$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft File: g1GgqJRYpHQmpXCgKQH45lQuguI.mft (raw, json) Hash identifier: +zwTEduF9ASdPF/9SpJyIB+IxT4DIKZWTWaYfxXEuMA= Subject key identifier: 33:C0:89:0C:0C:25:7F:97:AC:68:9B:9E:3A:2C:9F:7B:38:88:08:67 Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft Manifest number: 03D2 Signing time: Sat 23 Nov 2024 00:14:38 +0000 Manifest this update: Sat 23 Nov 2024 00:14:38 +0000 Manifest next update: Sat 30 Nov 2024 00:14:37 +0000 Files and hashes: 1: g1GgqJRYpHQmpXCgKQH45lQuguI.crl (hash: 7fodKSsnEL9V0XDAv8HnmhhHUTjioSk4053NoLJfSLA=) 2: D516EA2AA1E611EDABFD7D7FC4F9AE02.roa (hash: uo+yUsgFnzU14AqRZWM2Lz+UIF2PAx8lpiAS/6kec9k=) 3: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (hash: FU8xhnVOwfbqm6FrG/zWVEB3n1Nq5ojs+B77QpVCMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Validity Not Before: Nov 23 00:14:38 2024 GMT Not After : Nov 30 00:14:37 2024 GMT Subject: CN=67411e6e-7280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7d:59:7a:09:c2:31:ab:a5:b2:a3:31:7b:01: 6c:29:34:e0:95:4b:8b:77:5d:c1:08:9c:2a:4f:67: 52:a2:14:23:5e:19:68:d4:3b:90:e3:68:2e:78:fb: 38:89:90:dc:1b:cd:b8:25:73:d5:4d:5e:43:4e:7a: 19:b2:04:7e:d3:65:b1:61:dd:86:08:96:4a:be:31: e6:b2:41:29:3b:47:02:c2:e0:7c:41:76:aa:c6:c6: 24:bd:a2:5d:9a:d4:71:fa:74:50:2a:e9:e4:d9:db: 2d:07:a8:19:ce:35:70:8e:77:5a:99:d8:06:dc:26: d7:77:ed:15:7b:7d:19:7f:88:c3:3b:14:b5:56:b5: ad:ab:1b:f5:de:6e:d7:c4:a4:fb:67:ca:c9:29:d6: 04:22:c2:e2:d2:fe:16:02:2c:77:2a:cb:ee:fd:d9: cd:e6:40:9a:b4:10:4c:b6:7d:08:94:02:f3:94:12: f1:8e:66:d2:f5:86:d4:b8:aa:3e:b0:ea:97:e5:06: 63:6a:e2:73:b6:92:51:f6:82:7b:ca:2a:a6:d6:08: 2c:1f:63:0b:a9:d7:6a:66:e1:7b:f4:d3:06:d7:43: 82:e0:92:8a:6b:e1:ae:14:55:85:e0:81:7c:aa:c9: c3:bb:77:d6:1b:1b:4d:55:d6:51:9b:2b:46:bd:5d: 24:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C0:89:0C:0C:25:7F:97:AC:68:9B:9E:3A:2C:9F:7B:38:88:08:67 X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f0:9f:e5:f8:2b:f5:0e:c2:6e:f3:d1:12:cb:c3:bd:d1:15:42: 89:c5:db:1e:f3:7e:71:ca:06:5f:8d:2b:77:c5:e9:99:1f:50: ac:25:e4:34:e0:87:b6:85:4b:32:7a:7d:4a:cf:82:ca:e9:42: 7d:8c:0b:c3:7c:e7:29:9b:2d:1f:43:eb:7e:fa:b9:c3:bc:d5: e8:a1:37:93:18:76:b3:4e:e0:5e:44:7b:eb:0f:96:4b:40:2a: b1:98:cc:66:fe:24:b4:d2:d3:74:28:a9:b5:70:2e:fc:a2:74: aa:76:97:2e:82:67:e6:25:a7:ae:4c:ac:11:13:1d:2c:e8:6c: 3b:90:8c:c1:f7:16:d6:5a:bb:70:b0:0f:6a:ec:16:e8:0d:f2: 6b:4c:9f:7d:7e:b0:6d:d6:8d:55:dd:5d:59:81:fb:9e:eb:ea: 44:89:6e:dd:0d:59:e0:f1:93:fb:7b:43:9b:aa:89:cd:c5:02: 6f:7e:fe:1f:f9:77:41:24:4a:45:c8:a8:3f:15:4d:32:69:c0: 31:3f:70:d2:75:39:a0:2b:8c:56:a8:1f:6d:87:b8:db:36:c4: 8b:88:76:f0:a4:bc:83:2a:b1:81:91:8c:bc:16:3b:c7:9b:e7: 94:38:44:ec:1e:6d:24:b7:cd:2b:93:12:17:b8:96:02:30:d6: 90:1b:21:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjQxMTIzMDAxNDM4WhcNMjQxMTMwMDAxNDM3WjAYMRYwFAYD VQQDEw02NzQxMWU2ZS03MjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4n1ZegnCMaulsqMxewFsKTTglUuLd13BCJwqT2dSohQjXhlo1DuQ42guePs4 iZDcG824JXPVTV5DTnoZsgR+02WxYd2GCJZKvjHmskEpO0cCwuB8QXaqxsYkvaJd mtRx+nRQKunk2dstB6gZzjVwjndamdgG3CbXd+0Ve30Zf4jDOxS1VrWtqxv13m7X xKT7Z8rJKdYEIsLi0v4WAix3Ksvu/dnN5kCatBBMtn0IlALzlBLxjmbS9YbUuKo+ sOqX5QZjauJztpJR9oJ7yiqm1ggsH2MLqddqZuF79NMG10OC4JKKa+GuFFWF4IF8 qsnDu3fWGxtNVdZRmytGvV0keQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPAiQwM JX+XrGibnjosn3s4iAhnMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBI UW1wWENnS1FINDVsUXVndUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDwn+X4K/UOwm7z0RLLw73RFUKJxdse835xygZfjSt3xemZH1CsJeQ0 4Ie2hUsyen1Kz4LK6UJ9jAvDfOcpmy0fQ+t++rnDvNXooTeTGHazTuBeRHvrD5ZL QCqxmMxm/iS00tN0KKm1cC78onSqdpcugmfmJaeuTKwREx0s6Gw7kIzB9xbWWrtw sA9q7BboDfJrTJ99frBt1o1V3V1Zgfue6+pEiW7dDVng8ZP7e0ObqonNxQJvfv4f +XdBJEpFyKg/FU0yacAxP3DSdTmgK4xWqB9th7jbNsSLiHbwpLyDKrGBkYy8FjvH m+eUOETsHm0kt80rkxIXuJYCMNaQGyFj -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org