$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: zB6ONB0XzA8SrHsXqlOR342BPZBaI4HZKZr3KrlC5dU= Subject key identifier: 34:BA:4D:3D:F9:91:09:AB:8E:DA:91:89:1A:02:DD:98:D8:30:B3:71 Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 06DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 06C8 Signing time: Fri 22 Nov 2024 21:42:59 +0000 Manifest this update: Fri 22 Nov 2024 21:42:58 +0000 Manifest next update: Fri 29 Nov 2024 21:42:58 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: SWwOmjlgOp+loeQG99t46x2ZujDm9Av/2WDYWBW1zLc=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Nov 22 21:42:58 2024 GMT Not After : Nov 29 21:42:58 2024 GMT Subject: CN=6740fae2-fcf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d6:0f:9f:0c:4a:7c:1b:91:fa:13:1b:2e:ec: a4:30:12:3d:de:04:2d:ed:2f:34:38:d2:44:26:57: 6b:5f:20:26:45:8c:a7:b6:b6:bc:9f:b1:f8:ea:d2: 7b:09:ba:19:1c:f6:d8:7a:40:4c:c2:91:90:a2:f2: c7:62:9d:c5:fd:9e:ef:ac:c1:d4:17:24:0d:3e:1b: bd:84:5a:a9:40:69:7f:d0:d6:d4:df:54:3b:29:b9: 9a:74:b7:74:1e:60:6b:7a:37:49:5d:b8:1d:e1:4d: c7:bf:c5:4b:fc:53:ac:5b:3f:b1:be:f4:51:b5:7c: 6b:29:f0:d4:ac:e1:36:f3:16:c2:29:f3:28:80:6a: ba:a5:aa:7e:92:0b:d6:38:20:68:5b:fb:94:6d:d0: d2:20:a8:ec:69:7d:9d:b7:c2:b1:ae:8b:74:8b:05: d6:e0:54:b9:36:15:bf:b9:87:15:e7:6d:37:d8:a7: 66:44:10:2c:b7:06:8d:c3:ef:cd:1d:95:b8:47:00: 52:aa:5d:bb:0e:bb:dc:b0:47:42:bc:66:b0:26:32: 3d:38:dc:5f:a1:c4:59:4e:dd:c0:60:d4:4d:98:97: 03:37:f3:59:c1:69:a7:2d:ef:d9:e2:c5:0b:d2:d9: f8:ee:77:30:1a:64:48:78:5a:44:e8:9e:54:f2:e4: 7f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BA:4D:3D:F9:91:09:AB:8E:DA:91:89:1A:02:DD:98:D8:30:B3:71 X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:1d:8f:d6:57:1f:9e:e3:78:d8:28:ae:da:a9:a0:a0:b1:fc: e7:81:a5:cd:63:7b:9c:2a:a8:0c:e2:ab:28:22:e5:0f:66:e2: 8a:4f:cc:79:18:df:d6:54:68:14:3f:07:e9:63:d1:cf:1d:e4: 1b:00:29:b7:86:19:75:9c:33:09:33:b5:b1:03:fa:b9:8f:c2: c2:6b:a6:08:b1:0f:b7:55:b1:d7:06:7b:86:2a:db:f6:35:db: 1a:41:fc:c3:dc:0b:72:d4:77:45:5d:ef:2f:12:55:27:ca:6f: 1f:2b:7e:a3:20:a5:72:d3:80:50:13:45:eb:53:e4:0c:92:01: 16:a3:31:d1:f6:ba:56:fb:61:d0:67:d1:ce:60:f5:76:6a:60: fa:31:08:ae:88:d8:ed:57:5b:54:34:fa:60:3d:e8:a5:77:41: 26:6c:61:6d:66:f5:32:8c:66:37:99:40:53:52:01:87:e9:f6: 3b:77:64:b3:75:42:fa:5e:8b:8a:30:38:dc:63:67:9f:e0:55: e2:6f:d6:70:d3:95:36:c2:91:df:5a:6d:7b:1c:22:e2:81:e5: bd:e7:70:7c:b5:d9:bc:13:d4:c9:05:42:9e:2b:a4:95:1b:fd: a2:c7:b5:a0:68:08:17:29:3d:4b:a3:9d:e8:45:fe:74:09:4b: c1:0b:5d:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjQxMTIyMjE0MjU4WhcNMjQxMTI5MjE0MjU4WjAYMRYwFAYD VQQDEw02NzQwZmFlMi1mY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NYPnwxKfBuR+hMbLuykMBI93gQt7S80ONJEJldrXyAmRYyntra8n7H46tJ7 CboZHPbYekBMwpGQovLHYp3F/Z7vrMHUFyQNPhu9hFqpQGl/0NbU31Q7KbmadLd0 HmBrejdJXbgd4U3Hv8VL/FOsWz+xvvRRtXxrKfDUrOE28xbCKfMogGq6pap+kgvW OCBoW/uUbdDSIKjsaX2dt8Kxrot0iwXW4FS5NhW/uYcV52032KdmRBAstwaNw+/N HZW4RwBSql27DrvcsEdCvGawJjI9ONxfocRZTt3AYNRNmJcDN/NZwWmnLe/Z4sUL 0tn47ncwGmRIeFpE6J5U8uR/GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS6TT35 kQmrjtqRiRoC3ZjYMLNxMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJHY/WVx+e43jYKK7aqaCgsfzngaXNY3ucKqgM4qsoIuUPZuKKT8x5 GN/WVGgUPwfpY9HPHeQbACm3hhl1nDMJM7WxA/q5j8LCa6YIsQ+3VbHXBnuGKtv2 NdsaQfzD3Aty1HdFXe8vElUnym8fK36jIKVy04BQE0XrU+QMkgEWozHR9rpW+2HQ Z9HOYPV2amD6MQiuiNjtV1tUNPpgPeild0EmbGFtZvUyjGY3mUBTUgGH6fY7d2Sz dUL6XouKMDjcY2ef4FXib9Zw05U2wpHfWm17HCLigeW953B8tdm8E9TJBUKeK6SV G/2ix7WgaAgXKT1Lo53oRf50CUvBC13E -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org