$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: dCgcrz4KLdzO60LGi0SPbs1UofzGDZZZwx/5hhTrBew= Subject key identifier: 01:90:93:6C:5F:5F:3D:A9:5C:9C:E4:A1:2A:A6:27:D8:66:CF:2D:43 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 04CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 04C7 Signing time: Fri 22 Nov 2024 23:22:58 +0000 Manifest this update: Fri 22 Nov 2024 23:22:58 +0000 Manifest next update: Fri 29 Nov 2024 23:22:58 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: Lwg3sC3v/FoiisH6Z8LZI2QCwwFGQf0jx8y9dttAbz0=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: BCW9/j7LqvtItwSSL2eqdZ4QWnNPXXatNAf+sQtgem4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: Nov 22 23:22:58 2024 GMT Not After : Nov 29 23:22:58 2024 GMT Subject: CN=67411252-e468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:eb:d7:e8:77:5d:bc:72:0a:52:3d:b8:2c:51: ca:da:a6:74:be:7f:cd:4f:04:cb:d7:36:7a:d8:cd: 33:71:16:19:4c:c6:41:5d:1f:60:6c:dc:e1:65:75: d6:e1:97:04:6f:5f:5c:63:a5:3e:75:f9:95:5a:79: c9:ec:80:b7:d5:4f:00:99:34:eb:ee:b9:9e:8f:3e: 64:71:8f:c2:d3:dd:69:b3:29:54:de:5c:47:17:2c: 8b:8e:21:d4:bf:26:84:ae:5f:82:d9:22:72:05:58: 3f:99:36:44:dd:42:9d:3e:0c:9b:37:b7:ff:f0:a8: 17:2a:4c:60:e0:95:7a:75:ca:58:ff:3b:cf:d0:c9: 4b:e1:32:08:23:5f:ef:f8:ec:c7:08:e5:27:87:ef: f1:21:36:6d:27:19:96:b6:e3:bc:3e:d9:58:6e:27: 97:27:41:1c:72:87:7d:7c:82:ac:75:f0:c6:7d:46: 16:2a:60:f8:e9:62:53:a5:1c:8d:71:d6:40:0c:3e: 6a:17:83:d6:93:1f:2a:bd:fb:9c:2d:2b:9b:86:6c: b8:36:da:65:b7:73:92:fa:e9:6c:01:4e:18:f0:12: 63:17:68:94:d1:22:99:67:ce:ff:b8:8d:1e:ae:a7: 1f:14:d4:5a:11:94:7e:4c:97:16:de:c3:76:f1:74: fa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:90:93:6C:5F:5F:3D:A9:5C:9C:E4:A1:2A:A6:27:D8:66:CF:2D:43 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ce:ae:f4:59:74:c1:fd:5b:07:2d:3b:a5:69:e1:54:d9:ed: cb:80:02:fe:61:ea:39:9f:48:34:fa:9d:60:94:4e:13:4f:4a: 8c:cc:41:08:8b:b3:04:b6:f9:d7:a5:89:a6:23:f6:e2:91:7e: ee:dc:65:f9:4e:35:31:85:47:ef:be:54:14:08:aa:e2:1a:38: 15:18:28:29:12:1a:14:94:a6:88:d3:19:21:08:f9:b6:0f:ec: 41:81:37:c6:a0:18:d4:70:76:3e:51:db:67:db:f5:c5:ad:33: 7a:1e:16:5b:4d:e3:76:1c:54:df:db:14:ae:57:ac:0f:60:9e: dc:78:47:67:43:35:ac:6a:07:53:76:52:d8:26:19:64:04:d0: 99:4a:79:0c:07:7a:0f:63:93:86:df:96:b0:1a:ea:1a:c9:bc: e3:77:17:67:eb:79:84:e9:04:2e:22:d3:36:b9:e7:cc:a0:b9: f0:92:8f:18:c9:ca:f8:e8:19:2f:7d:99:e2:08:0c:50:98:62: cc:1f:92:6f:cd:2a:aa:7e:fa:6c:f0:5f:99:07:b1:5a:f6:27: 89:8d:df:59:51:a3:56:0d:ef:62:a6:b7:5b:d1:24:68:5c:b1: 75:bd:4a:4a:6b:13:28:5d:fa:b0:32:be:e0:25:26:52:d1:9e: 9d:24:55:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjQxMTIyMjMyMjU4WhcNMjQxMTI5MjMyMjU4WjAYMRYwFAYD VQQDEw02NzQxMTI1Mi1lNDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uvX6HddvHIKUj24LFHK2qZ0vn/NTwTL1zZ62M0zcRYZTMZBXR9gbNzhZXXW 4ZcEb19cY6U+dfmVWnnJ7IC31U8AmTTr7rmejz5kcY/C091psylU3lxHFyyLjiHU vyaErl+C2SJyBVg/mTZE3UKdPgybN7f/8KgXKkxg4JV6dcpY/zvP0MlL4TIII1/v +OzHCOUnh+/xITZtJxmWtuO8PtlYbieXJ0Eccod9fIKsdfDGfUYWKmD46WJTpRyN cdZADD5qF4PWkx8qvfucLSubhmy4Ntplt3OS+ulsAU4Y8BJjF2iU0SKZZ87/uI0e rqcfFNRaEZR+TJcW3sN28XT63QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGQk2xf Xz2pXJzkoSqmJ9hmzy1DMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpzq70WXTB/VsHLTulaeFU2e3LgAL+Yeo5n0g0+p1glE4TT0qMzEEI i7MEtvnXpYmmI/bikX7u3GX5TjUxhUfvvlQUCKriGjgVGCgpEhoUlKaI0xkhCPm2 D+xBgTfGoBjUcHY+Udtn2/XFrTN6HhZbTeN2HFTf2xSuV6wPYJ7ceEdnQzWsagdT dlLYJhlkBNCZSnkMB3oPY5OG35awGuoaybzjdxdn63mE6QQuItM2uefMoLnwko8Y ycr46BkvfZniCAxQmGLMH5JvzSqqfvps8F+ZB7Fa9ieJjd9ZUaNWDe9iprdb0SRo XLF1vUpKaxMoXfqwMr7gJSZS0Z6dJFXt -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org