$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: vAId45PnxtOjr6CqAUld3vOfOuTERdV+sK8IkDfOZJE= Subject key identifier: 85:20:1B:C2:F4:11:3C:0E:11:05:B9:F5:47:84:AF:DB:CE:4B:75:0A Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 0143 Signing time: Wed 20 Nov 2024 17:36:44 +0000 Manifest this update: Wed 20 Nov 2024 17:36:44 +0000 Manifest next update: Wed 27 Nov 2024 17:36:44 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: eMXakjfM2zx31OCL91C0AiPLV8xi/1f+riCrs6ieK9E=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: /rJqGMqLZ7nBs/V2rvnW5bXjWT03Hch1ZVPihuVLC9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Nov 20 17:36:44 2024 GMT Not After : Nov 27 17:36:44 2024 GMT Subject: CN=673e1e2c-2f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:66:f2:af:de:e5:5c:d1:3a:58:50:a9:15: bf:3b:4b:f3:81:09:f8:2c:22:e4:9c:44:f9:e5:36: f0:bd:01:fe:7f:3c:88:2d:51:79:a7:1b:f5:7c:e1: 0f:00:e3:33:be:7a:8c:9e:76:15:48:e4:b4:5b:d5: d3:c1:08:2d:04:43:07:e4:7d:91:09:88:9f:fa:f4: 6a:f0:89:15:df:dd:bf:08:93:ec:79:2f:e1:9b:6f: 66:9b:c6:07:cb:ae:3c:47:f2:6b:58:6e:37:43:71: 51:ae:d3:09:dd:22:f2:9e:7b:af:59:31:07:41:45: 4e:8a:82:63:96:88:a0:3e:fb:82:b2:25:56:9d:2d: 32:48:45:7f:22:2d:2c:f5:e7:ee:e8:fa:d2:6b:aa: 8a:0d:32:13:5c:32:0c:e9:44:1a:1a:8c:37:37:26: b1:d2:57:6b:6f:db:77:19:09:aa:5c:80:ee:6f:f2: e3:73:2e:52:92:ec:9f:b5:b0:bb:72:a9:94:3b:fc: 27:6e:84:25:79:f0:39:5b:4b:33:82:48:06:69:c8: 2c:84:91:70:d0:b5:a0:7c:7e:50:96:b7:b4:cb:60: c7:ec:9c:d4:ba:b7:ea:4d:06:56:81:f7:3c:d4:70: 99:36:ee:dd:b4:78:e1:56:e2:ad:fa:6c:06:5f:64: 06:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:20:1B:C2:F4:11:3C:0E:11:05:B9:F5:47:84:AF:DB:CE:4B:75:0A X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:83:e7:a3:53:7a:94:d6:54:32:4e:b9:1d:eb:1c:74:9c:98: bc:5b:9c:f1:bc:3a:75:95:cd:9c:3e:d8:8f:b4:42:9c:58:22: 20:52:45:6e:54:d8:18:c9:ed:45:09:12:eb:ac:92:26:7f:7c: c7:ca:75:2f:04:93:e6:e6:2f:ba:2d:81:9b:d2:c1:c9:16:6c: 30:2f:37:a1:9a:79:3a:3f:b0:1b:7d:a9:dd:dd:99:3a:e1:0a: 7d:c6:e9:0a:53:a6:b0:4b:e9:3f:e6:f7:0c:d0:5d:8c:8e:42: 49:b2:1f:f2:49:bf:1a:67:63:9f:fd:4e:db:23:ae:92:00:77: d1:c1:5a:4c:7b:a8:b6:d3:8f:e1:54:79:61:c1:54:f2:f0:a5: dc:24:c5:8e:35:83:d4:e1:aa:18:53:51:ba:8a:cc:c5:3a:cf: b1:5c:63:f0:2f:71:44:d7:77:1d:22:bd:19:57:c4:c8:c1:0c: 5f:0d:da:7a:15:c7:bd:39:fe:63:2a:b9:90:a1:ed:d9:db:d2: 24:ad:f0:85:31:5d:a6:85:4d:ae:be:9f:30:0a:82:e4:aa:27: b5:d2:e0:f9:fe:20:62:bb:1c:c6:83:6c:7e:1e:4f:b8:85:69: 44:bd:20:74:df:92:ad:a5:9a:e3:68:8a:7d:7d:ad:48:db:01: a9:53:ac:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjQxMTIwMTczNjQ0WhcNMjQxMTI3MTczNjQ0WjAYMRYwFAYD VQQDEw02NzNlMWUyYy0yZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCFm8q/e5VzROlhQqRW/O0vzgQn4LCLknET55TbwvQH+fzyILVF5pxv1fOEP AOMzvnqMnnYVSOS0W9XTwQgtBEMH5H2RCYif+vRq8IkV392/CJPseS/hm29mm8YH y648R/JrWG43Q3FRrtMJ3SLynnuvWTEHQUVOioJjloigPvuCsiVWnS0ySEV/Ii0s 9efu6PrSa6qKDTITXDIM6UQaGow3Nyax0ldrb9t3GQmqXIDub/Ljcy5SkuyftbC7 cqmUO/wnboQlefA5W0szgkgGacgshJFw0LWgfH5Qlre0y2DH7JzUurfqTQZWgfc8 1HCZNu7dtHjhVuKt+mwGX2QGeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUgG8L0 ETwOEQW59UeEr9vOS3UKMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEg+ejU3qU1lQyTrkd6xx0nJi8W5zxvDp1lc2cPtiPtEKcWCIgUkVu VNgYye1FCRLrrJImf3zHynUvBJPm5i+6LYGb0sHJFmwwLzehmnk6P7Abfand3Zk6 4Qp9xukKU6awS+k/5vcM0F2MjkJJsh/ySb8aZ2Of/U7bI66SAHfRwVpMe6i204/h VHlhwVTy8KXcJMWONYPU4aoYU1G6iszFOs+xXGPwL3FE13cdIr0ZV8TIwQxfDdp6 Fce9Of5jKrmQoe3Z29IkrfCFMV2mhU2uvp8wCoLkqie10uD5/iBiuxzGg2x+Hk+4 hWlEvSB035KtpZrjaIp9fa1I2wGpU6xO -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org