$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: BfqA4oDG4fJaP4d99LzVrZYQkZhD96iMKmYDCYGNN7k= Subject key identifier: 7A:3E:D0:1C:CA:5D:FD:CA:DD:2F:7B:B4:FB:72:0C:CF:3E:5C:73:60 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 029B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 0297 Signing time: Sat 23 Nov 2024 01:07:55 +0000 Manifest this update: Sat 23 Nov 2024 01:07:54 +0000 Manifest next update: Sat 30 Nov 2024 01:07:54 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: SolnCQLWYdc0uR7n5D9wO5fMfb3yuyuAFtGPv6hCa8Q=) 2: 4E8DA224547711EF9EDD014DC4F9AE02.roa (hash: befFFpozyGTTud2Z8wsHoOu5TcgcBDvFYmEhZzj+W4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: Nov 23 01:07:54 2024 GMT Not After : Nov 30 01:07:54 2024 GMT Subject: CN=67412aeb-33da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f6:2d:93:a7:f7:b1:fc:c0:5a:9a:eb:70:f8: bd:f5:04:43:26:ae:a5:4c:fa:72:bb:8f:81:82:0a: fa:06:3d:60:a3:c8:9b:a0:4f:9b:a9:c3:13:fe:ff: fc:a3:d5:f9:c3:53:41:43:70:51:f2:46:08:9b:4c: 11:32:bb:79:85:e2:97:86:ff:5d:e8:a2:73:ed:e3: 13:96:86:fa:1c:08:e1:91:91:68:6c:d8:72:90:18: fc:f0:e0:7e:52:76:f9:4c:ff:b4:06:fc:00:0c:22: b4:83:df:43:fc:29:08:ab:b1:8a:82:c5:be:eb:44: b7:29:cf:f9:ab:91:a2:94:df:28:40:0f:ed:5b:57: 12:17:71:cf:87:ff:e7:15:f2:b4:0d:7d:ee:55:e9: 5c:58:61:2e:dc:db:6f:60:65:60:5c:be:2b:34:8d: 9e:bc:0d:89:4b:1c:91:8f:e2:82:f3:ba:6f:8d:41: 20:82:94:49:4e:a9:eb:06:36:7a:8a:d9:04:e6:df: aa:b1:d6:4f:dc:ce:bb:4f:7d:e1:79:a8:ee:95:39: d2:21:b6:1e:5a:3c:43:82:35:c4:4f:40:84:f3:d3: cf:b9:fe:82:be:30:e3:83:c5:c3:c3:82:a9:19:2a: bc:cd:6b:62:8a:6c:1a:3d:9a:ae:47:b6:1b:d2:d9: 5f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3E:D0:1C:CA:5D:FD:CA:DD:2F:7B:B4:FB:72:0C:CF:3E:5C:73:60 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:38:4b:97:08:36:f8:2f:27:9d:c4:52:aa:d3:22:49:7b:57: 34:d0:b2:e2:68:7b:d8:44:44:87:06:83:1d:3e:c0:c3:3a:f1: c1:e6:7f:30:91:91:79:a0:b6:94:53:74:95:20:fd:06:ee:f2: f5:e8:1e:fc:1a:fd:78:15:9c:2c:f6:19:8f:56:3d:e5:d3:9a: 98:39:e9:28:aa:c6:e2:6f:55:0c:6d:2b:89:cf:ea:5a:61:96: 29:fc:ca:cb:bd:4f:0a:b6:94:50:5c:23:f3:20:8d:1c:ee:40: 9e:14:c4:9c:c1:86:0c:93:c7:b3:3d:a0:20:34:23:41:13:03: b2:84:56:a4:d6:0a:23:d8:fd:39:fe:5a:db:da:cb:bd:19:48: 20:69:f1:29:f3:99:10:48:2b:67:8f:77:bf:76:fe:9b:3b:e4: e0:c5:f4:e9:4a:bd:46:d8:77:08:d2:c3:9a:9b:dc:13:4e:b9: 42:7b:8d:cd:bc:b5:e8:77:b3:c0:39:5e:9d:a1:c3:29:d7:c4: 6c:c4:bf:f2:7e:e0:14:fd:25:45:35:4e:5a:8c:22:2b:a3:a5: c6:f9:05:1b:d8:7e:05:55:61:7a:38:81:8d:2a:ec:d3:b8:5e: a9:c2:c7:de:3b:24:fb:03:47:6d:c2:50:db:20:fd:e6:31:6d: 48:a1:7f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjQxMTIzMDEwNzU0WhcNMjQxMTMwMDEwNzU0WjAYMRYwFAYD VQQDEw02NzQxMmFlYi0zM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PYtk6f3sfzAWprrcPi99QRDJq6lTPpyu4+Bggr6Bj1go8iboE+bqcMT/v/8 o9X5w1NBQ3BR8kYIm0wRMrt5heKXhv9d6KJz7eMTlob6HAjhkZFobNhykBj88OB+ Unb5TP+0BvwADCK0g99D/CkIq7GKgsW+60S3Kc/5q5GilN8oQA/tW1cSF3HPh//n FfK0DX3uVelcWGEu3NtvYGVgXL4rNI2evA2JSxyRj+KC87pvjUEggpRJTqnrBjZ6 itkE5t+qsdZP3M67T33heajulTnSIbYeWjxDgjXET0CE89PPuf6CvjDjg8XDw4Kp GSq8zWtiimwaPZquR7Yb0tlfDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo+0BzK Xf3K3S97tPtyDM8+XHNgMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMOEuXCDb4LyedxFKq0yJJe1c00LLiaHvYRESHBoMdPsDDOvHB5n8w kZF5oLaUU3SVIP0G7vL16B78Gv14FZws9hmPVj3l05qYOekoqsbib1UMbSuJz+pa YZYp/MrLvU8KtpRQXCPzII0c7kCeFMScwYYMk8ezPaAgNCNBEwOyhFak1goj2P05 /lrb2su9GUggafEp85kQSCtnj3e/dv6bO+TgxfTpSr1G2HcI0sOam9wTTrlCe43N vLXod7PAOV6docMp18RsxL/yfuAU/SVFNU5ajCIro6XG+QUb2H4FVWF6OIGNKuzT uF6pwsfeOyT7A0dtwlDbIP3mMW1IoX9Q -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org