$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: OcUuevucpxoPDZkvfmXEVrauqwuZSCaT81VAHpHni6M= Subject key identifier: BC:17:84:CA:8F:88:43:46:CF:2B:E4:96:80:E1:46:CA:D8:2A:A8:BD Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 0718 Signing time: Wed 20 Nov 2024 21:20:06 +0000 Manifest this update: Wed 20 Nov 2024 21:20:06 +0000 Manifest next update: Wed 27 Nov 2024 21:20:06 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: QQWDTKipxOhJfGhYJItA4CjRYGDJk+9tAw31WkPAI2w=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: E7aUJSWkWctXuYXSTwS30+xAR7ERalIEla2LT/i5k8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Nov 20 21:20:06 2024 GMT Not After : Nov 27 21:20:06 2024 GMT Subject: CN=673e5286-14a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:4c:b7:b6:b0:23:35:ee:08:db:1f:78:b8: 9e:d5:8d:66:62:f3:9e:be:ae:77:f2:88:5d:bd:99: c3:e7:6f:a4:75:17:a6:82:81:72:54:6a:51:c2:a7: a7:db:84:ef:eb:b0:7c:e2:80:0d:09:ae:53:06:37: 3c:9f:5d:e8:f2:85:2f:d8:c0:a7:89:56:1e:04:11: 8c:28:03:7f:32:d0:6b:3f:c6:96:2a:0e:a4:8f:c2: 69:dc:17:95:a1:e7:68:de:98:32:37:58:4f:c8:62: 6e:d5:22:63:ca:cc:ad:29:b1:57:2e:f4:fd:54:70: 3a:58:eb:87:92:a4:3e:87:27:76:79:2c:b5:9c:87: 56:44:14:2f:cb:20:d0:f6:14:e5:ae:c7:d3:3e:2f: 19:3c:67:53:36:e8:08:d3:d9:08:0f:8f:a6:4b:17: 01:07:13:9a:06:b2:f6:0d:1c:85:64:c2:be:1c:2f: 24:7c:44:9c:aa:57:61:85:1c:e0:05:09:de:14:e9: e1:c8:09:fd:7c:f0:73:c2:6b:94:4a:f0:c0:64:e6: 73:53:73:45:db:07:22:b0:ba:90:4c:c7:8b:9c:d0: ca:e0:f0:7c:5d:fe:f3:4d:0a:d1:2e:b3:f2:57:56: dd:35:9e:ee:07:df:f2:c8:38:e7:f7:a7:3e:b8:b7: b2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:17:84:CA:8F:88:43:46:CF:2B:E4:96:80:E1:46:CA:D8:2A:A8:BD X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:86:6a:17:a7:34:db:36:df:06:4a:1a:bd:94:75:52:33:75: 45:5b:bc:cc:26:5f:fd:5f:f1:6c:7f:bd:d5:7d:33:d5:8a:49: 71:44:5f:b5:6a:d4:28:15:78:03:a7:16:5e:15:70:cb:05:70: f6:b3:29:b1:84:ab:38:c2:4e:02:49:8c:a1:97:97:9f:e4:63: 59:15:06:fb:a5:51:e1:d0:92:cd:73:ab:32:3c:f4:8e:17:67: 7c:3f:20:aa:64:01:8d:2e:d4:f7:39:c2:58:be:3a:4e:5f:fc: e1:2c:79:2e:ee:85:ba:8d:10:83:ba:9e:b9:fc:e8:f9:d2:2e: 47:a7:81:e4:86:d6:7e:4a:89:65:93:10:4a:0e:da:39:04:90: 53:9e:35:b0:e7:79:7c:e5:71:3c:3f:32:ab:b9:6d:f3:45:9c: aa:b0:d0:45:d3:d5:81:f7:6c:db:18:ab:9c:86:28:49:9c:e5: 89:d0:2f:d4:7a:62:76:fb:e8:ff:53:62:93:11:19:4d:68:bb: 3d:4d:84:c2:c3:27:a0:64:0a:8e:a5:8a:7f:07:b8:f2:8c:bd: 33:3f:35:bc:b8:7d:1f:47:d6:c2:57:a1:59:84:99:9f:50:8a: f0:78:e4:d5:69:13:f6:61:88:08:06:49:97:67:a0:ce:56:ed: b4:03:ed:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjQxMTIwMjEyMDA2WhcNMjQxMTI3MjEyMDA2WjAYMRYwFAYD VQQDEw02NzNlNTI4Ni0xNGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i1Mt7awIzXuCNsfeLie1Y1mYvOevq538ohdvZnD52+kdRemgoFyVGpRwqen 24Tv67B84oANCa5TBjc8n13o8oUv2MCniVYeBBGMKAN/MtBrP8aWKg6kj8Jp3BeV oedo3pgyN1hPyGJu1SJjysytKbFXLvT9VHA6WOuHkqQ+hyd2eSy1nIdWRBQvyyDQ 9hTlrsfTPi8ZPGdTNugI09kID4+mSxcBBxOaBrL2DRyFZMK+HC8kfEScqldhhRzg BQneFOnhyAn9fPBzwmuUSvDAZOZzU3NF2wcisLqQTMeLnNDK4PB8Xf7zTQrRLrPy V1bdNZ7uB9/yyDjn96c+uLeypwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwXhMqP iENGzyvkloDhRsrYKqi9MB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUhmoXpzTbNt8GShq9lHVSM3VFW7zMJl/9X/Fsf73VfTPViklxRF+1 atQoFXgDpxZeFXDLBXD2symxhKs4wk4CSYyhl5ef5GNZFQb7pVHh0JLNc6syPPSO F2d8PyCqZAGNLtT3OcJYvjpOX/zhLHku7oW6jRCDup65/Oj50i5Hp4HkhtZ+Soll kxBKDto5BJBTnjWw53l85XE8PzKruW3zRZyqsNBF09WB92zbGKuchihJnOWJ0C/U emJ2++j/U2KTERlNaLs9TYTCwyegZAqOpYp/B7jyjL0zPzW8uH0fR9bCV6FZhJmf UIrweOTVaRP2YYgIBkmXZ6DOVu20A+0A -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org