$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft File: gFLXiRiFOIg0vD1ozrIclvdiXmc.mft (raw, json) Hash identifier: D7br96jIva/yaxLLPXtZ2Nwzj1tviOZqZTUR91lmc8Y= Subject key identifier: 8D:D3:5F:22:15:F2:B9:90:11:0E:C9:E8:B2:DA:7A:17:D0:43:A2:97 Authority key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 Certificate issuer: /CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Certificate serial: 1DF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft Manifest number: 1DF7 Signing time: Fri 22 Nov 2024 16:05:22 +0000 Manifest this update: Fri 22 Nov 2024 16:05:21 +0000 Manifest next update: Fri 29 Nov 2024 16:05:21 +0000 Files and hashes: 1: gFLXiRiFOIg0vD1ozrIclvdiXmc.crl (hash: sWKOE72pTBTh9ailVdOPOSIBJYt0tYtRsxNahDa8AtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7672 (0x1df8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Validity Not Before: Nov 22 16:05:21 2024 GMT Not After : Nov 29 16:05:21 2024 GMT Subject: CN=6740abc1-a98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:f9:ef:d6:f5:1f:ec:e2:bc:de:dc:71:e7: 3a:2d:ae:c5:f8:26:83:43:7a:e8:df:b7:d1:db:74: 80:b9:2b:f2:37:ff:41:b3:ed:3c:74:f2:e4:d4:1c: 47:e0:63:c6:f2:8f:26:ee:2e:a9:6c:3e:6e:f2:1f: a8:dd:5a:f3:31:cc:71:d7:3a:a8:9a:c6:aa:ea:aa: 0d:5b:9b:b7:cc:9d:88:fd:fc:87:0e:4f:2c:18:db: dc:82:ff:b6:4d:3a:9e:09:25:7a:9b:f7:92:c2:77: de:b8:31:d0:bd:19:7c:34:e3:61:0c:27:9f:41:4d: 21:fc:6c:88:2e:95:81:e4:3f:7c:b8:d5:0e:62:b9: 08:06:65:55:db:14:f3:dd:f3:24:d8:d6:bd:ed:c6: d9:2c:71:ed:53:f4:60:f3:90:c0:0f:63:9a:9c:af: 35:e8:b1:a5:3b:d5:c4:38:23:6b:32:93:2c:e3:5b: 12:39:86:19:92:e4:e2:a2:3b:26:06:a6:47:eb:19: 19:a5:a7:bc:64:ae:10:e3:cd:c1:57:5b:86:71:c7: 70:de:9d:dd:a9:11:4d:df:5d:80:62:e3:0c:9d:ce: c5:fa:9a:e5:15:b4:b2:3b:ad:82:2a:d2:76:ff:81: bb:41:43:8f:80:54:25:0e:64:ce:4f:6e:88:89:4d: 35:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D3:5F:22:15:F2:B9:90:11:0E:C9:E8:B2:DA:7A:17:D0:43:A2:97 X509v3 Authority Key Identifier: keyid:80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:23:94:9b:96:3e:cb:62:e6:b8:36:e8:2c:af:01:c1:ef:b6: 9d:d1:83:bb:5f:a1:76:c2:7d:a2:b8:52:18:94:60:72:ce:8e: f4:50:04:25:c1:d9:c6:49:c7:47:c2:5e:23:15:0c:85:72:c1: 4f:1c:b9:0f:35:78:be:87:9b:aa:a7:a9:11:0f:24:84:f0:a3: c4:7a:94:d3:21:b8:4d:13:ea:ce:cd:42:66:ed:00:ac:4b:1b: 3f:84:e0:86:fb:f0:75:8b:c8:00:d0:9f:af:e8:9c:19:b5:ce: 5a:36:88:6c:6e:2b:e4:50:50:9e:81:9c:c3:96:5a:96:e2:e2: 62:50:ca:20:5d:b5:69:c4:9d:5f:86:70:e3:da:f7:1b:3d:c6: bf:b5:4c:e7:24:93:c5:e2:e7:f9:19:d7:ed:e3:93:99:24:d2: bd:eb:3d:74:76:03:83:3c:71:aa:5b:1d:dd:9f:48:07:88:14: 30:1d:df:6b:38:2a:c5:b4:76:42:f4:86:d3:ce:26:84:17:3b: 5e:70:0a:91:12:cf:82:0c:f6:2e:e1:0d:4e:2f:60:53:6a:9b: 71:9b:a6:0e:23:83:fc:c0:5f:7b:e5:97:f0:76:af:11:07:05: e2:bc:57:36:69:07:61:8e:94:87:0d:67:c7:0d:af:e7:90:22: 99:c3:e3:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2OENFQjIxQzk2 Rjc2MjVFNjcwHhcNMjQxMTIyMTYwNTIxWhcNMjQxMTI5MTYwNTIxWjAYMRYwFAYD VQQDEw02NzQwYWJjMS1hOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNL579b1H+zivN7ccec6La7F+CaDQ3ro37fR23SAuSvyN/9Bs+08dPLk1BxH 4GPG8o8m7i6pbD5u8h+o3VrzMcxx1zqomsaq6qoNW5u3zJ2I/fyHDk8sGNvcgv+2 TTqeCSV6m/eSwnfeuDHQvRl8NONhDCefQU0h/GyILpWB5D98uNUOYrkIBmVV2xTz 3fMk2Na97cbZLHHtU/Rg85DAD2OanK816LGlO9XEOCNrMpMs41sSOYYZkuTiojsm BqZH6xkZpae8ZK4Q483BV1uGccdw3p3dqRFN312AYuMMnc7F+prlFbSyO62CKtJ2 /4G7QUOPgFQlDmTOT26IiU010wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3TXyIV 8rmQEQ7J6LLaehfQQ6KXMB8GA1UdIwQYMBaAFIBS14kYhTiINLw9aM6yHJb3Yl5n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU4OS9GMjcyNkExODc2 M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9JZzB2RDFvenJJY2x2ZGlY bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dGTFhpUmlGT0lnMHZEMW96ckljbHZkaVhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9J ZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSI5Sblj7LYua4NugsrwHB77ad0YO7X6F2wn2iuFIYlGByzo70UAQl wdnGScdHwl4jFQyFcsFPHLkPNXi+h5uqp6kRDySE8KPEepTTIbhNE+rOzUJm7QCs Sxs/hOCG+/B1i8gA0J+v6JwZtc5aNohsbivkUFCegZzDllqW4uJiUMogXbVpxJ1f hnDj2vcbPca/tUznJJPF4uf5Gdft45OZJNK96z10dgODPHGqWx3dn0gHiBQwHd9r OCrFtHZC9IbTziaEFztecAqREs+CDPYu4Q1OL2BTaptxm6YOI4P8wF975Zfwdq8R BwXivFc2aQdhjpSHDWfHDa/nkCKZw+Pn -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org