$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft File: GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft (raw, json) Hash identifier: NeLXTeUehr6Wnw56NmADqPcwSL0FWa4PJD5xE2EXfg4= Subject key identifier: 21:13:4B:04:07:6B:C6:B1:E8:01:37:B1:03:E8:8E:66:5E:36:1E:68 Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft Manifest number: 020D Signing time: Sat 23 Nov 2024 01:34:08 +0000 Manifest this update: Sat 23 Nov 2024 01:34:07 +0000 Manifest next update: Sat 30 Nov 2024 01:34:07 +0000 Files and hashes: 1: GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl (hash: KxXEUi4JaNniww41nMcGLVJr+cs0Ze/crNc0ehrz0gc=) 2: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (hash: AMI8B01oJYBvuALPO9a5072lSyPAKpdtjtQhc2T4uR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: Nov 23 01:34:07 2024 GMT Not After : Nov 30 01:34:07 2024 GMT Subject: CN=67413110-9e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:ef:fe:3d:b2:98:a4:e1:59:8a:07:a6:f4: 7b:20:a4:9f:d0:a4:1e:9c:ca:c9:1c:5f:fc:ac:b5: f7:80:f0:8e:49:16:e0:fa:f4:18:60:ac:91:51:ac: fa:69:b8:9a:dc:1c:fa:89:e1:d0:62:44:12:ba:13: f7:21:8c:2d:d9:ee:f6:e9:0e:26:cf:9d:d8:90:7d: 15:f7:ce:4e:8b:dc:ae:19:0e:7f:f9:f7:15:f5:ce: a3:d5:01:15:44:6b:b9:54:84:3b:92:cb:5c:9f:48: cb:b1:8a:7b:27:ca:16:52:a6:6c:d7:f6:7e:ea:88: d4:0c:c5:c8:95:d2:29:49:11:a8:1c:fb:ad:6b:8f: a7:cd:67:d2:28:6c:8f:0c:88:d0:61:40:83:f8:b4: ba:1d:19:87:15:94:05:67:e6:3c:26:51:df:cf:43: 26:14:44:cc:17:8e:36:67:b8:28:0b:e7:b2:ae:96: fa:39:50:a1:71:52:b5:d9:87:d2:c3:6c:98:8a:87: c6:c6:29:6d:90:75:a4:f0:39:aa:9e:4c:e2:96:5d: ca:b5:b4:5c:cd:1c:f8:ef:2a:92:ff:76:c4:6b:36: eb:eb:41:c4:ba:7c:09:83:07:ff:c0:ac:06:c5:c4: 05:e3:46:c8:9c:c1:9f:02:6a:ce:3a:12:a3:b0:f9: 67:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:13:4B:04:07:6B:C6:B1:E8:01:37:B1:03:E8:8E:66:5E:36:1E:68 X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e7:ba:10:ae:e8:18:50:e1:d7:a5:cf:d8:1a:a4:21:8a:54: b5:59:48:8c:de:c3:47:e6:f6:91:04:97:00:dc:67:a7:a8:bb: b4:e6:0a:67:a8:01:2b:e6:85:f3:01:48:dd:26:27:d8:82:f9: d4:36:eb:72:48:b3:4f:8d:14:b8:0e:93:0c:34:c6:37:15:24: 1d:0d:4f:43:9e:0b:03:21:7a:f5:08:5d:30:98:e0:03:9e:f7: a0:3f:40:dc:34:ad:25:ea:fc:03:88:f6:d5:16:33:76:c1:94: cb:cb:74:ad:f0:8a:da:7c:c8:85:1c:3a:48:fb:fd:ba:38:2a: 40:9e:37:b7:88:13:4f:ef:df:5b:33:44:ac:5f:9e:2b:a4:68: 23:98:f5:b8:7f:b4:2f:98:6c:35:5a:c4:83:fc:66:85:7b:b3: 01:e2:03:1a:b8:cb:56:be:52:33:02:90:0a:23:b7:ae:2c:4b: d1:ec:4e:ff:00:c9:18:3b:2e:c5:b6:65:5d:a4:df:8c:3d:b5: 00:8d:76:9d:44:f3:90:25:73:53:32:64:36:fc:d3:dc:26:d8: 0b:bf:5a:93:3f:e9:67:fa:9d:58:4a:d6:a6:56:43:86:c0:80: bf:dd:82:fa:d6:26:b3:c9:7b:75:79:34:7c:8d:7c:0d:da:fd: ac:59:83:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjQxMTIzMDEzNDA3WhcNMjQxMTMwMDEzNDA3WjAYMRYwFAYD VQQDEw02NzQxMzExMC05ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZjv/j2ymKThWYoHpvR7IKSf0KQenMrJHF/8rLX3gPCOSRbg+vQYYKyRUaz6 abia3Bz6ieHQYkQSuhP3IYwt2e726Q4mz53YkH0V985Oi9yuGQ5/+fcV9c6j1QEV RGu5VIQ7kstcn0jLsYp7J8oWUqZs1/Z+6ojUDMXIldIpSRGoHPuta4+nzWfSKGyP DIjQYUCD+LS6HRmHFZQFZ+Y8JlHfz0MmFETMF442Z7goC+eyrpb6OVChcVK12YfS w2yYiofGxiltkHWk8Dmqnkzill3KtbRczRz47yqS/3bEazbr60HEunwJgwf/wKwG xcQF40bInMGfAmrOOhKjsPlnawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCETSwQH a8ax6AE3sQPojmZeNh5oMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTY5Qy85RUIwNzk5ODEyN0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9L T20xSXp3UWp4YlJpTUFXZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA957oQrugYUOHXpc/YGqQhilS1WUiM3sNH5vaRBJcA3GenqLu05gpn qAEr5oXzAUjdJifYgvnUNutySLNPjRS4DpMMNMY3FSQdDU9DngsDIXr1CF0wmOAD nvegP0DcNK0l6vwDiPbVFjN2wZTLy3St8IrafMiFHDpI+/26OCpAnje3iBNP799b M0SsX54rpGgjmPW4f7QvmGw1WsSD/GaFe7MB4gMauMtWvlIzApAKI7euLEvR7E7/ AMkYOy7FtmVdpN+MPbUAjXadRPOQJXNTMmQ2/NPcJtgLv1qTP+ln+p1YStamVkOG wIC/3YL61iazyXt1eTR8jXwN2v2sWYNe -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org