$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: ufA01vniCL1T5+b43pbdmuYtu28dyqDRQrEfCcubVx0= Subject key identifier: 4A:AD:33:55:60:DA:8D:7A:BC:96:5D:59:7A:C2:FC:66:FC:3F:92:6E Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 342A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 3FD7 Signing time: Fri 22 Nov 2024 15:04:28 +0000 Manifest this update: Fri 22 Nov 2024 15:04:27 +0000 Manifest next update: Fri 29 Nov 2024 15:04:27 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: 7+dut/H8/elvaP1a0YkwTVQCeymiTgq0UFYMVOJxA4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13354 (0x342a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Nov 22 15:04:27 2024 GMT Not After : Nov 29 15:04:27 2024 GMT Subject: CN=67409d7c-6ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:58:66:6c:39:c4:73:f0:fe:48:9f:19:ce:88: ae:1e:f5:c2:84:59:91:48:46:a3:ab:32:c9:6c:5c: ce:c1:4f:f7:e1:dd:05:e6:ce:3f:a6:8a:ba:46:fc: 55:4a:0d:88:45:1e:46:c8:5e:77:c9:30:b1:d4:58: 5c:df:67:33:8a:e9:60:70:80:58:e5:d1:cb:cc:ba: 29:c5:41:2c:0c:86:3e:a0:49:81:5e:36:49:b8:02: 6d:3f:af:f7:7a:2d:ff:38:b8:24:46:0a:71:aa:0b: 1c:4c:92:ee:d3:ee:ac:ca:5f:66:a7:12:40:d1:a2: 6f:22:91:bb:79:4f:e1:bc:86:01:5c:30:85:6d:c5: 86:80:9d:ed:82:ed:6e:06:38:4e:7d:1b:30:ff:24: 9e:71:8e:c6:c1:69:76:3b:60:ab:a9:10:b1:de:f9: 55:fb:2d:ba:a1:26:56:db:6f:90:44:fc:fd:07:bd: a8:12:fd:96:58:63:fc:0f:00:c5:44:40:df:14:6d: 4a:f3:73:52:c9:dd:18:bc:dc:fe:76:0c:f4:40:7f: 68:ff:9c:2e:12:63:79:61:53:49:3b:ef:90:19:e3: a3:7d:6b:48:95:77:95:82:3a:85:b2:6c:59:51:ba: 51:46:c6:e1:fa:ba:50:23:e9:5a:f5:ba:57:3e:85: 0d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:AD:33:55:60:DA:8D:7A:BC:96:5D:59:7A:C2:FC:66:FC:3F:92:6E X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:1e:81:09:3f:23:65:51:e9:34:bb:10:e3:2f:01:40:23:fc: c2:e4:c2:1c:67:00:a2:12:cf:4d:8e:5a:90:d5:2a:fb:29:1c: 02:58:af:1a:73:c4:64:6e:61:ce:75:50:c8:69:70:77:85:22: ba:d4:fb:35:36:69:92:2c:71:de:98:5b:88:82:ef:83:98:9d: 22:43:28:7d:04:80:c7:f8:97:37:32:11:32:ba:8e:e9:ac:5f: d6:e0:e1:a0:03:29:c0:9b:d4:a5:ea:c3:f5:b8:46:dd:65:64: 0c:6c:7f:77:eb:71:92:d3:f9:c9:67:fc:de:1b:1f:60:2b:59: fa:14:f8:1d:81:3d:c5:24:c1:9e:9f:2a:85:d0:7b:56:b3:e9: 34:86:96:f7:5c:62:4a:fc:77:9e:ce:c1:bd:6a:a3:53:ad:33: 94:fb:f1:73:87:d0:d6:ac:69:13:e9:ab:d5:7b:2e:37:d8:34: eb:6b:51:71:04:ab:d6:44:1d:02:ae:f5:4e:22:77:50:3b:a9: 5f:ff:78:39:7d:0d:6c:04:e7:3a:8b:19:8d:cb:90:ab:b4:6d: a8:f6:13:83:a5:fc:bb:76:c7:a4:9a:00:cb:0a:89:59:1a:4b: c1:e5:91:f9:40:e6:44:6a:9b:2d:52:12:52:be:f1:3a:49:34: 97:e7:8f:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjQxMTIyMTUwNDI3WhcNMjQxMTI5MTUwNDI3WjAYMRYwFAYD VQQDEw02NzQwOWQ3Yy02ZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFhmbDnEc/D+SJ8ZzoiuHvXChFmRSEajqzLJbFzOwU/34d0F5s4/poq6RvxV Sg2IRR5GyF53yTCx1Fhc32cziulgcIBY5dHLzLopxUEsDIY+oEmBXjZJuAJtP6/3 ei3/OLgkRgpxqgscTJLu0+6syl9mpxJA0aJvIpG7eU/hvIYBXDCFbcWGgJ3tgu1u BjhOfRsw/ySecY7GwWl2O2CrqRCx3vlV+y26oSZW22+QRPz9B72oEv2WWGP8DwDF REDfFG1K83NSyd0YvNz+dgz0QH9o/5wuEmN5YVNJO++QGeOjfWtIlXeVgjqFsmxZ UbpRRsbh+rpQI+la9bpXPoUN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqtM1Vg 2o16vJZdWXrC/Gb8P5JuMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtHoEJPyNlUek0uxDjLwFAI/zC5MIcZwCiEs9NjlqQ1Sr7KRwCWK8a c8RkbmHOdVDIaXB3hSK61Ps1NmmSLHHemFuIgu+DmJ0iQyh9BIDH+Jc3MhEyuo7p rF/W4OGgAynAm9Sl6sP1uEbdZWQMbH9363GS0/nJZ/zeGx9gK1n6FPgdgT3FJMGe nyqF0HtWs+k0hpb3XGJK/HeezsG9aqNTrTOU+/Fzh9DWrGkT6avVey432DTra1Fx BKvWRB0CrvVOIndQO6lf/3g5fQ1sBOc6ixmNy5CrtG2o9hODpfy7dsekmgDLColZ GkvB5ZH5QOZEapstUhJSvvE6STSX54+8 -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org