$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft File: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft (raw, json) Hash identifier: GvIhJGqoQziWWwa+ji9CnEVGxf8F6fx9vIeCfonFCFU= Subject key identifier: 3F:D5:6A:E3:FB:1D:02:FE:7B:4C:64:70:CC:61:EE:B2:DF:0F:27:1A Authority key identifier: 1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C Certificate issuer: /CN=A917B4EE/serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft Manifest number: 05CA Signing time: Fri 22 Nov 2024 22:33:57 +0000 Manifest this update: Fri 22 Nov 2024 22:33:56 +0000 Manifest next update: Fri 29 Nov 2024 22:33:56 +0000 Files and hashes: 1: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl (hash: PxvTm4o51ytBZ1ipyDvzFah7pTdWjAW20cUA0+NjVN4=) 2: 851D827C977511EBA99DCE72C4F9AE02.roa (hash: YkeAt1drk4bdwdSADWm8joBbgfvJQHT5/J+Fr8f/lCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4EE/serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Validity Not Before: Nov 22 22:33:56 2024 GMT Not After : Nov 29 22:33:56 2024 GMT Subject: CN=674106d5-71f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6d:9c:66:fb:b0:c0:16:51:73:9b:4e:0e:b6: 67:32:4a:a7:99:ab:ce:49:39:12:6f:35:d2:40:b3: 83:e8:d1:77:84:c3:22:15:1e:97:53:43:18:17:89: c2:93:22:45:52:f9:5c:e0:fe:5a:58:46:e3:02:ce: 58:30:dc:28:b8:76:b4:a7:e2:d4:54:56:f8:52:9e: 8f:2c:60:a6:0a:a3:d2:d3:08:b7:55:14:3e:82:1e: 34:7b:9a:1d:53:78:da:ce:da:e9:13:18:37:e6:51: 1c:8c:da:fb:68:62:a1:4a:e4:95:55:a1:74:1b:8d: e0:43:95:2c:12:dc:61:c0:06:24:29:05:f8:70:68: 34:36:b2:43:13:3e:56:cd:cd:6b:55:68:6d:a2:7d: c2:bd:c1:a3:d6:7a:54:aa:a2:c1:68:08:df:e7:63: ab:64:9a:3a:a6:d4:b0:0d:a1:44:09:0a:20:1a:c4: 69:fd:65:28:e2:23:c7:98:4a:f3:01:da:9e:fd:de: 67:11:4f:47:85:64:3f:8b:b8:d5:65:7d:94:55:5a: f0:02:bc:08:83:fc:15:01:f3:3b:da:21:fb:44:ba: d9:43:94:bc:f7:aa:55:79:cb:1f:7b:3e:80:ca:8b: 1e:32:69:2c:21:39:cf:76:46:79:b7:90:b5:da:2f: 0e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D5:6A:E3:FB:1D:02:FE:7B:4C:64:70:CC:61:EE:B2:DF:0F:27:1A X509v3 Authority Key Identifier: keyid:1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ed:15:90:04:8c:9c:6b:26:d0:a2:b2:85:3c:47:60:1a:a9: bb:1e:00:fe:a0:ab:71:5c:5f:28:90:57:64:8f:b8:08:42:81: b0:f4:27:b8:2a:a9:0f:f6:73:c6:cb:d4:8c:6d:34:00:ae:8f: d0:9c:60:47:00:b6:9f:df:cd:48:3b:e0:7c:2a:a3:ab:b7:c8: 75:20:57:8c:ca:c4:d9:58:81:df:02:f8:b4:ed:d5:3f:f8:54: 69:47:02:a3:49:32:ca:4a:ee:47:93:ad:9b:20:2e:56:46:6d: 78:8f:cc:50:3f:f7:33:7e:81:fd:8f:57:dd:75:59:9c:f3:51: c4:05:9a:d8:95:d5:e0:09:bb:0e:01:a8:09:c7:cf:12:f2:a0: 37:c1:7f:98:33:3f:98:f4:c8:5a:d9:8d:d7:60:8b:1c:eb:68: ee:c1:fe:b0:b3:8c:6f:9b:2c:7b:81:01:2f:78:33:93:70:35: 68:7b:79:1b:34:51:33:12:43:34:1e:61:eb:90:9a:ac:2f:b3: e8:ca:d1:5c:9e:e1:83:57:0c:61:fa:83:58:05:dd:eb:c5:2b: 11:a8:5a:55:c6:47:47:cc:be:2b:14:19:81:d2:75:0e:8c:a4: 05:b3:64:56:a0:03:6c:6b:83:ad:1d:00:fb:b7:93:ee:b6:cb: ff:66:f5:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0RUUxMTAvBgNVBAUTKDFBNEQzMTRDMUZEMDEwNjIyRTg3NDkxQ0U0ODI3QjYy Mzk2NjcwOUMwHhcNMjQxMTIyMjIzMzU2WhcNMjQxMTI5MjIzMzU2WjAYMRYwFAYD VQQDEw02NzQxMDZkNS03MWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA222cZvuwwBZRc5tODrZnMkqnmavOSTkSbzXSQLOD6NF3hMMiFR6XU0MYF4nC kyJFUvlc4P5aWEbjAs5YMNwouHa0p+LUVFb4Up6PLGCmCqPS0wi3VRQ+gh40e5od U3jaztrpExg35lEcjNr7aGKhSuSVVaF0G43gQ5UsEtxhwAYkKQX4cGg0NrJDEz5W zc1rVWhton3CvcGj1npUqqLBaAjf52OrZJo6ptSwDaFECQogGsRp/WUo4iPHmErz Adqe/d5nEU9HhWQ/i7jVZX2UVVrwArwIg/wVAfM72iH7RLrZQ5S896pVecsfez6A yoseMmksITnPdkZ5t5C12i8OAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/VauP7 HQL+e0xkcMxh7rLfDycaMB8GA1UdIwQYMBaAFBpNMUwf0BBiLodJHOSCe2I5ZnCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRFRS8zQTcyN0M3RTk3 NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVHSXVoMGtjNUlKN1lqbG1j SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drMHhUQl9RRUdJdWgwa2M1SUo3WWpsbWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRFRS8zQTcyN0M3RTk3NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVH SXVoMGtjNUlKN1lqbG1jSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa7RWQBIycaybQorKFPEdgGqm7HgD+oKtxXF8okFdkj7gIQoGw9Ce4 KqkP9nPGy9SMbTQAro/QnGBHALaf381IO+B8KqOrt8h1IFeMysTZWIHfAvi07dU/ +FRpRwKjSTLKSu5Hk62bIC5WRm14j8xQP/czfoH9j1fddVmc81HEBZrYldXgCbsO AagJx88S8qA3wX+YMz+Y9Mha2Y3XYIsc62juwf6ws4xvmyx7gQEveDOTcDVoe3kb NFEzEkM0HmHrkJqsL7PoytFcnuGDVwxh+oNYBd3rxSsRqFpVxkdHzL4rFBmB0nUO jKQFs2RWoANsa4OtHQD7t5Putsv/ZvWV -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org