$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: qXoqrLV/O9qJkazesNNf1bIovvzdKCTtZ1eMWXT2d34= Subject key identifier: 86:42:D6:F1:3D:59:AB:0F:3B:93:5E:79:E5:59:6E:3F:81:DA:22:3A Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 0420 Signing time: Fri 22 Nov 2024 23:54:43 +0000 Manifest this update: Fri 22 Nov 2024 23:54:42 +0000 Manifest next update: Fri 29 Nov 2024 23:54:42 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: q9qNZL5w2FNT8ysAI6M4E6eZEouq0VkqzjHb9MnR3mU=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Nov 22 23:54:42 2024 GMT Not After : Nov 29 23:54:42 2024 GMT Subject: CN=674119c2-00e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:30:30:5e:b9:62:d0:e7:2a:40:c0:17:a6: 8e:3e:6a:7f:ff:90:b7:65:12:8e:8c:69:2f:62:99: 9f:2f:c1:7f:8e:49:b2:6b:72:ef:37:65:a2:ae:5f: cb:e2:f2:66:41:c5:49:80:d1:0d:33:78:07:a2:9a: 84:16:cb:ca:ca:5c:5e:c0:8c:ca:46:32:7d:f3:36: ae:a1:bd:7a:03:ef:c2:33:7a:62:b8:79:39:b4:b7: 6c:4f:4e:27:bc:8c:7e:ab:a7:b1:3f:a2:08:a0:28: 6b:d7:b6:20:10:ba:f8:92:85:87:b0:74:42:94:a1: ae:39:88:7d:0e:41:73:52:db:8f:6e:a8:66:b9:3c: 9b:fa:ca:e8:78:f0:79:02:42:cb:67:be:54:77:7e: 15:a5:69:3b:98:fc:73:5e:a2:7e:96:fa:44:bd:fd: dc:9d:f4:d2:31:ac:22:f1:15:73:99:ed:93:19:c5: 09:26:74:32:64:16:71:f5:bb:89:1e:ab:c1:18:ce: 56:c9:18:51:5a:91:de:8f:e0:19:59:f0:6b:16:c9: 5a:78:a6:10:e3:12:9e:32:e5:ad:6f:5f:62:ba:3d: a8:a8:2f:be:5b:ba:dc:c0:43:7c:50:1b:e6:44:a1: b7:ae:d0:75:a5:d8:de:fe:46:91:ad:98:c5:f4:f1: 90:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:42:D6:F1:3D:59:AB:0F:3B:93:5E:79:E5:59:6E:3F:81:DA:22:3A X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0d:1e:e7:3c:33:fb:d6:90:39:bd:5b:21:d6:36:29:62:ca: 62:c8:ce:21:09:de:14:0f:06:3b:94:ad:52:dc:08:8d:0d:b1: a5:de:36:ec:12:0f:88:4b:d2:60:14:dc:04:10:cc:63:23:eb: 39:f3:bb:46:0e:d2:32:2f:1c:2c:70:d0:6f:5c:9d:74:a6:64: 9a:9f:72:57:c3:4e:e1:9c:8e:ed:6d:05:e2:49:c3:4a:5c:bc: bd:d2:82:ee:4f:c3:3c:d9:35:94:ce:91:ff:fa:91:9e:05:52: 05:37:fb:55:08:97:27:8c:63:b5:57:02:00:0a:b6:a4:70:e1: 36:65:46:e5:2a:06:4e:21:ad:88:fe:59:64:e8:05:99:d7:df: 8e:9b:e2:bc:05:1b:6a:71:41:e2:49:09:7e:57:43:e1:63:29: 32:a7:1d:4b:1d:4a:5a:0d:f4:4e:53:18:d6:9d:14:10:ff:9c: 66:3f:67:0d:c4:2b:11:d8:4f:33:b7:c0:c8:3e:91:1c:49:f1: 7b:3a:30:db:53:4d:b5:f2:63:e3:15:44:ba:29:11:a2:85:c9: 75:25:84:33:6f:bf:24:a4:4a:38:48:07:fe:2e:9b:77:6a:2b: 23:25:1d:40:38:68:13:c3:dc:e2:43:a0:4a:27:fc:d8:3c:4d: 47:af:fd:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjQxMTIyMjM1NDQyWhcNMjQxMTI5MjM1NDQyWjAYMRYwFAYD VQQDEw02NzQxMTljMi0wMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNcwMF65YtDnKkDAF6aOPmp//5C3ZRKOjGkvYpmfL8F/jkmya3LvN2Wirl/L 4vJmQcVJgNENM3gHopqEFsvKylxewIzKRjJ98zauob16A+/CM3piuHk5tLdsT04n vIx+q6exP6IIoChr17YgELr4koWHsHRClKGuOYh9DkFzUtuPbqhmuTyb+sroePB5 AkLLZ75Ud34VpWk7mPxzXqJ+lvpEvf3cnfTSMawi8RVzme2TGcUJJnQyZBZx9buJ HqvBGM5WyRhRWpHej+AZWfBrFslaeKYQ4xKeMuWtb19iuj2oqC++W7rcwEN8UBvm RKG3rtB1pdje/kaRrZjF9PGQ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZC1vE9 WasPO5NeeeVZbj+B2iI6MB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVDR7nPDP71pA5vVsh1jYpYspiyM4hCd4UDwY7lK1S3AiNDbGl3jbs Eg+IS9JgFNwEEMxjI+s587tGDtIyLxwscNBvXJ10pmSan3JXw07hnI7tbQXiScNK XLy90oLuT8M82TWUzpH/+pGeBVIFN/tVCJcnjGO1VwIACrakcOE2ZUblKgZOIa2I /llk6AWZ19+Om+K8BRtqcUHiSQl+V0PhYykypx1LHUpaDfROUxjWnRQQ/5xmP2cN xCsR2E8zt8DIPpEcSfF7OjDbU0218mPjFUS6KRGihcl1JYQzb78kpEo4SAf+Lpt3 aisjJR1AOGgTw9ziQ6BKJ/zYPE1Hr/1A -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org