$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: Hn369X7BNrO0eZ4PK8MMqVMZLzx00/0tRx+pmIUFkIU= Subject key identifier: AD:64:22:41:45:5E:C1:D9:B9:CF:6A:49:73:B1:CE:48:F7:26:EE:05 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: 40 Signing time: Thu 21 Nov 2024 05:30:55 +0000 Manifest this update: Thu 21 Nov 2024 05:30:54 +0000 Manifest next update: Thu 28 Nov 2024 05:30:54 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: qs+IGk2aieAo356SUg+OjhW6TJJFcY1iUfDF7QqE9GE=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: 6dpnSfSfmjTs18NuhrZbYY2YJ9hNtxY1uesaee9+WkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Nov 21 05:30:54 2024 GMT Not After : Nov 28 05:30:54 2024 GMT Subject: CN=673ec58e-d8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:aa:e9:43:66:a8:3a:f0:58:04:62:25:31:fd: 4b:9c:eb:8d:c5:75:23:a2:e2:fd:8c:d9:36:4c:97: 1c:9f:88:27:e7:0f:61:c4:fc:a7:6d:cd:97:1b:4f: 73:a7:1c:97:bb:e7:1b:5d:a5:b2:2f:0a:a8:d6:a9: 47:42:f8:a1:69:5e:cc:fe:0e:2a:a3:a0:31:64:53: 9c:e0:ea:6e:b7:9d:b6:62:ac:ef:8f:d4:2f:6f:8e: 74:66:08:08:d0:e4:8a:62:5f:40:f1:de:91:ed:58: 64:64:6b:f1:38:bf:23:ed:d7:6a:86:5c:b9:61:d4: 88:56:4e:a5:51:94:61:84:ee:75:a5:7f:6b:df:8d: 51:a8:e2:7c:89:7f:ee:39:ca:81:d2:c3:53:c3:c6: b0:c0:94:55:df:dd:16:e6:49:fe:08:da:f7:91:55: 69:25:e9:ba:72:c9:f6:bd:85:ba:1e:ff:9c:28:56: 07:6a:be:ab:d6:2f:60:fc:c9:3f:3f:39:e4:41:c6: fd:ba:da:0f:6e:50:96:1c:b5:97:14:a5:b1:ac:43: 84:db:71:56:e6:3c:c0:d9:fe:e3:6b:87:38:87:76: ae:ff:78:f2:8b:f0:c9:e7:93:64:1e:58:91:da:a5: 78:2e:d0:2e:68:c1:07:c1:b5:d8:9b:37:20:6a:be: f0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:64:22:41:45:5E:C1:D9:B9:CF:6A:49:73:B1:CE:48:F7:26:EE:05 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:69:40:6e:dc:dd:71:93:13:c3:aa:6b:ee:f2:e1:64:b2:ca: 2a:f3:32:98:41:f6:fa:6e:2e:c1:7e:e5:b4:38:d9:0d:7d:36: 36:bb:1c:51:c3:bc:50:ab:8e:66:a9:6d:61:61:28:70:67:83: 16:b6:30:44:4a:42:f6:2c:7f:9a:21:c0:84:f5:7d:3b:c9:ef: 7b:c8:70:05:2a:bd:46:f1:78:c3:ec:e8:ba:61:39:1b:c0:0a: e7:14:8b:81:5e:fc:d8:2a:82:98:5a:97:0e:ec:df:de:91:cc: c1:24:ba:14:58:93:34:c1:1a:1d:6b:e0:90:b5:d1:b5:4f:2c: 1d:e2:8e:d6:b1:40:2e:08:9a:e9:61:98:24:7b:4e:f8:ce:ae: c2:f2:31:2a:b0:9f:12:a2:66:46:7f:ba:7e:8b:98:5d:99:01: b5:0e:0d:2d:af:bd:dc:05:75:b8:6d:3c:24:20:d4:1c:16:d5: 1b:21:25:35:7c:ab:30:e2:0b:40:fc:57:ae:36:98:c1:72:a4: 6d:2b:78:53:21:c4:97:d6:55:05:7a:2b:da:cc:66:cd:d1:8b: c9:5c:85:6f:76:7c:c9:01:72:b0:bf:54:89:03:f8:e8:36:9c: 9d:a1:5a:4d:40:0f:04:d1:75:f6:96:73:91:3a:f8:3f:33:41: c1:67:97:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzEzQjExMC8GA1UEBRMoODBFOTI3NUI2RTZFQkM2QUQ3NTg1RDc2QUZCNkE0MDBC NTE0MkMzRjAeFw0yNDExMjEwNTMwNTRaFw0yNDExMjgwNTMwNTRaMBgxFjAUBgNV BAMTDTY3M2VjNThlLWQ4ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0qulDZqg68FgEYiUx/Uuc643FdSOi4v2M2TZMlxyfiCfnD2HE/KdtzZcbT3On HJe75xtdpbIvCqjWqUdC+KFpXsz+DiqjoDFkU5zg6m63nbZirO+P1C9vjnRmCAjQ 5IpiX0Dx3pHtWGRka/E4vyPt12qGXLlh1IhWTqVRlGGE7nWlf2vfjVGo4nyJf+45 yoHSw1PDxrDAlFXf3RbmSf4I2veRVWkl6bpyyfa9hboe/5woVgdqvqvWL2D8yT8/ OeRBxv262g9uUJYctZcUpbGsQ4TbcVbmPMDZ/uNrhziHdq7/ePKL8Mnnk2QeWJHa pXgu0C5owQfBtdibNyBqvvDhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrWQiQUVe wdm5z2pJc7HOSPcm7gUwHwYDVR0jBBgwFoAUgOknW25uvGrXWF12r7akALUULD8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMTNCL0NDRTk5RDdFNDdE QjExRUZBRUE0QjAyREM0RjlBRTAyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxE OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ09rblcyNXV2R3JYV0YxMnI3YWtBTFVVTEQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MTNCL0NDRTk5RDdFNDdEQjExRUZBRUE0QjAyREM0RjlBRTAyL2dPa25XMjV1dkdy WFdGMTJyN2FrQUxVVUxEOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBpQG7c3XGTE8Oqa+7y4WSyyirzMphB9vpuLsF+5bQ42Q19Nja7HFHD vFCrjmapbWFhKHBngxa2MERKQvYsf5ohwIT1fTvJ73vIcAUqvUbxeMPs6LphORvA CucUi4Fe/Ngqgphalw7s396RzMEkuhRYkzTBGh1r4JC10bVPLB3ijtaxQC4Imulh mCR7TvjOrsLyMSqwnxKiZkZ/un6LmF2ZAbUODS2vvdwFdbhtPCQg1BwW1RshJTV8 qzDiC0D8V642mMFypG0reFMhxJfWVQV6K9rMZs3Ri8lchW92fMkBcrC/VIkD+Og2 nJ2hWk1ADwTRdfaWc5E6+D8zQcFnl4I= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org