$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: G+MXR51YSsnsz4mHVYMUD988oIOVLsE/ZnJd5+uV950= Subject key identifier: 19:3D:43:12:B0:DC:4C:F8:83:51:5C:CC:B7:82:28:D0:F3:95:72:FC Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1CCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1C94 Signing time: Wed 20 Nov 2024 16:09:53 +0000 Manifest this update: Wed 20 Nov 2024 16:09:52 +0000 Manifest next update: Wed 27 Nov 2024 16:09:52 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: WCS+vDGJI/ZLhlpx0YejhgLHRucTclIG3ZJutVSruHc=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: +CRLrhJsItyG4k1jiQ8QBFKyQAaJTALKMwvCWSzLpEs=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: LQxi9QdmgN0KIei5VG+HIfawwM3z6gP9YFiwzL4bT7s=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: k72xXpjFgZtRFDkXu8iIG0ZStxYnbHZo3Zq2gA8vZLE=) 5: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: nrk3DaY23QVKoexK2vSoORrq05ctVuvDGn2F2Uteovc=) 6: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 8Yo8XmtHUC1h3z2u1AbgBb+SfApNI9FQPc+WFfWHlN4=) 7: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: GPelyj6LTGW9gNvuVS/lYKjmlngEjMMSF+z6F6aAJqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7371 (0x1ccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Nov 20 16:09:52 2024 GMT Not After : Nov 27 16:09:52 2024 GMT Subject: CN=673e09d1-9fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:46:b3:10:60:b1:a8:41:37:d0:db:45:ee: 7c:1e:fd:0c:19:08:f5:c2:e5:21:4d:67:9e:a1:62: 9a:c2:74:97:d8:93:92:64:79:d9:b8:47:28:a2:09: ac:9a:b0:d3:f4:80:ff:fc:26:91:c5:d9:01:3c:d8: c0:29:6a:e7:a1:97:c8:3c:59:51:ba:67:73:1c:16: f6:c8:a8:0b:4e:75:8e:47:31:71:e6:f9:4b:bb:01: 99:6f:64:31:1c:2b:07:d5:7d:b7:4a:5b:76:1f:9b: 89:0f:1d:8b:c6:09:67:12:2a:68:95:ae:cb:d3:2a: 4b:49:5b:3f:49:2c:25:84:45:70:a6:67:dc:47:7f: da:c8:7e:93:98:a8:7c:d4:44:08:68:20:ea:10:8b: fd:4d:e2:84:b8:c0:13:13:8c:6d:0d:a8:65:c5:cf: 0e:80:3c:30:a3:dd:d0:4c:1d:a5:71:22:26:af:55: 62:86:e6:99:8b:10:3c:f0:21:16:46:12:a6:b2:2b: d9:de:e1:2d:6b:a1:35:78:34:55:ae:68:7d:ac:94: 1a:31:ea:b5:d7:a7:cd:f2:31:9c:34:62:7d:fe:30: ae:09:1e:d3:69:74:a5:43:21:bd:9f:01:4f:2f:46: 9f:91:6e:bc:76:fd:2e:b5:f0:3d:97:7c:65:3b:6b: 83:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3D:43:12:B0:DC:4C:F8:83:51:5C:CC:B7:82:28:D0:F3:95:72:FC X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:75:7a:35:95:cd:53:a7:06:28:bc:e8:67:08:8d:40:c3:ea: 57:26:26:92:61:a2:ea:48:75:1b:96:8f:09:37:fe:97:ec:5b: 10:8e:6e:0e:b0:c8:32:26:c5:e2:35:5e:2e:ab:98:07:c6:ec: 41:41:fa:9c:06:20:9b:71:22:8e:33:70:a3:5b:9d:37:fb:56: 50:d5:fa:a0:a1:86:b1:21:33:0f:82:1e:b0:18:59:0a:ec:10: ec:50:fa:da:85:c4:0d:7b:2d:8f:e7:b9:08:5b:e5:9f:b8:3c: f5:e5:fe:c7:1a:8b:66:11:45:07:eb:40:40:4b:fc:23:80:58: a5:28:47:d6:a0:fd:56:4f:29:52:65:c6:6d:00:72:da:88:03: 18:3d:05:88:73:bd:5f:83:6b:b5:c8:63:db:40:a6:8e:39:c8: 56:e9:48:25:20:65:b1:24:ef:d6:12:25:46:5f:ab:91:c6:a9: 04:76:6f:b7:8b:a1:3b:b4:fd:26:fa:d8:25:29:6e:45:45:59: 91:d7:cb:5e:44:a5:1c:29:d8:7c:cc:71:3f:ee:d1:1f:21:55: 9b:9a:68:82:2a:81:52:46:12:b8:83:7b:8b:b6:cf:ae:51:76: af:38:d0:ab:52:46:e6:53:d0:eb:27:ea:a6:de:db:22:3a:37: c8:9a:19:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQxMTIwMTYwOTUyWhcNMjQxMTI3MTYwOTUyWjAYMRYwFAYD VQQDEw02NzNlMDlkMS05ZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJxGsxBgsahBN9DbRe58Hv0MGQj1wuUhTWeeoWKawnSX2JOSZHnZuEcoogms mrDT9ID//CaRxdkBPNjAKWrnoZfIPFlRumdzHBb2yKgLTnWORzFx5vlLuwGZb2Qx HCsH1X23Slt2H5uJDx2LxglnEipola7L0ypLSVs/SSwlhEVwpmfcR3/ayH6TmKh8 1EQIaCDqEIv9TeKEuMATE4xtDahlxc8OgDwwo93QTB2lcSImr1VihuaZixA88CEW RhKmsivZ3uEta6E1eDRVrmh9rJQaMeq116fN8jGcNGJ9/jCuCR7TaXSlQyG9nwFP L0afkW68dv0utfA9l3xlO2uDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBk9QxKw 3Ez4g1FczLeCKNDzlXL8MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFdXo1lc1TpwYovOhnCI1Aw+pXJiaSYaLqSHUblo8JN/6X7FsQjm4O sMgyJsXiNV4uq5gHxuxBQfqcBiCbcSKOM3CjW503+1ZQ1fqgoYaxITMPgh6wGFkK 7BDsUPrahcQNey2P57kIW+WfuDz15f7HGotmEUUH60BAS/wjgFilKEfWoP1WTylS ZcZtAHLaiAMYPQWIc71fg2u1yGPbQKaOOchW6UglIGWxJO/WEiVGX6uRxqkEdm+3 i6E7tP0m+tglKW5FRVmR18teRKUcKdh8zHE/7tEfIVWbmmiCKoFSRhK4g3uLts+u UXavONCrUkbmU9DrJ+qm3tsiOjfImhnF -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:21 2024 by rpki-client on console-ams.rpki-client.org