$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: JBvzhlz7NzyJvjnL49dUCsF4JXaECRtKRJcsyb9+R5U= Subject key identifier: 5D:89:2F:69:BA:1D:86:86:AB:30:70:10:76:E8:D6:66:63:D0:69:7E Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 147B Signing time: Fri 22 Nov 2024 16:52:51 +0000 Manifest this update: Fri 22 Nov 2024 16:52:51 +0000 Manifest next update: Fri 29 Nov 2024 16:52:51 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: zjeFVg96ZX8B8oG3WxNVtuwpuaZi9ewYKAhA6Ugn5q0=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: ts6CuXT017m+Eo1tnvA5GQ371D5wqgoVWLN1l6w+WmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5253 (0x1485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Nov 22 16:52:51 2024 GMT Not After : Nov 29 16:52:51 2024 GMT Subject: CN=6740b6e3-b838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:66:a4:e4:6f:58:07:5c:50:2f:26:a0:5e:f4: c0:8b:82:36:42:71:5a:86:3f:2f:1b:b9:c6:3b:f7: 69:4d:05:c4:55:12:d0:34:88:be:e0:c9:de:06:26: 09:4c:9d:4c:82:39:1f:26:ed:72:0b:1d:7c:b5:ab: 1a:f0:b2:e5:a9:71:f9:15:76:46:3f:55:7e:ab:74: 5c:3d:42:15:8b:7e:05:4f:6c:15:16:3f:5b:d0:5f: e1:13:9a:14:d9:13:b3:20:48:d7:16:b6:8d:f3:c8: 42:8c:76:7f:0d:b4:35:40:c4:d9:42:8b:08:ab:90: 94:8f:26:d6:54:29:c1:95:7f:47:b2:26:fd:18:59: 74:aa:a4:2d:c9:76:a4:40:e4:91:13:4c:52:63:c5: 06:fa:61:eb:34:9d:a7:db:e4:08:8d:d3:3f:a8:f6: bf:b3:af:5f:28:06:2d:31:e7:a3:c2:ee:3a:75:26: 3e:3e:b6:81:d9:a5:41:45:8d:2f:ae:2a:0f:3d:68: e3:ac:6a:ea:71:fe:bd:9a:d4:6c:1b:56:c0:e5:1a: 2a:3e:fd:e0:b7:5a:6d:94:88:8b:ed:17:21:25:ed: b4:92:d7:63:d6:46:13:e7:e0:b0:d6:bb:65:7d:1c: a5:c7:04:1c:2b:ff:80:88:73:06:1b:f3:e8:e1:b6: c0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:89:2F:69:BA:1D:86:86:AB:30:70:10:76:E8:D6:66:63:D0:69:7E X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:01:db:61:4b:66:7e:00:67:e4:69:38:52:f0:8c:17:9e:89: a9:be:9a:d9:c8:b2:95:01:05:fb:b1:bc:4e:7c:01:84:b2:a7: 1e:28:b8:56:5d:c4:c4:e9:ed:64:5e:f8:8b:ce:ba:1d:8e:85: a8:08:44:d5:2f:45:36:e0:1b:98:1d:8f:3c:b3:5d:e5:e6:21: 64:ba:6c:43:ef:38:72:4d:9d:74:aa:d1:cd:ab:da:a8:b8:36: 89:26:d9:b5:c5:12:36:cb:3f:16:dd:9d:ce:a4:73:fd:b2:87: 68:a6:7a:94:97:e7:b4:e8:fb:a9:ed:46:77:16:c3:87:3c:64: 08:05:ab:13:85:7f:eb:32:6d:fa:0d:33:96:20:07:ad:52:66: 5b:38:5c:6b:ed:31:64:ba:da:b2:ed:4a:82:36:5c:07:cb:8f: fa:3e:e3:55:6e:69:89:af:a2:dd:9d:56:88:83:85:91:c8:3a: 13:8c:0e:66:0b:4b:61:4d:60:7c:de:3c:4d:53:88:7a:3d:0d: 91:ad:eb:2a:22:03:e7:a9:d0:14:94:a4:53:24:e3:5e:e6:9a: e1:64:a2:99:22:05:a1:49:36:e9:17:a0:5d:5c:a1:6b:81:92: 8d:cd:b1:a9:26:36:7f:41:98:c4:38:76:9e:7b:00:5a:be:fa: 6b:87:db:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjQxMTIyMTY1MjUxWhcNMjQxMTI5MTY1MjUxWjAYMRYwFAYD VQQDEw02NzQwYjZlMy1iODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mak5G9YB1xQLyagXvTAi4I2QnFahj8vG7nGO/dpTQXEVRLQNIi+4MneBiYJ TJ1MgjkfJu1yCx18tasa8LLlqXH5FXZGP1V+q3RcPUIVi34FT2wVFj9b0F/hE5oU 2ROzIEjXFraN88hCjHZ/DbQ1QMTZQosIq5CUjybWVCnBlX9Hsib9GFl0qqQtyXak QOSRE0xSY8UG+mHrNJ2n2+QIjdM/qPa/s69fKAYtMeejwu46dSY+PraB2aVBRY0v rioPPWjjrGrqcf69mtRsG1bA5RoqPv3gt1ptlIiL7RchJe20ktdj1kYT5+Cw1rtl fRylxwQcK/+AiHMGG/Po4bbAEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2JL2m6 HYaGqzBwEHbo1mZj0Gl+MB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlAdthS2Z+AGfkaThS8IwXnompvprZyLKVAQX7sbxOfAGEsqceKLhW XcTE6e1kXviLzrodjoWoCETVL0U24BuYHY88s13l5iFkumxD7zhyTZ10qtHNq9qo uDaJJtm1xRI2yz8W3Z3OpHP9sodopnqUl+e06Pup7UZ3FsOHPGQIBasThX/rMm36 DTOWIAetUmZbOFxr7TFkutqy7UqCNlwHy4/6PuNVbmmJr6LdnVaIg4WRyDoTjA5m C0thTWB83jxNU4h6PQ2RresqIgPnqdAUlKRTJONe5prhZKKZIgWhSTbpF6BdXKFr gZKNzbGpJjZ/QZjEOHaeewBavvprh9vN -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org