$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: abpJWHD5KfkM572aUDvb4mutXeUyd5MMVrZRuPA1cwc= Subject key identifier: B5:85:38:D1:F9:2C:D0:FE:CB:8A:A3:CF:0D:AB:05:60:01:B9:B1:9B Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 0778 Signing time: Wed 20 Nov 2024 20:24:28 +0000 Manifest this update: Wed 20 Nov 2024 20:24:28 +0000 Manifest next update: Wed 27 Nov 2024 20:24:28 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: qgrjEHYWm2cBN8qpXYv7/8pXDYRGLICB7hTTRdZcFhs=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: X9o/v5wYJkFdzl1FkFmnIPmrW4Pro2cDkxKRbU0epdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Nov 20 20:24:28 2024 GMT Not After : Nov 27 20:24:28 2024 GMT Subject: CN=673e457c-7278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:62:46:ab:cf:fb:d9:cd:63:dd:be:b7:5f:da: e3:1e:df:46:d8:7f:c8:02:d0:cc:c6:ed:e7:4b:c2: d1:4a:81:a9:4c:d3:21:76:1c:18:a2:1f:8f:cf:3e: 7f:63:23:b2:05:85:44:ae:98:12:82:67:62:91:be: 0e:be:4f:c2:32:1b:2f:f3:6c:ef:d0:ba:18:e5:e0: a7:c3:1a:bb:62:78:d4:a0:2b:1d:3b:f3:fd:f9:78: 43:be:5b:1a:74:40:d4:11:89:54:77:3e:37:67:3e: 69:cd:ff:8e:80:2e:73:14:bf:8b:db:66:7f:e3:cf: a1:51:ac:de:aa:bf:1b:2e:6c:5b:03:db:b0:04:bc: df:5d:2b:ba:70:13:61:98:c8:8d:ff:6c:44:cf:63: d2:dd:85:aa:0b:d2:5b:c8:10:77:4e:80:07:a2:5a: 11:4d:b3:5c:1f:2c:e8:26:6e:2c:96:65:7c:54:d4: 5a:b9:ae:c0:50:e6:ef:50:ed:e5:7c:c2:17:ce:f2: 2b:b2:90:f1:a7:b5:b9:b9:c6:9a:af:25:4b:5b:7c: 5e:98:44:4a:87:99:e0:06:bb:d7:9d:78:55:4f:3a: 60:cf:1c:a1:ad:1f:b6:8b:81:48:57:cd:e1:c8:7c: f0:b0:d2:23:01:f4:cb:4c:f6:0a:4b:c0:40:60:71: 4d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:85:38:D1:F9:2C:D0:FE:CB:8A:A3:CF:0D:AB:05:60:01:B9:B1:9B X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:da:89:39:47:b9:d8:4e:47:02:54:b9:a7:f2:fd:24:0d:32: a0:4f:48:bf:45:93:47:26:06:fc:17:15:48:43:9e:66:5b:ef: ff:03:c9:93:37:6c:98:4e:41:4f:bf:8a:79:16:d8:67:c8:01: 0b:6e:b3:b4:05:b1:77:23:46:64:da:1d:dd:4b:5b:85:04:71: e0:e9:0d:08:60:24:09:01:a7:0d:2c:96:7c:c9:67:77:1d:96: 24:24:1f:bc:15:79:73:c2:8b:68:9b:67:1c:1b:d0:2b:2c:c5: 20:09:1e:ce:9d:16:31:7e:cf:c9:d9:e5:52:37:b6:a1:81:59: d1:1d:90:4c:f4:e8:ed:b7:fe:ae:83:16:9e:99:fa:63:10:49: f7:8e:bd:49:da:42:34:23:bb:a1:7f:9a:ea:87:fc:08:a1:2d: 89:50:6b:c6:62:7b:da:04:aa:6c:7a:c5:b6:e2:d6:78:b7:8b: fa:ca:85:36:0e:c6:42:36:48:c8:62:ab:39:8b:41:0d:c5:17: ec:d9:d6:d3:fd:cc:63:77:32:08:ed:54:cf:fa:38:6c:e6:93: db:53:22:91:0b:bd:b3:3c:19:85:c8:5d:fd:be:93:52:d0:5e: 0e:a5:ad:8c:a3:db:12:d6:6f:75:89:4c:e8:8c:07:1e:b6:8d: a9:70:2c:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjQxMTIwMjAyNDI4WhcNMjQxMTI3MjAyNDI4WjAYMRYwFAYD VQQDEw02NzNlNDU3Yy03Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+2JGq8/72c1j3b63X9rjHt9G2H/IAtDMxu3nS8LRSoGpTNMhdhwYoh+Pzz5/ YyOyBYVErpgSgmdikb4Ovk/CMhsv82zv0LoY5eCnwxq7YnjUoCsdO/P9+XhDvlsa dEDUEYlUdz43Zz5pzf+OgC5zFL+L22Z/48+hUazeqr8bLmxbA9uwBLzfXSu6cBNh mMiN/2xEz2PS3YWqC9JbyBB3ToAHoloRTbNcHyzoJm4slmV8VNRaua7AUObvUO3l fMIXzvIrspDxp7W5ucaaryVLW3xemERKh5ngBrvXnXhVTzpgzxyhrR+2i4FIV83h yHzwsNIjAfTLTPYKS8BAYHFNqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWFONH5 LND+y4qjzw2rBWABubGbMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf2ok5R7nYTkcCVLmn8v0kDTKgT0i/RZNHJgb8FxVIQ55mW+//A8mT N2yYTkFPv4p5FthnyAELbrO0BbF3I0Zk2h3dS1uFBHHg6Q0IYCQJAacNLJZ8yWd3 HZYkJB+8FXlzwotom2ccG9ArLMUgCR7OnRYxfs/J2eVSN7ahgVnRHZBM9Ojtt/6u gxaemfpjEEn3jr1J2kI0I7uhf5rqh/wIoS2JUGvGYnvaBKpsesW24tZ4t4v6yoU2 DsZCNkjIYqs5i0ENxRfs2dbT/cxjdzII7VTP+jhs5pPbUyKRC72zPBmFyF39vpNS 0F4Opa2Mo9sS1m91iUzojAceto2pcCxJ -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:02 2024 by rpki-client on console-ams.rpki-client.org