$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: 7N6T00K8okh9LFOPSwXeXWVwijuA6qs3veRY3o46EYA= Subject key identifier: 5B:73:ED:2D:C0:26:A8:04:8A:28:92:9B:DF:D6:42:C0:D3:21:0F:14 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 05AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 05AB Signing time: Fri 22 Nov 2024 22:42:42 +0000 Manifest this update: Fri 22 Nov 2024 22:42:42 +0000 Manifest next update: Fri 29 Nov 2024 22:42:42 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: D6JhJi/WWLqhQhAQv4JhwNguB+Qz+6lqwfQLpp89jyg=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: 0zFQ1BRYNI+2cFpJMpx2xapZnaYr/Wv7xM9sKrY4jS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Nov 22 22:42:42 2024 GMT Not After : Nov 29 22:42:42 2024 GMT Subject: CN=674108e2-0900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:9f:ee:94:37:f9:c8:ed:e9:be:cf:88:c9: fe:71:8f:a4:04:1b:fb:aa:42:9e:5c:d9:41:77:88: 5a:3d:fc:dc:69:ed:40:e5:75:5a:53:42:a0:00:30: e9:b2:52:c0:a2:3f:df:2f:0f:b2:eb:be:82:99:09: 8a:d6:36:15:f0:c0:27:f4:53:c4:0e:28:4b:de:90: 36:e9:f5:6e:ca:c6:c7:cb:cb:33:6c:d9:91:e7:94: ed:e3:36:dc:64:7c:11:dc:e6:18:e4:03:de:c1:76: da:99:60:fd:ed:69:9e:63:10:2f:42:0b:bd:a8:9f: f1:d1:c2:59:c0:a2:b2:dd:5d:57:19:3c:46:e6:91: d0:c7:21:c1:7a:b8:45:96:80:2e:21:e8:3c:91:d0: 34:6a:85:9c:b9:fb:8e:b3:12:b8:e2:51:6b:47:bf: ba:bd:3c:b6:d9:b4:e0:84:91:ac:70:16:77:af:91: 12:f7:2c:4b:71:22:31:f6:35:e0:da:a9:d9:26:50: f3:9d:0d:de:79:56:c3:ce:76:5a:33:1e:90:8d:6e: 27:28:88:5b:8c:84:2e:c9:6f:ca:df:4c:aa:9c:08: 43:dd:71:5d:f1:04:d1:4e:c2:ba:f1:cf:bd:68:29: f1:5a:1f:36:ed:59:e5:64:98:42:eb:e1:da:74:e7: 43:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:73:ED:2D:C0:26:A8:04:8A:28:92:9B:DF:D6:42:C0:D3:21:0F:14 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:bf:51:d0:81:57:e9:8f:53:55:a4:33:1e:15:fa:0c:5c:00: ea:42:01:68:3c:aa:86:2a:31:25:59:16:82:85:7d:04:2d:84: 72:bd:46:9a:ac:f8:12:2f:2a:b2:fc:c6:c0:51:44:d6:fa:96: 07:a6:cf:00:e2:14:35:d4:83:27:83:f1:68:1b:7e:13:56:4b: d0:02:db:01:a3:12:6e:a8:fd:d6:92:90:01:56:7a:68:3a:f7: 44:1d:25:f5:1f:6a:11:06:4f:4e:18:b3:a7:f8:b5:b8:1d:5f: 42:f3:1f:a6:25:df:15:99:db:d7:52:54:c6:a0:54:67:5d:2d: 9f:66:8d:de:a3:d2:ec:75:06:45:cc:21:85:f2:f4:f4:6c:07: c9:6b:35:35:50:5f:df:0c:ae:a3:07:bb:12:66:df:d2:e1:94: 61:cf:46:77:1b:1d:ba:ca:63:1f:ec:6f:bb:08:97:fc:ae:b5: 81:4f:f1:dc:64:37:50:ae:7b:83:40:1e:3b:30:54:ce:bd:05: 2f:bf:79:ac:c7:c2:1c:b0:32:c9:4f:1e:8d:34:f9:8a:c5:9d: 74:d6:ae:18:c3:69:ec:5b:82:13:86:a3:d6:93:21:5c:8a:98: 01:77:c9:0b:51:69:c5:18:2a:6b:3d:96:80:75:6b:d0:63:84: 8c:a8:32:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjQxMTIyMjI0MjQyWhcNMjQxMTI5MjI0MjQyWjAYMRYwFAYD VQQDEw02NzQxMDhlMi0wOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFif7pQ3+cjt6b7PiMn+cY+kBBv7qkKeXNlBd4haPfzcae1A5XVaU0KgADDp slLAoj/fLw+y676CmQmK1jYV8MAn9FPEDihL3pA26fVuysbHy8szbNmR55Tt4zbc ZHwR3OYY5APewXbamWD97WmeYxAvQgu9qJ/x0cJZwKKy3V1XGTxG5pHQxyHBerhF loAuIeg8kdA0aoWcufuOsxK44lFrR7+6vTy22bTghJGscBZ3r5ES9yxLcSIx9jXg 2qnZJlDznQ3eeVbDznZaMx6QjW4nKIhbjIQuyW/K30yqnAhD3XFd8QTRTsK68c+9 aCnxWh827VnlZJhC6+HadOdD0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtz7S3A JqgEiiiSm9/WQsDTIQ8UMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAev1HQgVfpj1NVpDMeFfoMXADqQgFoPKqGKjElWRaChX0ELYRyvUaa rPgSLyqy/MbAUUTW+pYHps8A4hQ11IMng/FoG34TVkvQAtsBoxJuqP3WkpABVnpo OvdEHSX1H2oRBk9OGLOn+LW4HV9C8x+mJd8VmdvXUlTGoFRnXS2fZo3eo9LsdQZF zCGF8vT0bAfJazU1UF/fDK6jB7sSZt/S4ZRhz0Z3Gx26ymMf7G+7CJf8rrWBT/Hc ZDdQrnuDQB47MFTOvQUvv3msx8IcsDLJTx6NNPmKxZ101q4Yw2nsW4IThqPWkyFc ipgBd8kLUWnFGCprPZaAdWvQY4SMqDLk -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:32 2024 by rpki-client on console-fra.rpki-client.org