$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: bIq4t0ijmhvCg0By49ZCP7xz3ZZnOU5R2Djjn1IJXZU= Subject key identifier: 77:2C:DF:3F:73:54:CE:37:71:D2:17:4A:8F:DC:86:AE:79:73:90:6E Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 024B Signing time: Sat 23 Nov 2024 01:18:40 +0000 Manifest this update: Sat 23 Nov 2024 01:18:39 +0000 Manifest next update: Sat 30 Nov 2024 01:18:39 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: CT8+ubrGR+733cORXLptlM/f8BSi4afMmxAA4gRitf8=) 2: 2E18B9F4F91E11EC9E48A02BC4F9AE02.roa (hash: yAfRR/+DRnQdilFydbUlQYYyxtfNQlGh28KEstk9hsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Nov 23 01:18:39 2024 GMT Not After : Nov 30 01:18:39 2024 GMT Subject: CN=67412d6f-db63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:0a:05:c6:fc:ff:b5:a6:b5:c7:e3:3b:48: 9e:07:e2:b9:c7:0b:3d:3a:93:e6:c7:68:75:81:49: ca:1f:a5:22:c3:8a:a4:fa:c3:01:7e:48:85:4d:8d: b7:36:f2:72:40:e3:92:c6:61:63:0d:46:80:01:1e: b3:82:52:f6:38:9a:d6:83:c9:e4:21:ea:5b:14:98: cf:23:c8:e2:d8:56:6e:69:5f:47:28:26:86:8d:a4: 32:79:84:fb:8a:06:a3:80:1e:e4:b6:c1:e4:d3:84: 5c:e1:52:86:51:28:2c:f5:88:10:7d:af:fd:56:cc: b4:12:c8:3c:05:8a:02:72:b6:bc:e1:7d:f3:39:04: 99:92:e6:9f:1d:ad:5d:fc:e6:e5:c0:b3:81:04:d0: 7c:25:68:70:d5:81:9b:65:32:7a:d8:88:11:22:6c: 42:89:f0:54:d5:2e:75:c5:d9:1e:35:28:a4:da:23: 4b:d9:99:bd:c9:53:cd:e3:44:90:1b:9f:c2:60:0c: 28:5b:1b:f4:f2:db:6b:e2:dc:b2:6c:cb:7d:d7:9f: 6b:3a:a6:fb:ec:be:30:2e:07:eb:17:05:50:ce:97: 16:11:99:ad:fc:66:54:b7:d6:25:31:ce:27:3a:63: 80:6e:95:3c:3d:94:84:02:75:86:94:a6:19:4f:25: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2C:DF:3F:73:54:CE:37:71:D2:17:4A:8F:DC:86:AE:79:73:90:6E X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:15:04:81:cd:e0:6c:4f:4e:2a:a0:23:3b:5d:3b:a0:e6:07: 6e:5a:a3:ea:9e:e1:ea:a6:08:9f:57:f4:61:ea:8f:a3:cd:a1: c3:dc:6e:9d:8c:0c:fe:54:5e:69:73:bd:94:9a:28:5b:59:f3: f7:f1:2f:f7:f3:b6:55:c8:fa:1f:db:be:04:61:4d:eb:10:02: 31:97:73:38:ec:ce:fa:da:b7:45:d0:d3:ec:3c:fc:43:9d:4a: 6a:98:9e:fb:0c:b7:bb:6b:dd:fc:fc:0d:27:7d:2b:2e:56:d2: 5b:08:7f:56:d0:61:fe:0d:c0:9b:0f:f8:e8:b0:cd:1e:d8:ab: 59:32:00:43:6a:4c:0d:a4:f0:b8:fa:c8:cf:c0:9f:e4:a6:bd: 77:40:5e:24:67:bd:00:58:da:e2:60:51:48:80:10:c9:17:62: b3:d9:8d:f0:e1:89:1b:e2:00:a1:a7:79:f7:2e:8c:31:71:da: 15:a8:c6:67:19:19:df:1d:cf:25:04:81:7e:11:e8:84:27:94: 7d:53:46:64:3c:9b:58:17:e9:1c:f9:14:fd:35:42:fa:57:16: 69:ea:05:27:c1:24:66:80:57:cb:2e:79:99:2f:56:2e:82:88: 51:db:89:7d:c8:d2:fc:a2:68:41:3f:f8:e7:ae:2c:54:47:ce: 4e:65:30:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjQxMTIzMDExODM5WhcNMjQxMTMwMDExODM5WjAYMRYwFAYD VQQDEw02NzQxMmQ2Zi1kYjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrkKBcb8/7WmtcfjO0ieB+K5xws9OpPmx2h1gUnKH6Uiw4qk+sMBfkiFTY23 NvJyQOOSxmFjDUaAAR6zglL2OJrWg8nkIepbFJjPI8ji2FZuaV9HKCaGjaQyeYT7 igajgB7ktsHk04Rc4VKGUSgs9YgQfa/9Vsy0Esg8BYoCcra84X3zOQSZkuafHa1d /OblwLOBBNB8JWhw1YGbZTJ62IgRImxCifBU1S51xdkeNSik2iNL2Zm9yVPN40SQ G5/CYAwoWxv08ttr4tyybMt9159rOqb77L4wLgfrFwVQzpcWEZmt/GZUt9YlMc4n OmOAbpU8PZSEAnWGlKYZTyXKrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcs3z9z VM43cdIXSo/chq55c5BuMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfFQSBzeBsT04qoCM7XTug5gduWqPqnuHqpgifV/Rh6o+jzaHD3G6d jAz+VF5pc72UmihbWfP38S/387ZVyPof274EYU3rEAIxl3M47M762rdF0NPsPPxD nUpqmJ77DLe7a938/A0nfSsuVtJbCH9W0GH+DcCbD/josM0e2KtZMgBDakwNpPC4 +sjPwJ/kpr13QF4kZ70AWNriYFFIgBDJF2Kz2Y3w4Ykb4gChp3n3LowxcdoVqMZn GRnfHc8lBIF+EeiEJ5R9U0ZkPJtYF+kc+RT9NUL6VxZp6gUnwSRmgFfLLnmZL1Yu gohR24l9yNL8omhBP/jnrixUR85OZTAB -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org