$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: SLAYmhYDXwco1BxYM6x4mP+4fNy/nIKcq/aaqUPARmk= Subject key identifier: E4:4C:0F:85:DF:42:80:6F:02:A9:9D:14:0A:A4:CB:DD:75:EF:CC:3C Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 24 Signing time: Sat 23 Nov 2024 05:45:00 +0000 Manifest this update: Sat 23 Nov 2024 05:44:59 +0000 Manifest next update: Sat 30 Nov 2024 05:44:59 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: 123kdNlQgSw5/WU6ZMZIe6q9BaR6NlC3CNz5DoacRac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Nov 23 05:44:59 2024 GMT Not After : Nov 30 05:44:59 2024 GMT Subject: CN=67416bdc-5911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:ad:a0:cc:1d:fd:10:74:83:94:a2:94:b9: d0:29:52:80:1a:ca:1b:45:90:0c:cc:bf:42:21:44: 2d:eb:33:43:ea:a0:30:0b:97:0f:fa:99:22:88:68: f7:07:67:c2:4c:27:a0:37:56:7f:1d:45:15:bc:b3: 20:f5:b3:e8:19:9c:c4:2d:a6:c7:27:1d:5f:da:1b: 77:d7:b3:df:01:79:c2:d6:d1:9d:e5:b9:91:81:cf: 0a:4b:9e:c7:27:03:d3:d1:d3:24:d8:8f:d4:10:16: bc:31:e4:61:da:d6:8d:ce:9e:04:f8:7c:70:7d:2d: 52:59:c3:bd:a8:eb:6b:4c:41:a9:4f:57:ac:9b:f7: 64:14:74:3e:cb:03:0e:ce:e5:27:7f:40:e9:88:63: db:17:c3:7e:ab:4e:50:fc:47:82:49:61:c6:53:83: 40:59:da:d8:ea:66:a2:6c:9f:a2:39:96:a0:d4:3b: ff:75:54:65:0e:61:53:d1:21:13:87:75:f1:5d:34: 3a:f4:cd:78:92:a6:47:45:13:a6:67:71:98:23:56: 35:f1:24:c1:b0:47:63:7c:37:0c:a0:b6:b0:a9:e4: 20:b2:5e:38:95:58:07:4b:9a:3d:58:0c:88:49:d9: 2e:eb:fc:33:03:29:42:e4:65:57:8c:17:54:c7:00: 1b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4C:0F:85:DF:42:80:6F:02:A9:9D:14:0A:A4:CB:DD:75:EF:CC:3C X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:93:59:ea:db:e9:2f:57:e4:6b:57:8b:f9:6e:a9:25:c6:de: e2:92:99:97:3a:b0:d6:67:20:de:4b:3c:d4:f0:75:7b:12:93: bb:57:91:53:f3:2b:f0:31:ed:37:be:fc:45:9b:10:df:0b:bb: 21:01:2b:56:65:37:1e:02:0a:28:9f:80:ac:41:22:29:27:a0: fb:3c:d4:d8:a7:c1:f2:a4:89:81:de:c8:09:47:b8:54:19:95: c3:70:a5:77:36:88:80:8e:5e:ae:24:f9:53:6d:13:4d:5c:f0: 34:cc:fa:8b:27:27:26:05:42:9a:59:32:10:3c:37:3d:f2:9d: 5d:8b:c7:24:25:6a:29:a4:9b:4e:ec:8d:83:c0:7b:58:a4:9a: c2:7f:0e:e9:47:18:e7:11:db:31:60:4e:a9:47:1d:6c:2f:62: d5:89:6c:e4:84:63:19:33:7c:ed:85:2f:11:91:b7:77:77:1b: 3b:42:bd:17:32:84:2f:b0:af:ba:ef:94:bf:c8:70:4f:9a:8a: 72:70:dc:f7:33:f5:b7:39:5f:bf:08:79:ed:51:a6:9c:cc:ed: 80:d2:ce:4c:dc:62:81:c2:2b:3e:98:c8:d6:6e:44:23:6a:71: 1e:a9:22:82:ae:9f:fe:81:b4:ea:e6:8f:cc:68:0b:f0:2a:64: 86:38:ae:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoMEEwODhBMTlCQkRCNjFERUQxOTE2Qzg2MEFCMkI4QkVF MTg2RURDRDAeFw0yNDExMjMwNTQ0NTlaFw0yNDExMzAwNTQ0NTlaMBgxFjAUBgNV BAMTDTY3NDE2YmRjLTU5MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2U62gzB39EHSDlKKUudApUoAayhtFkAzMv0IhRC3rM0PqoDALlw/6mSKIaPcH Z8JMJ6A3Vn8dRRW8syD1s+gZnMQtpscnHV/aG3fXs98BecLW0Z3luZGBzwpLnscn A9PR0yTYj9QQFrwx5GHa1o3OngT4fHB9LVJZw72o62tMQalPV6yb92QUdD7LAw7O 5Sd/QOmIY9sXw36rTlD8R4JJYcZTg0BZ2tjqZqJsn6I5lqDUO/91VGUOYVPRIROH dfFdNDr0zXiSpkdFE6ZncZgjVjXxJMGwR2N8NwygtrCp5CCyXjiVWAdLmj1YDIhJ 2S7r/DMDKULkZVeMF1THABv5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5EwPhd9C gG8CqZ0UCqTL3XXvzDwwHwYDVR0jBBgwFoAUCgiKGbvbYd7RkWyGCrK4vuGG7c0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0RCNTE3QjA4NzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdj MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2dpS0didmJZZDdSa1d5R0NySzR2dUdHN2MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0RCNTE3QjA4NzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3 UmtXeUdDcks0dnVHRzdjMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH6TWerb6S9X5GtXi/luqSXG3uKSmZc6sNZnIN5LPNTwdXsSk7tXkVPz K/Ax7Te+/EWbEN8LuyEBK1ZlNx4CCiifgKxBIiknoPs81NinwfKkiYHeyAlHuFQZ lcNwpXc2iICOXq4k+VNtE01c8DTM+osnJyYFQppZMhA8Nz3ynV2LxyQlaimkm07s jYPAe1ikmsJ/DulHGOcR2zFgTqlHHWwvYtWJbOSEYxkzfO2FLxGRt3d3GztCvRcy hC+wr7rvlL/IcE+ainJw3Pcz9bc5X78Iee1RppzM7YDSzkzcYoHCKz6YyNZuRCNq cR6pIoKun/6BtOrmj8xoC/AqZIY4rtY= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org