$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft File: -gRcYwK4c-iDZfqaAhSZtPPFhog.mft (raw, json) Hash identifier: kuv4Wt3L1ypbJl8YatN/Amu11lnZxir/JXXuFrnSyj4= Subject key identifier: 1D:4D:FC:4B:71:AC:F5:A7:14:F1:B7:53:03:86:18:E6:67:B5:1B:61 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft Manifest number: 04D1 Signing time: Fri 22 Nov 2024 23:25:04 +0000 Manifest this update: Fri 22 Nov 2024 23:25:03 +0000 Manifest next update: Fri 29 Nov 2024 23:25:03 +0000 Files and hashes: 1: -gRcYwK4c-iDZfqaAhSZtPPFhog.crl (hash: 8egSTHrXviydOk9358I1T8kGyzXcFqJ4L1yiXQ3kaB4=) 2: D62399042D1E11EE8C614E3EC4F9AE02.roa (hash: qkH2tgtItXAMLVzBegmHlsCSZQIwAcDk4bjO6eyiVsA=) 3: 14A59A26E15B11ECA05C9236C4F9AE02.roa (hash: tCsPFlQbHjPtdKo2By1Yv1A/CwgH+Wy/z7j32R4zxhU=) 4: 36C4FAAAA9FC11EEBEF3E64AC4F9AE02.roa (hash: Wg0ycCOoKuAHP5nQShBntZqgFSfdv38dgCrRwUlSjDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Nov 22 23:25:03 2024 GMT Not After : Nov 29 23:25:03 2024 GMT Subject: CN=674112cf-6e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:3d:90:67:0f:34:45:ee:0a:63:fa:bf:d5: f7:7c:73:b7:e5:89:75:8b:d0:14:c6:81:66:5c:19: 78:81:88:24:d4:19:35:ae:57:2b:cc:f4:51:4a:5f: 0d:3b:da:b8:68:9e:f7:07:db:48:ae:03:0a:27:4c: f3:db:9b:75:e3:9f:b1:91:09:00:09:bd:8a:97:9a: 02:b3:d6:65:e1:f4:a1:03:1f:24:db:14:fc:b0:15: 69:48:80:12:77:e0:4a:68:47:37:9a:8c:c0:e7:b6: e9:36:fb:d3:6d:4f:06:20:df:87:03:ec:ec:f2:6c: bf:26:40:9c:47:01:71:e1:cd:b7:30:df:52:1c:96: 57:b6:b6:b7:2d:63:ac:68:c0:4c:3e:2a:84:8c:b9: 36:b0:42:21:f5:e4:45:83:68:44:72:33:03:6c:b5: 07:28:68:24:5d:c0:2e:b0:54:5a:4d:a4:60:ff:19: 54:ac:c4:24:ca:3b:da:8c:b6:07:81:4a:85:79:b6: 52:32:70:9b:50:34:b9:57:b7:f3:b4:67:03:22:a0: 17:ed:4a:46:00:57:d4:ef:3b:57:9c:5c:1f:7c:66: a9:cb:dd:62:18:76:e2:6e:f7:ba:04:7b:30:a9:d5: d0:d9:d8:b5:1f:7e:82:e5:b1:21:9e:db:c3:28:3b: 12:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4D:FC:4B:71:AC:F5:A7:14:F1:B7:53:03:86:18:E6:67:B5:1B:61 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:08:20:5a:56:ba:3c:b3:b8:1c:a5:31:db:71:fb:a7:c7:92: f6:73:78:68:f7:58:94:38:33:19:01:70:0b:ee:9f:cb:8a:6e: 83:6b:1d:52:7e:16:5d:4c:f1:a2:3f:81:17:1b:e7:cb:54:7c: f2:86:ab:f0:6b:cc:ca:b3:bf:ac:d1:16:69:14:94:d8:10:86: ea:2d:6d:0f:5e:e8:ef:4c:37:d8:02:23:2d:fe:3a:d2:40:b4: 60:eb:e8:77:dd:a3:bc:24:44:20:4f:cb:34:c6:7d:45:20:4a: 7f:9d:2f:f2:c4:f1:bb:3c:9f:3c:0d:a7:07:6b:4e:15:b7:97: c5:8e:b3:58:df:18:58:3d:04:04:31:c7:aa:42:ea:a8:4b:a7: a5:27:86:49:a3:81:6b:55:c2:4f:be:d7:53:d9:21:aa:d4:9d: 95:87:cd:ee:07:a8:62:67:7a:85:13:22:1a:a2:91:b1:0d:f9: 39:18:1e:c7:f7:97:62:76:f2:51:c0:43:f4:10:92:cc:a5:a1: f0:fa:3d:cc:25:e7:b5:d5:f9:ca:f1:6a:ca:35:8f:5b:28:06: cf:4b:0a:cf:5e:07:1e:a5:80:54:8d:82:3a:14:38:3b:1d:6f: aa:26:55:7e:a5:f1:ac:dd:0c:67:52:7f:21:45:02:48:b6:25: 0e:0d:f3:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjQxMTIyMjMyNTAzWhcNMjQxMTI5MjMyNTAzWjAYMRYwFAYD VQQDEw02NzQxMTJjZi02ZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm09kGcPNEXuCmP6v9X3fHO35Yl1i9AUxoFmXBl4gYgk1Bk1rlcrzPRRSl8N O9q4aJ73B9tIrgMKJ0zz25t145+xkQkACb2Kl5oCs9Zl4fShAx8k2xT8sBVpSIAS d+BKaEc3mozA57bpNvvTbU8GIN+HA+zs8my/JkCcRwFx4c23MN9SHJZXtra3LWOs aMBMPiqEjLk2sEIh9eRFg2hEcjMDbLUHKGgkXcAusFRaTaRg/xlUrMQkyjvajLYH gUqFebZSMnCbUDS5V7fztGcDIqAX7UpGAFfU7ztXnFwffGapy91iGHbibve6BHsw qdXQ2di1H36C5bEhntvDKDsSIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1N/Etx rPWnFPG3UwOGGOZntRthMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTNEMy82RUMwRTM2ODAwMEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMt aURaZnFhQWhTWnRQUEZob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQCCBaVro8s7gcpTHbcfunx5L2c3ho91iUODMZAXAL7p/Lim6Dax1S fhZdTPGiP4EXG+fLVHzyhqvwa8zKs7+s0RZpFJTYEIbqLW0PXujvTDfYAiMt/jrS QLRg6+h33aO8JEQgT8s0xn1FIEp/nS/yxPG7PJ88DacHa04Vt5fFjrNY3xhYPQQE MceqQuqoS6elJ4ZJo4FrVcJPvtdT2SGq1J2Vh83uB6hiZ3qFEyIaopGxDfk5GB7H 95didvJRwEP0EJLMpaHw+j3MJee11fnK8WrKNY9bKAbPSwrPXgcepYBUjYI6FDg7 HW+qJlV+pfGs3QxnUn8hRQJItiUODfOD -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org