$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft File: GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft (raw, json) Hash identifier: RTuT84168vLo6uDsj1jvV9JgGfaXi+O1wB36J3HKk1c= Subject key identifier: 94:45:EF:57:C6:A6:7F:B5:8C:EF:69:4C:91:B2:3E:67:25:31:14:69 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 035B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft Manifest number: 033A Signing time: Sat 23 Nov 2024 00:44:39 +0000 Manifest this update: Sat 23 Nov 2024 00:44:38 +0000 Manifest next update: Sat 30 Nov 2024 00:44:38 +0000 Files and hashes: 1: GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl (hash: hcsERneJgWmYFzJfUHULRjxUg3dqAbOWBy7vlkgQARU=) 2: B58877BC91ED11EE854A5B66C4F9AE02.roa (hash: 20+nArJQoklbqelo84tiA44K9ewA3CBUwQ7ru3HILok=) 3: 7973008A236511EF83D4A940C4F9AE02.roa (hash: 9KQ/7a8fje8pzRxQ46TP2JAM/HqKmhraTzPB0vrCBLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Nov 23 00:44:38 2024 GMT Not After : Nov 30 00:44:38 2024 GMT Subject: CN=67412577-40c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a9:dd:55:fc:1e:3b:b6:67:d2:2e:10:7f:79: 0b:12:4c:c4:e4:a2:7d:8d:12:c0:6a:77:91:5f:4d: 51:d7:5e:d0:5b:1a:98:14:96:f7:e4:74:e4:6f:0e: 69:7f:26:20:ef:cc:77:18:5f:fc:cb:26:c9:50:42: 08:43:8c:db:68:36:1f:7a:de:66:dc:4a:49:fa:6f: 53:67:d5:15:f8:25:c4:5e:e5:d5:fc:1b:5f:8d:f8: cb:34:61:f5:ea:ef:22:25:ef:85:6d:58:e5:7f:51: 90:5c:24:fa:b1:12:9b:2c:ed:51:69:2e:b8:93:00: c7:a9:4d:61:96:a6:76:0a:3b:dc:9c:85:b4:bd:de: ae:f0:84:f3:7c:5a:a3:d2:7f:01:82:65:fe:2a:64: 59:07:eb:73:a9:29:47:1a:41:e8:b9:e6:90:a0:37: a3:62:90:72:ef:15:d8:61:76:32:f1:e7:9d:c7:7e: 8a:25:71:01:10:84:09:1f:04:8a:c2:f6:07:61:27: 8a:0c:36:6f:b5:de:0e:b7:4f:16:0d:9f:8e:5e:bf: df:56:6c:da:34:01:8e:a6:27:8b:ad:6a:a7:05:93: 20:63:d8:e7:2d:b0:3a:03:59:1c:9c:4d:67:59:3d: 88:f9:2d:4d:39:2a:ec:46:ef:e6:a5:7d:c0:e9:63: eb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:45:EF:57:C6:A6:7F:B5:8C:EF:69:4C:91:B2:3E:67:25:31:14:69 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:83:75:4e:cd:ad:66:93:cb:10:b9:bb:17:8e:c3:50:c1:2c: bf:f7:8b:31:e6:30:a5:89:e8:90:b4:42:c4:5f:1c:07:25:1d: 94:25:65:7d:c7:c8:cc:72:34:20:16:58:73:dd:4d:6e:19:a9: 28:d5:13:a6:cf:66:c9:c1:a4:d9:84:55:01:e9:b6:0f:d3:4b: 30:b1:6f:96:6d:22:46:ec:3e:07:e2:98:1b:c7:99:56:a3:c7: e7:eb:1b:a7:37:cf:9e:f7:24:e8:82:96:54:67:6d:2e:ce:be: 8b:5d:fd:b8:f2:3f:81:73:9c:5e:bd:0f:ac:f4:bb:52:09:0d: cf:dd:78:a8:2c:f3:71:e2:ea:dd:ad:08:d3:f1:35:a2:65:17: cc:e7:c6:e1:6b:e0:84:46:2e:85:56:e0:29:01:96:81:98:d3: 89:1b:3f:b3:11:c0:6f:32:0a:62:31:24:7d:a1:7e:7c:f5:99: 38:b5:71:81:c5:a8:4f:12:8c:e5:5e:45:b2:46:68:a2:17:cd: 4f:fc:d9:30:ca:ef:60:85:49:38:39:5a:2e:af:f8:88:24:fc: c4:24:e2:ef:ec:d9:25:a4:02:64:c6:df:d1:70:6c:56:6d:3e: e9:ea:2e:a7:93:33:ec:ae:93:c6:fc:d7:62:00:ef:63:7c:c1: e2:81:01:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjQxMTIzMDA0NDM4WhcNMjQxMTMwMDA0NDM4WjAYMRYwFAYD VQQDEw02NzQxMjU3Ny00MGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqndVfweO7Zn0i4Qf3kLEkzE5KJ9jRLAaneRX01R117QWxqYFJb35HTkbw5p fyYg78x3GF/8yybJUEIIQ4zbaDYfet5m3EpJ+m9TZ9UV+CXEXuXV/BtfjfjLNGH1 6u8iJe+FbVjlf1GQXCT6sRKbLO1RaS64kwDHqU1hlqZ2CjvcnIW0vd6u8ITzfFqj 0n8BgmX+KmRZB+tzqSlHGkHoueaQoDejYpBy7xXYYXYy8eedx36KJXEBEIQJHwSK wvYHYSeKDDZvtd4Ot08WDZ+OXr/fVmzaNAGOpieLrWqnBZMgY9jnLbA6A1kcnE1n WT2I+S1NOSrsRu/mpX3A6WPr5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRF71fG pn+1jO9pTJGyPmclMRRpMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDcyMC8yMDlGOEI3NEE3OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZM X0c2UkkyeXdodFQtS3dtVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWg3VOza1mk8sQubsXjsNQwSy/94sx5jClieiQtELEXxwHJR2UJWV9 x8jMcjQgFlhz3U1uGako1ROmz2bJwaTZhFUB6bYP00swsW+WbSJG7D4H4pgbx5lW o8fn6xunN8+e9yTogpZUZ20uzr6LXf248j+Bc5xevQ+s9LtSCQ3P3XioLPNx4urd rQjT8TWiZRfM58bha+CERi6FVuApAZaBmNOJGz+zEcBvMgpiMSR9oX589Zk4tXGB xahPEozlXkWyRmiiF81P/Nkwyu9ghUk4OVour/iIJPzEJOLv7NklpAJkxt/RcGxW bT7p6i6nkzPsrpPG/NdiAO9jfMHigQF5 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org