$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: gsUY6QJBycMuBnJT2W/4/T/POoWHiD0KphojPG9VqOU= Subject key identifier: 82:F0:B0:8A:58:CC:F6:07:4F:AF:29:4B:FB:3A:14:4F:B8:5E:35:1D Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: 20 Signing time: Thu 19 Sep 2024 06:08:52 +0000 Manifest this update: Thu 19 Sep 2024 06:08:51 +0000 Manifest next update: Thu 26 Sep 2024 06:08:51 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: AqLpmAlqMyc8T44e9+nWa/apgGZR5wQ/Z+vCWiC1X4A=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: 6dpnSfSfmjTs18NuhrZbYY2YJ9hNtxY1uesaee9+WkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Sep 19 06:08:51 2024 GMT Not After : Sep 26 06:08:51 2024 GMT Subject: CN=66ebbff3-b456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:84:89:59:0d:bc:9c:86:87:5d:8a:0e:d2: 8b:68:32:94:a5:26:f4:a8:38:58:e0:89:00:65:f6: 3d:14:4f:6f:cc:07:17:bb:e1:de:24:4d:4b:5a:99: 6c:3f:cb:c6:ab:a6:f7:7e:5c:5a:ac:55:a2:ba:fd: a3:5f:bf:f3:24:88:0a:c5:81:f7:15:8b:4b:e3:6d: d2:d9:4b:ff:75:bb:59:f9:dc:8f:66:5c:c9:f9:f2: 1a:8c:ed:25:ae:2c:22:dd:56:29:64:bc:90:99:c3: 9b:1c:9e:b9:60:b2:b7:12:d0:e0:00:f5:63:cd:5a: 89:17:ef:81:6d:3e:2c:f9:2d:c4:eb:bd:f0:4e:55: 50:30:5e:10:92:b3:62:48:2e:b0:e4:8d:f6:e9:e5: 41:10:89:91:c9:c9:87:63:cf:6a:10:56:48:1a:c0: 54:2b:3d:c1:c4:87:b6:c2:ea:74:a9:8d:53:38:ba: 45:57:6a:c7:ec:46:bb:17:d2:36:b4:79:3b:62:4a: af:f1:10:0a:0d:a4:5b:27:cf:2c:dd:2b:6c:6f:a0: e6:7d:ad:34:f1:4d:b4:f6:c4:8f:16:58:8b:2d:58: 20:0b:9b:49:42:68:8a:b5:28:47:5a:e8:a8:45:b8: 26:a9:06:af:b7:dd:ae:8a:95:a1:e5:c1:61:54:9e: 6a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F0:B0:8A:58:CC:F6:07:4F:AF:29:4B:FB:3A:14:4F:B8:5E:35:1D X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:72:a8:f9:db:e4:4a:00:fe:22:ed:37:ef:87:53:c9:c7:bb: 68:c6:1d:e5:df:2a:54:f2:e4:13:77:62:6a:59:bd:4e:30:8c: 10:ce:41:25:ea:53:51:58:d6:6e:de:19:5f:c3:a3:e2:7e:a5: 2b:54:3b:b9:72:ac:71:27:ba:64:7f:13:35:2c:4f:52:a4:63: 9c:3d:43:6b:49:a4:59:6e:f0:09:2a:b9:57:8c:61:70:59:9b: c7:be:c0:7d:7d:2b:4d:8c:16:08:5e:f8:d3:28:93:13:cf:a4: f4:45:9b:0d:5f:2a:aa:5c:32:71:53:fb:60:25:4f:e7:c5:84: 3b:a4:67:f0:d9:19:7a:3b:cb:0e:70:28:d8:bf:ec:fe:26:9c: cb:ab:fd:85:c6:68:df:b7:2e:50:f5:bd:be:a6:52:0f:22:2f: 8a:fa:4a:dd:d8:7b:15:08:a7:7c:d1:dc:7a:6c:0a:e6:e5:e8: 96:6f:e1:28:68:15:93:39:aa:92:46:4a:19:e2:f7:f5:48:4f: 18:ae:46:bf:4a:23:c8:9d:76:99:e9:f6:b1:0a:48:7b:79:ae: f6:cd:87:7a:20:43:9b:54:61:0f:d4:91:59:93:55:69:7f:55: f5:ed:dd:49:b9:f9:d5:fb:2a:9e:d8:ed:f1:55:12:93:35:41: 73:df:2a:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzEzQjExMC8GA1UEBRMoODBFOTI3NUI2RTZFQkM2QUQ3NTg1RDc2QUZCNkE0MDBC NTE0MkMzRjAeFw0yNDA5MTkwNjA4NTFaFw0yNDA5MjYwNjA4NTFaMBgxFjAUBgNV BAMTDTY2ZWJiZmYzLWI0NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8QISJWQ28nIaHXYoO0otoMpSlJvSoOFjgiQBl9j0UT2/MBxe74d4kTUtamWw/ y8arpvd+XFqsVaK6/aNfv/MkiArFgfcVi0vjbdLZS/91u1n53I9mXMn58hqM7SWu LCLdVilkvJCZw5scnrlgsrcS0OAA9WPNWokX74FtPiz5LcTrvfBOVVAwXhCSs2JI LrDkjfbp5UEQiZHJyYdjz2oQVkgawFQrPcHEh7bC6nSpjVM4ukVXasfsRrsX0ja0 eTtiSq/xEAoNpFsnzyzdK2xvoOZ9rTTxTbT2xI8WWIstWCALm0lCaIq1KEda6KhF uCapBq+33a6KlaHlwWFUnmp1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgvCwiljM 9gdPrylL+zoUT7heNR0wHwYDVR0jBBgwFoAUgOknW25uvGrXWF12r7akALUULD8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMTNCL0NDRTk5RDdFNDdE QjExRUZBRUE0QjAyREM0RjlBRTAyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxE OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ09rblcyNXV2R3JYV0YxMnI3YWtBTFVVTEQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MTNCL0NDRTk5RDdFNDdEQjExRUZBRUE0QjAyREM0RjlBRTAyL2dPa25XMjV1dkdy WFdGMTJyN2FrQUxVVUxEOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALRyqPnb5EoA/iLtN++HU8nHu2jGHeXfKlTy5BN3YmpZvU4wjBDOQSXq U1FY1m7eGV/Do+J+pStUO7lyrHEnumR/EzUsT1KkY5w9Q2tJpFlu8AkquVeMYXBZ m8e+wH19K02MFghe+NMokxPPpPRFmw1fKqpcMnFT+2AlT+fFhDukZ/DZGXo7yw5w KNi/7P4mnMur/YXGaN+3LlD1vb6mUg8iL4r6St3YexUIp3zR3HpsCubl6JZv4Sho FZM5qpJGShni9/VITxiuRr9KI8iddpnp9rEKSHt5rvbNh3ogQ5tUYQ/UkVmTVWl/ VfXt3Um5+dX7Kp7Y7fFVEpM1QXPfKgs= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:24 2024 by rpki-client on console-fra.rpki-client.org