$ rpki-client -vvf rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft File: gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft (raw, json) Hash identifier: vwgcTNRMZyT5UVmrdz9pnSGscizew97LKS6T9rOZnJM= Subject key identifier: 43:32:A3:E6:5E:41:33:B9:C2:B6:F3:5C:B4:FF:71:9A:D7:08:25:E9 Authority key identifier: 81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC Certificate issuer: /CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Certificate serial: 052B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft Manifest number: 0527 Signing time: Fri 22 Nov 2024 23:05:03 +0000 Manifest this update: Fri 22 Nov 2024 23:05:03 +0000 Manifest next update: Fri 29 Nov 2024 23:05:03 +0000 Files and hashes: 1: gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl (hash: ekbTMAcf7j0UFqU2Vayt8DdQAOKBLl01U+j4TAO3lCw=) 2: 72AA1A38D7CB11EBB8307453C4F9AE02.roa (hash: 80C8kkeWhjJMm/bDl1BH7p52+xZp3ros5mN2WiCpBqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1323 (0x52b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Validity Not Before: Nov 22 23:05:03 2024 GMT Not After : Nov 29 23:05:03 2024 GMT Subject: CN=67410e1f-ab10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:41:cb:d8:12:6d:49:8f:ba:2c:60:be:5c: c0:48:42:0b:c8:a8:ee:ed:e9:52:50:8a:66:f6:1c: 4f:c4:6d:ac:a5:75:44:e3:e0:08:28:9f:18:a8:d0: ae:93:40:67:08:c1:d5:32:16:f3:a6:c8:b9:74:9a: 3c:a9:2b:4a:16:c0:86:8d:ac:dd:55:8b:db:d2:d7: 09:62:6c:b4:4a:44:21:84:e6:74:dd:44:fb:9c:74: c8:f3:39:33:d9:c0:91:4b:1f:bb:cc:a5:57:7d:6a: 30:16:f7:38:45:31:c4:85:1e:85:23:68:22:3c:33: 6c:7f:d6:e9:74:db:38:a0:06:23:d2:1f:41:ca:0c: 20:0d:50:f7:5a:04:96:22:2e:db:b1:ae:7f:46:1f: 5e:06:b6:6d:c5:fc:89:b4:b7:10:9f:a4:f0:1b:7b: e6:6a:33:be:f1:3c:0c:71:52:90:fc:f7:60:87:81: 81:8b:a1:12:d9:a6:29:30:92:cd:a5:63:d3:bc:65: 69:c2:fb:5a:23:06:5a:5f:da:eb:a0:21:71:5f:66: 82:65:d6:b6:65:d7:d8:ca:4a:a6:70:01:bc:8c:75: 17:ba:7c:6f:3c:39:e3:a6:e5:d5:9e:12:16:82:33: cb:a7:4f:f3:bb:06:f3:f3:df:db:75:35:a0:c8:cd: 9f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:32:A3:E6:5E:41:33:B9:C2:B6:F3:5C:B4:FF:71:9A:D7:08:25:E9 X509v3 Authority Key Identifier: keyid:81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:29:f9:6b:21:1f:6b:bb:a7:13:fa:9c:9f:9d:53:00:c0:6f: 07:94:4e:f4:42:3c:45:a2:87:27:52:3a:11:33:ca:46:93:fb: c0:d4:3d:86:01:ac:e8:da:e4:81:21:66:99:ef:67:5d:33:13: 1e:b7:14:06:53:ff:ab:48:d9:23:77:74:3a:90:80:fb:fe:e2: 78:71:df:8d:e6:bc:aa:41:58:12:e9:24:a0:82:13:8e:69:65: 80:f2:37:2d:4c:3a:a5:63:50:24:b9:ee:56:d3:cc:73:ca:49: 38:1f:4c:ba:56:92:b4:46:bc:0b:58:c6:99:d5:84:ce:48:75: 9e:8f:54:1a:c2:5a:60:1f:b6:ec:41:8d:db:1d:f4:ff:69:cc: 7f:82:01:ab:e1:3d:85:0a:e8:05:2d:29:40:9b:8f:fc:ac:f5: 40:b4:a7:93:fe:3c:4a:27:72:a2:da:c1:64:dd:e4:19:95:a7: 92:a3:75:3f:05:12:ce:12:47:62:74:be:50:dc:71:a9:14:ee: 9e:06:c7:34:c8:81:ac:49:59:ee:e4:db:88:47:67:bc:bb:16: 21:02:13:fc:b0:0e:2c:ce:6e:ff:27:c0:ba:29:a8:32:56:93: ac:e0:ba:73:3e:66:6c:ec:b0:1f:9a:9c:65:b6:59:a9:9a:80: 25:37:b8:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2QTExMTAvBgNVBAUTKDgxQkZERTkxNjlENUMyQzBFQjQ1MTc2MjA3NTM3Mzc2 OTlERjE2QUMwHhcNMjQxMTIyMjMwNTAzWhcNMjQxMTI5MjMwNTAzWjAYMRYwFAYD VQQDEw02NzQxMGUxZi1hYjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs05By9gSbUmPuixgvlzASEILyKju7elSUIpm9hxPxG2spXVE4+AIKJ8YqNCu k0BnCMHVMhbzpsi5dJo8qStKFsCGjazdVYvb0tcJYmy0SkQhhOZ03UT7nHTI8zkz 2cCRSx+7zKVXfWowFvc4RTHEhR6FI2giPDNsf9bpdNs4oAYj0h9BygwgDVD3WgSW Ii7bsa5/Rh9eBrZtxfyJtLcQn6TwG3vmajO+8TwMcVKQ/Pdgh4GBi6ES2aYpMJLN pWPTvGVpwvtaIwZaX9rroCFxX2aCZda2ZdfYykqmcAG8jHUXunxvPDnjpuXVnhIW gjPLp0/zuwbz89/bdTWgyM2fvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMyo+Ze QTO5wrbzXLT/cZrXCCXpMB8GA1UdIwQYMBaAFIG/3pFp1cLA60UXYgdTc3aZ3xas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzZBMS83MTE5QzVFQUQ3 QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndzRHJSUmRpQjFOemRwbmZG cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2diX2VrV25Wd3NEclJSZGlCMU56ZHBuZkZxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzZBMS83MTE5QzVFQUQ3QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndz RHJSUmRpQjFOemRwbmZGcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGKflrIR9ru6cT+pyfnVMAwG8HlE70QjxFoocnUjoRM8pGk/vA1D2G Aazo2uSBIWaZ72ddMxMetxQGU/+rSNkjd3Q6kID7/uJ4cd+N5ryqQVgS6SSgghOO aWWA8jctTDqlY1Akue5W08xzykk4H0y6VpK0RrwLWMaZ1YTOSHWej1QawlpgH7bs QY3bHfT/acx/ggGr4T2FCugFLSlAm4/8rPVAtKeT/jxKJ3Ki2sFk3eQZlaeSo3U/ BRLOEkdidL5Q3HGpFO6eBsc0yIGsSVnu5NuIR2e8uxYhAhP8sA4szm7/J8C6Kagy VpOs4LpzPmZs7LAfmpxltlmpmoAlN7j4 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org