$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: Q1P08CRyuCA7KFcB8/BigLjOKwx0Z9TPX27dfPW5riA= Subject key identifier: 26:FA:F2:65:3C:5A:1D:C0:46:B4:7A:2F:E6:6C:6D:11:E2:32:32:CA Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: 09 Signing time: Sat 23 Nov 2024 06:07:34 +0000 Manifest this update: Sat 23 Nov 2024 06:07:34 +0000 Manifest next update: Sat 30 Nov 2024 06:07:34 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: ARoIhuobzR+znePCr2mTp1zW2dOMeEICXBOQsXNNisk=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: etgfr2FMXbKAdL4ONMDhHdEqlj7eq8Os+Vy9Aq6JfHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Nov 23 06:07:34 2024 GMT Not After : Nov 30 06:07:34 2024 GMT Subject: CN=67417126-4239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:71:6c:4e:dc:75:a5:f9:c8:bf:4b:66:10: 2c:9b:93:d3:ee:b2:ad:01:57:30:ce:37:a8:3a:ab: f2:a3:39:aa:5b:82:4d:78:a5:75:5a:5a:09:7d:8a: 76:31:02:e1:2d:53:0c:a9:54:07:4b:be:c4:ee:40: 6a:69:86:0d:9e:bf:43:8b:02:58:52:6d:69:6e:d9: 57:2e:a9:e8:ca:56:90:27:a8:28:df:b9:ab:40:51: 12:60:b8:22:00:79:3f:22:44:41:8e:77:58:af:20: c8:fe:be:7d:33:8e:6b:c8:95:e5:3c:e4:ac:60:1e: 14:d4:ab:48:c4:d7:3a:1a:4f:3e:cc:cb:a3:8d:c3: c5:96:db:10:b6:70:c5:e7:fe:87:9f:2b:c6:5a:f6: 65:8e:f1:b1:e5:61:43:be:d7:35:0f:91:98:11:1f: cc:71:dc:8d:26:85:5b:76:aa:50:5d:b2:cb:9d:f6: 25:39:8c:e8:ac:3a:d5:78:f2:47:2d:fd:5a:12:53: c3:10:81:ee:33:c3:0e:de:89:0f:bf:30:04:54:76: 14:b1:08:5d:93:a3:dd:cb:8f:a3:06:f1:fc:62:9f: 2c:2b:61:bc:41:8c:5e:60:0f:8d:19:80:c4:51:cf: a7:28:bf:3e:d7:45:63:5c:d6:67:e3:11:65:ea:75: db:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:FA:F2:65:3C:5A:1D:C0:46:B4:7A:2F:E6:6C:6D:11:E2:32:32:CA X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d5:e5:e0:2f:be:61:f0:7e:ee:84:69:e5:f2:df:62:9a:aa: ea:0e:6b:7f:32:5b:63:11:52:fb:fa:bd:db:bd:f2:7d:fe:2b: 07:45:aa:cf:51:7c:f5:f4:2b:63:76:78:0d:c2:3f:51:6a:16: b5:6d:f9:33:f8:87:5b:0f:f7:4a:45:03:af:4a:b0:17:8e:e0: d2:57:89:fc:a8:64:7e:14:e4:0b:c5:6c:76:58:ef:ea:18:9f: 8f:c9:3e:2e:86:ea:b6:c9:f5:c4:df:ac:d0:40:61:36:09:45: 05:54:12:7b:30:4b:3e:65:be:ed:09:34:83:42:c0:60:54:05: 4f:2d:18:7a:7c:33:f9:44:f2:5a:3a:ef:62:42:82:89:35:48: c9:f0:bc:d3:6c:59:e7:d0:c5:43:40:45:ee:ab:e3:da:6d:11: 33:24:0b:07:86:e1:c7:d7:f9:ba:5d:da:7c:fc:14:b2:9c:3e: c5:42:04:55:1e:d8:71:12:e7:89:6e:e8:46:8c:b9:78:66:b9: a2:e3:d0:de:91:44:6a:f6:0c:35:98:60:a5:9c:96:36:55:49: 53:e2:2e:fd:9a:63:87:d3:24:1f:96:2b:82:66:dd:cd:31:6e: 34:63:4c:ed:38:70:b3:a3:8c:64:8c:bc:dd:ca:7b:dc:d4:67: 13:39:ec:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjBFMjExMC8GA1UEBRMoODA3RTY4OEFBNTBCRDNFMzhCRTMxQjVENEM0RTA2MDgw NEVCMTVEQzAeFw0yNDExMjMwNjA3MzRaFw0yNDExMzAwNjA3MzRaMBgxFjAUBgNV BAMTDTY3NDE3MTI2LTQyMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH6nFsTtx1pfnIv0tmECybk9Pusq0BVzDON6g6q/KjOapbgk14pXVaWgl9inYx AuEtUwypVAdLvsTuQGpphg2ev0OLAlhSbWlu2VcuqejKVpAnqCjfuatAURJguCIA eT8iREGOd1ivIMj+vn0zjmvIleU85KxgHhTUq0jE1zoaTz7My6ONw8WW2xC2cMXn /oefK8Za9mWO8bHlYUO+1zUPkZgRH8xx3I0mhVt2qlBdssud9iU5jOisOtV48kct /VoSU8MQge4zww7eiQ+/MARUdhSxCF2To93Lj6MG8fxinywrYbxBjF5gD40ZgMRR z6covz7XRWNc1mfjEWXqddvdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJvryZTxa HcBGtHov5mxtEeIyMsowHwYDVR0jBBgwFoAUgH5oiqUL0+OL4xtdTE4GCATrFdww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMEUyLzJCNEJCNDJFQTI1 RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ0g1b2lxVUwwLU9MNHh0ZFRFNEdDQVRyRmR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MEUyLzJCNEJCNDJFQTI1RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1P TDR4dGRURTRHQ0FUckZkdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKDV5eAvvmHwfu6EaeXy32KaquoOa38yW2MRUvv6vdu98n3+KwdFqs9R fPX0K2N2eA3CP1FqFrVt+TP4h1sP90pFA69KsBeO4NJXifyoZH4U5AvFbHZY7+oY n4/JPi6G6rbJ9cTfrNBAYTYJRQVUEnswSz5lvu0JNINCwGBUBU8tGHp8M/lE8lo6 72JCgok1SMnwvNNsWefQxUNARe6r49ptETMkCweG4cfX+bpd2nz8FLKcPsVCBFUe 2HES54lu6EaMuXhmuaLj0N6RRGr2DDWYYKWcljZVSVPiLv2aY4fTJB+WK4Jm3c0x bjRjTO04cLOjjGSMvN3Ke9zUZxM57LQ= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org