$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: Hpek/1LFVJv6J6Nju2apcKqWsU+sXMa2qZplWYT5wMo= Subject key identifier: 73:ED:34:1F:44:20:62:F3:69:4B:66:AD:25:6C:95:55:32:13:C8:D7 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: BE Signing time: Sat 23 Nov 2024 03:58:28 +0000 Manifest this update: Sat 23 Nov 2024 03:58:28 +0000 Manifest next update: Sat 30 Nov 2024 03:58:28 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: x6cinDakDRSIecg8eUZlxCRdHoVbOs+N/fat/r5oEEQ=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: vYR9SjpP8jHKczAPek7eoEYqF72FxyEH5VDwe9plJnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Nov 23 03:58:28 2024 GMT Not After : Nov 30 03:58:28 2024 GMT Subject: CN=674152e4-0f23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:03:86:b8:a7:5c:b9:56:1e:85:8d:47:d5:cc: ed:64:37:f4:77:d9:8d:ac:18:85:ff:d5:f9:1b:a1: a6:d0:e6:db:c9:e2:11:c3:11:0d:ce:3d:dd:42:0c: 9c:14:4e:7e:bd:31:c4:72:ca:d8:43:84:92:22:92: 23:59:90:06:64:21:12:4c:1b:dc:8e:e0:82:43:52: 14:33:c5:ad:3c:a1:8a:45:ef:30:59:a7:e3:f2:db: f1:a4:37:ef:2f:b7:ad:08:0c:30:b6:98:30:dc:26: de:50:3f:24:b3:65:8f:d2:ae:c7:1a:4d:72:6b:23: 16:b7:eb:70:4b:12:e0:95:1e:02:05:7e:bb:ed:a6: 9e:54:fa:fc:e6:22:ae:3a:bb:bc:a8:e6:87:6d:93: 2d:e1:a7:6f:1d:40:f2:60:31:6f:b1:5c:e5:9d:1f: e6:18:18:cf:9c:b0:12:5d:89:e7:d9:7f:ad:c8:d2: 08:11:2a:42:87:ff:74:27:cd:07:5f:95:5c:3b:a8: b2:10:bf:4b:17:1d:44:59:b3:54:43:ec:2c:dd:d7: 99:64:42:97:bf:60:8e:01:04:01:3d:a7:e7:6b:75: 27:ee:e6:17:2a:bf:0b:2e:e3:ae:51:8a:a9:a7:6c: 80:0f:bd:ca:29:7e:91:7c:60:d3:ff:42:a0:d7:e8: db:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:ED:34:1F:44:20:62:F3:69:4B:66:AD:25:6C:95:55:32:13:C8:D7 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:03:95:8f:bf:d6:2c:33:25:fc:7a:eb:d5:2b:45:ac:9a:22: cc:92:7c:d2:25:41:f3:af:2c:bd:24:c6:b1:98:dd:8d:09:02: 74:62:3f:b9:fd:5f:5b:f5:bd:5f:ef:ae:9a:79:0f:20:a4:35: ae:b9:d7:5f:cc:ac:d5:7a:f4:5a:83:27:c0:9a:c3:ff:f9:77: 6c:c7:c6:9f:5a:77:54:3d:46:8e:9b:05:ad:54:ba:a1:40:96: 04:df:6f:e7:7c:2a:34:1e:57:c3:21:64:e8:17:cf:fd:1c:61: 45:fd:c1:56:6c:97:8b:41:71:a0:8c:30:81:cc:68:7d:0b:55: 7e:a2:84:08:56:b8:64:c1:05:2c:3a:a8:a5:6b:46:44:f0:17: 2a:76:10:83:5a:ac:5a:90:88:91:8d:8b:0c:0c:b4:db:b8:a7: cf:7d:00:25:d9:d7:14:39:c2:26:56:66:a5:24:81:7f:f3:16: ba:43:b2:11:6b:eb:8f:72:b2:db:09:5d:de:a3:6e:70:5f:77: 77:b0:47:9f:02:f3:b1:01:72:d2:1f:b5:df:f8:18:96:fe:a8: 14:b3:97:bf:22:26:93:39:a2:7b:40:e7:8f:53:20:4a:95:9b: 34:ef:1a:f8:ea:e7:5e:42:1a:e2:4f:cb:28:b2:92:5c:17:11: 52:af:73:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjQxMTIzMDM1ODI4WhcNMjQxMTMwMDM1ODI4WjAYMRYwFAYD VQQDEw02NzQxNTJlNC0wZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAOGuKdcuVYehY1H1cztZDf0d9mNrBiF/9X5G6Gm0ObbyeIRwxENzj3dQgyc FE5+vTHEcsrYQ4SSIpIjWZAGZCESTBvcjuCCQ1IUM8WtPKGKRe8wWafj8tvxpDfv L7etCAwwtpgw3CbeUD8ks2WP0q7HGk1yayMWt+twSxLglR4CBX677aaeVPr85iKu Oru8qOaHbZMt4advHUDyYDFvsVzlnR/mGBjPnLASXYnn2X+tyNIIESpCh/90J80H X5VcO6iyEL9LFx1EWbNUQ+ws3deZZEKXv2COAQQBPafna3Un7uYXKr8LLuOuUYqp p2yAD73KKX6RfGDT/0Kg1+jbnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPtNB9E IGLzaUtmrSVslVUyE8jXMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrA5WPv9YsMyX8euvVK0WsmiLMknzSJUHzryy9JMaxmN2NCQJ0Yj+5 /V9b9b1f766aeQ8gpDWuuddfzKzVevRagyfAmsP/+Xdsx8afWndUPUaOmwWtVLqh QJYE32/nfCo0HlfDIWToF8/9HGFF/cFWbJeLQXGgjDCBzGh9C1V+ooQIVrhkwQUs Oqila0ZE8BcqdhCDWqxakIiRjYsMDLTbuKfPfQAl2dcUOcImVmalJIF/8xa6Q7IR a+uPcrLbCV3eo25wX3d3sEefAvOxAXLSH7Xf+BiW/qgUs5e/IiaTOaJ7QOePUyBK lZs07xr46udeQhriT8sospJcFxFSr3O/ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org