp7dw9aewFEZ+hJFfzW7D+sPu5TO0NCeaXcu DSEwusS/iKnSu1S6En/oqbZr1pbTzBQ0Y+uy9bKZxEn9Rbu91xwhSBcPay/BYty9 qEiy2MKS41d8CYXC6yclbZpHot10BdgSzVcO0jCo116P3hpygAygVBa5nAPM5gyg Y2Vx7rwU4lwE4PKu89n/iLDfzjtIH6NVykHC6ZAuY+uSc+m11c8cn2y9Yxg4LCQ4 XS4LSkFHBU0/ZuLU5OuXq1f/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXRSM2XZH 6xVkbvoPsj76kpoioZEwHwYDVR0jBBgwFoAUgprYV1claHsfCkxV+UIq8zsA/LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTExLzJEQ0ZGNjEyNUI5 RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9M RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3ByWVYxY2xhSHNmQ2t4Vi1VSXE4enNBX0xFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTExLzJEQ0ZGNjEyNUI5RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhz ZkNreFYtVUlxOHpzQV9MRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKS3ELYmrZXRsJZDJozifkNK9RGz7LQckr9Ey+N+7mKhDoqOrasb7IOf Ib0mrJ6Ap9CrTDYsLTBReMQYqMS/TizH/hbjWyqPyVSinFFXX/wcLk50hDXEY/9f 4Dhp1C6+T11wD6TF+ga87NpGERNqSMQGOQ+5jAibs26MQSdHtHzhI3CxAhC+TMUt H3XmtBeEdudA1apUTD6Dt1atCyqDMx0R0pbimXdByZWsB4x5GfBndsMW9XieRRlH Yu6B0ha5mGyXTZ/R7zPKFs6j1wKn/Jk+6LMPwgBC8WNkPgfnvSi5E2S6XFd8NAO5 9tFrJxB0baS6riJDLhhRcHxf6RzC7EM= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org