$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft File: GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft (raw, json) Hash identifier: ZI/HEzC0luFYJ3PWfK+Hf/ZmqCjy+FR71cUCCTATFe4= Subject key identifier: 1D:8B:D9:42:3B:75:DB:28:C3:07:5F:79:B9:EE:B3:77:AC:12:E2:B2 Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft Manifest number: 072F Signing time: Wed 20 Nov 2024 21:12:53 +0000 Manifest this update: Wed 20 Nov 2024 21:12:53 +0000 Manifest next update: Wed 27 Nov 2024 21:12:53 +0000 Files and hashes: 1: GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl (hash: /QVFXwna0bBuhP6kJn1gdsyd5mOp0okyxAsu0BuwrdE=) 2: 1994E0780B5B11EB80C8B15FC4F9AE02.roa (hash: ioUnn9Sg1+1Knr69k6HvCYNkUAJj3SY+tArXzL4hN4U=) 3: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (hash: 7BAdUQMZjuuZNgHFdOha+SYqXFalxz5F+SZR0XZCmpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Nov 20 21:12:53 2024 GMT Not After : Nov 27 21:12:53 2024 GMT Subject: CN=673e50d5-01ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:50:72:c2:d6:e3:82:f1:22:8c:f0:67:24:7c: 10:8f:e5:de:00:56:17:67:c7:fd:4b:80:a5:d6:0a: 8f:7e:81:b2:1b:c0:4d:86:e8:ec:38:ed:22:0e:bb: ac:f1:19:8a:3d:da:2b:1f:c5:0f:e5:7e:d5:39:f5: ac:7c:6c:3f:da:ac:de:ea:41:c8:c9:f0:cb:e5:26: 89:b5:03:e9:46:80:8e:db:aa:c6:2c:8a:a8:ff:7a: 21:1c:4a:85:6f:13:18:f8:89:fa:b4:0f:93:e7:10: 56:66:bd:76:e9:16:e7:d0:59:e7:41:6e:a2:37:f9: 0c:02:a4:e7:46:9d:11:68:41:b3:a7:17:6e:8a:e7: 49:3b:8a:40:89:06:23:a5:d8:aa:ee:4a:22:7e:a1: 3a:6b:d4:90:f8:4d:61:e1:71:2a:41:9e:29:f9:89: a0:71:1a:c8:5f:20:15:96:91:9c:bd:53:59:63:2a: 2f:dd:b6:8a:99:a2:7e:46:bc:b8:2c:2c:4c:b7:c3: fb:1f:f4:d8:a2:c4:95:5a:ff:01:70:ed:c8:a5:42: f6:83:ba:62:81:79:8b:3b:99:7d:1c:77:79:34:61: 0f:60:d7:27:93:87:b6:60:bd:42:77:1b:5f:d8:d0: 21:f3:7e:3b:19:4a:ac:11:0b:7b:c3:b5:95:9d:ee: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8B:D9:42:3B:75:DB:28:C3:07:5F:79:B9:EE:B3:77:AC:12:E2:B2 X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:3e:85:0c:ec:c4:2f:5b:ce:0f:13:fa:ee:bb:31:70:68:c1: 26:d8:3a:a8:3a:81:68:bc:6a:0a:0c:ea:67:20:94:72:bc:fa: 06:1d:ef:35:98:98:f0:75:48:b0:80:04:bb:c3:b2:85:8f:0c: 47:c1:9e:69:fa:a1:51:65:3f:ec:b7:60:31:6b:40:fa:63:b8: 1b:a7:30:0a:1a:5d:e1:b7:5a:29:41:c4:e9:b5:b1:7d:60:50: b3:71:e1:ee:f7:64:70:3e:c6:77:8b:61:64:52:da:e4:54:ec: 33:25:8e:9b:18:27:52:61:6c:e7:37:d2:ec:89:b3:b7:05:e1: be:fe:0d:65:06:e4:b1:5f:eb:00:d7:ad:d2:88:ab:19:74:c1: 38:2b:39:5b:01:3f:c3:54:e6:36:de:76:59:9d:2f:81:41:c3: 5a:4b:3e:8c:7e:7e:71:f5:c3:81:30:46:02:6c:fa:6f:9d:48: b8:e3:4e:03:3a:4a:f0:ba:3a:6d:67:b0:63:08:74:d7:b6:97: cb:f8:e4:32:52:5c:a0:45:b6:79:52:5f:f9:f7:a0:73:cc:2e: 37:06:70:43:11:ef:f7:d4:83:3a:0d:c8:b1:dc:43:01:c4:90: 08:48:24:69:f7:c9:2e:60:b3:2e:a0:59:12:3c:83:0d:f2:ca: d8:f1:a8:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjQxMTIwMjExMjUzWhcNMjQxMTI3MjExMjUzWjAYMRYwFAYD VQQDEw02NzNlNTBkNS0wMWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVBywtbjgvEijPBnJHwQj+XeAFYXZ8f9S4Cl1gqPfoGyG8BNhujsOO0iDrus 8RmKPdorH8UP5X7VOfWsfGw/2qze6kHIyfDL5SaJtQPpRoCO26rGLIqo/3ohHEqF bxMY+In6tA+T5xBWZr126Rbn0FnnQW6iN/kMAqTnRp0RaEGzpxduiudJO4pAiQYj pdiq7koifqE6a9SQ+E1h4XEqQZ4p+YmgcRrIXyAVlpGcvVNZYyov3baKmaJ+Rry4 LCxMt8P7H/TYosSVWv8BcO3IpUL2g7pigXmLO5l9HHd5NGEPYNcnk4e2YL1Cdxtf 2NAh8347GUqsEQt7w7WVne5vzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2L2UI7 ddsowwdfebnus3esEuKyMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUE3Ri9FOTY0QUY0QzBCNTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VC dnNqSW4wVUJsNHdKSURhN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQPoUM7MQvW84PE/ruuzFwaMEm2DqoOoFovGoKDOpnIJRyvPoGHe81 mJjwdUiwgAS7w7KFjwxHwZ5p+qFRZT/st2Axa0D6Y7gbpzAKGl3ht1opQcTptbF9 YFCzceHu92RwPsZ3i2FkUtrkVOwzJY6bGCdSYWznN9LsibO3BeG+/g1lBuSxX+sA 163SiKsZdME4KzlbAT/DVOY23nZZnS+BQcNaSz6Mfn5x9cOBMEYCbPpvnUi4404D OkrwujptZ7BjCHTXtpfL+OQyUlygRbZ5Ul/596BzzC43BnBDEe/31IM6Dcix3EMB xJAISCRp98kuYLMuoFkSPIMN8srY8aii -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:45 2024 by rpki-client on console-ams.rpki-client.org