$ rpki-client -vvf rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft File: GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft (raw, json) Hash identifier: 83r1MlOxrS3B3ZdkJ1u0tT+rWm7bsP2q9KY52EdRy3w= Subject key identifier: DA:18:AF:94:00:B0:A5:AF:CE:8D:65:C7:AD:7C:AE:8C:47:5A:56:8F Authority key identifier: 18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 Certificate issuer: /CN=A91DACA7/serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft Manifest number: 1F Signing time: Sun 15 Sep 2024 10:21:01 +0000 Manifest this update: Sun 15 Sep 2024 10:21:01 +0000 Manifest next update: Sun 22 Sep 2024 10:21:01 +0000 Files and hashes: 1: GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl (hash: T4s/vAvWZd7jWWEVZozq/J61qx1cnXZkrwxJCqn423o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DACA7/serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Validity Not Before: Sep 15 10:21:01 2024 GMT Not After : Sep 22 10:21:01 2024 GMT Subject: CN=66e6b50d-5839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:cd:35:c6:19:42:55:3a:91:65:c0:db:d1: 11:16:9e:95:00:55:66:1f:3e:f0:d9:7d:3b:33:13: f5:41:51:72:8c:1c:eb:f9:c0:0e:54:ca:e4:9c:e8: cd:84:7d:53:d6:25:29:76:c7:43:15:41:a5:18:01: bf:15:0b:8a:55:f0:0d:33:2a:fc:22:c0:26:18:14: 3a:0d:2f:e7:0f:5b:eb:97:4a:d9:5b:0f:2a:97:50: cd:ba:57:82:8d:57:70:a3:de:48:63:4e:63:04:8b: 32:21:ba:0f:cc:a7:8a:e4:87:38:db:43:14:f3:5c: ba:4a:0c:76:9e:d2:66:d8:ec:7a:92:dd:1f:a2:15: be:2a:5d:93:1d:3f:80:02:ec:a0:ff:7a:73:5d:bd: 00:c8:3e:91:85:04:06:df:b9:10:6c:5f:c0:0b:da: a9:20:89:ae:d3:3b:b6:54:e3:b3:7a:04:fd:4a:09: 6a:8e:21:5a:b8:b7:88:38:fe:e9:b2:44:91:87:bb: 1a:a6:91:e8:b6:ee:da:23:87:d9:17:a2:17:8c:d9: 39:c4:ea:eb:44:87:7a:11:aa:88:16:e7:ee:75:c4: 34:da:cd:f8:d5:a0:db:bf:2e:fd:5f:1f:3e:12:1d: b8:a4:c8:d9:d2:e7:c4:a5:0c:7a:c2:e2:de:9c:32: eb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:18:AF:94:00:B0:A5:AF:CE:8D:65:C7:AD:7C:AE:8C:47:5A:56:8F X509v3 Authority Key Identifier: keyid:18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:87:ba:4e:74:5e:84:58:26:bc:7a:56:77:31:5b:31:60:f1: 63:b8:80:43:09:d1:a2:d9:90:aa:fc:a8:46:92:44:62:9f:74: 9c:f7:1e:e0:a2:14:1b:2f:f5:01:5e:83:23:5f:07:c1:7b:b3: c1:ec:fe:28:a3:c8:e9:8c:09:4a:97:8e:75:4c:d1:4d:ea:f7: 72:99:9a:a7:39:f1:c2:d7:a0:35:37:fb:bf:f6:67:78:9c:3a: 23:b3:ab:2b:8f:ab:26:a9:a3:fd:f0:f3:db:9e:49:e3:40:a1: 8f:51:17:8f:2a:a1:4a:46:cc:ae:dd:7e:30:62:41:a2:55:d7: ef:8f:86:59:6d:85:f3:a7:77:92:bb:0c:b0:58:0c:0e:ba:c2: 5c:8e:4b:32:3b:7d:c1:7d:a2:cd:6e:93:62:83:0d:44:ad:a6: cf:6c:8e:48:0e:58:3d:43:01:ea:55:a2:28:01:88:f0:af:d8: 01:79:25:2b:38:e1:7e:ed:a0:2e:5b:7b:e4:8c:d6:66:63:14: ed:50:09:68:c4:ba:39:ca:f4:da:f8:2b:da:02:5c:75:fc:ba: 89:44:33:c3:9c:f1:24:d8:39:98:9a:1a:98:32:d6:63:9e:08: 16:53:b8:e7:16:c2:3a:04:8a:1b:ba:36:05:01:8a:26:ea:69: 19:5d:32:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QUNBNzExMC8GA1UEBRMoMTg4MTVCMzRDODY5Mjg0QjQzMjNDOTE2OTkzNjc3MEZE RDBCNDIzNjAeFw0yNDA5MTUxMDIxMDFaFw0yNDA5MjIxMDIxMDFaMBgxFjAUBgNV BAMTDTY2ZTZiNTBkLTU4MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAgs01xhlCVTqRZcDb0REWnpUAVWYfPvDZfTszE/VBUXKMHOv5wA5UyuSc6M2E fVPWJSl2x0MVQaUYAb8VC4pV8A0zKvwiwCYYFDoNL+cPW+uXStlbDyqXUM26V4KN V3Cj3khjTmMEizIhug/Mp4rkhzjbQxTzXLpKDHae0mbY7HqS3R+iFb4qXZMdP4AC 7KD/enNdvQDIPpGFBAbfuRBsX8AL2qkgia7TO7ZU47N6BP1KCWqOIVq4t4g4/umy RJGHuxqmkei27tojh9kXoheM2TnE6utEh3oRqogW5+51xDTazfjVoNu/Lv1fHz4S HbikyNnS58SlDHrC4t6cMuu9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2hivlACw pa/OjWXHrXyujEdaVo8wHwYDVR0jBBgwFoAUGIFbNMhpKEtDI8kWmTZ3D90LQjYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBQ0E3LzU5Qjk0MTg2NDVC MjExRUZBNURGNkQxOUM0RjlBRTAyL0dJRmJOTWhwS0V0REk4a1dtVFozRDkwTFFq WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0lGYk5NaHBLRXRESThrV21UWjNEOTBMUWpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB Q0E3LzU5Qjk0MTg2NDVCMjExRUZBNURGNkQxOUM0RjlBRTAyL0dJRmJOTWhwS0V0 REk4a1dtVFozRDkwTFFqWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFqHuk50XoRYJrx6VncxWzFg8WO4gEMJ0aLZkKr8qEaSRGKfdJz3HuCi FBsv9QFegyNfB8F7s8Hs/iijyOmMCUqXjnVM0U3q93KZmqc58cLXoDU3+7/2Z3ic OiOzqyuPqyapo/3w89ueSeNAoY9RF48qoUpGzK7dfjBiQaJV1++PhllthfOnd5K7 DLBYDA66wlyOSzI7fcF9os1uk2KDDUStps9sjkgOWD1DAepVoigBiPCv2AF5JSs4 4X7toC5be+SM1mZjFO1QCWjEujnK9Nr4K9oCXHX8uolEM8Oc8STYOZiaGpgy1mOe CBZTuOcWwjoEihu6NgUBiibqaRldMqE= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:45 2024 by rpki-client on console-fra.rpki-client.org