$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: a/LqvRT06m5WROm9ccYCOQmBx8O2UokOJumN9TsjSY0= Subject key identifier: D8:9C:93:33:A8:65:A2:64:49:2C:57:08:D8:F7:0A:18:E3:40:2C:9A Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1B98 Signing time: Fri 22 Nov 2024 16:14:16 +0000 Manifest this update: Fri 22 Nov 2024 16:14:15 +0000 Manifest next update: Fri 29 Nov 2024 16:14:15 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: EUI2BSBqEvd5BfNT4PFTI7KQfZf1Su5KvxpjDMiRABU=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: G3DBliFZu/VI4MFfGI8d8nacUbfmanba/FcPWi0Nxnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7074 (0x1ba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Nov 22 16:14:15 2024 GMT Not After : Nov 29 16:14:15 2024 GMT Subject: CN=6740add8-a7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:40:7b:fe:fe:bb:a9:53:67:b5:62:2e:89:3c: f1:10:d4:a1:76:c2:9b:82:88:95:0d:b6:0f:14:73: 1b:bd:eb:9a:db:ed:53:64:c0:c0:8d:35:5b:7e:70: ff:59:9e:a9:50:78:09:f2:9d:10:01:5b:e5:b7:2b: 6c:8c:14:6c:84:35:3a:58:e4:3d:f2:6f:55:eb:e4: c0:bb:1b:e2:b1:d7:9e:c9:11:ba:db:9c:fd:ba:e6: e0:92:80:bd:b5:65:9d:ba:ce:ad:39:a6:6a:0f:91: 90:a0:ac:29:99:d3:73:b0:9b:2f:04:40:af:6f:4d: c2:a8:78:bf:c9:97:49:85:11:6d:65:41:1a:64:d8: 75:c0:69:c8:74:86:f5:11:f6:a5:43:73:00:31:e2: e1:26:75:43:17:a8:ae:e5:e3:5d:f1:3c:fd:a8:c9: 8c:ec:0b:d1:73:ce:8b:2d:5a:c5:db:7a:4f:ce:fe: 00:13:08:5c:b6:e2:93:41:31:65:b6:93:58:17:4c: 6e:52:e6:ab:38:2f:ac:5f:31:b1:ca:9c:49:ca:93: 8d:31:dc:25:17:2b:45:3b:cf:e8:cd:60:e8:8b:64: 3f:a1:33:60:e4:b6:67:32:10:9d:47:28:8f:95:0a: 00:9c:ee:f8:8d:92:91:5e:0a:9c:8d:e3:92:30:63: e5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9C:93:33:A8:65:A2:64:49:2C:57:08:D8:F7:0A:18:E3:40:2C:9A X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:fb:de:6d:3a:12:4c:5b:61:a6:96:f4:d1:2a:80:9a:83:93: 45:56:85:9a:b7:5d:bc:a8:5f:79:ea:98:c7:2f:20:88:97:78: 89:06:bf:16:80:71:87:8b:87:12:cb:2d:71:5c:bb:58:86:1f: 37:19:59:5e:b3:9a:2a:2e:a9:d8:a5:db:11:be:52:80:4f:7a: ef:5f:84:cf:a1:cd:1a:0d:6a:dd:1f:69:53:4e:1d:80:45:e4: c3:2c:c7:a2:ca:e8:75:d2:f0:91:af:80:83:fb:cd:52:47:5f: 1d:7b:81:e2:66:62:aa:2f:ea:0d:31:68:dc:45:9f:6c:11:22: 5c:82:2d:d5:82:32:c7:09:41:39:b3:0f:4f:6d:1d:f0:64:5c: f7:a8:48:8d:68:5c:6e:28:7c:4d:43:dd:08:bd:fc:43:e4:b7: 5d:47:6b:54:31:53:42:9d:09:87:8c:3d:99:2d:15:34:bf:23: 3d:54:b8:5e:12:e9:13:c0:62:d7:21:15:8a:0e:81:0b:af:a3: fa:83:f0:6d:16:b8:83:a6:1b:b4:f1:2e:2e:d3:e9:77:10:49: 56:11:f6:ed:5d:f0:c1:2c:b0:0e:84:43:18:fb:aa:bc:e6:92: 5e:e6:ca:74:68:74:f8:26:12:12:78:05:2c:da:20:51:96:6b: 4b:11:ad:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjQxMTIyMTYxNDE1WhcNMjQxMTI5MTYxNDE1WjAYMRYwFAYD VQQDEw02NzQwYWRkOC1hN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkB7/v67qVNntWIuiTzxENShdsKbgoiVDbYPFHMbveua2+1TZMDAjTVbfnD/ WZ6pUHgJ8p0QAVvltytsjBRshDU6WOQ98m9V6+TAuxvisdeeyRG625z9uubgkoC9 tWWdus6tOaZqD5GQoKwpmdNzsJsvBECvb03CqHi/yZdJhRFtZUEaZNh1wGnIdIb1 EfalQ3MAMeLhJnVDF6iu5eNd8Tz9qMmM7AvRc86LLVrF23pPzv4AEwhctuKTQTFl tpNYF0xuUuarOC+sXzGxypxJypONMdwlFytFO8/ozWDoi2Q/oTNg5LZnMhCdRyiP lQoAnO74jZKRXgqcjeOSMGPlHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNickzOo ZaJkSSxXCNj3ChjjQCyaMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3+95tOhJMW2GmlvTRKoCag5NFVoWat128qF956pjHLyCIl3iJBr8W gHGHi4cSyy1xXLtYhh83GVles5oqLqnYpdsRvlKAT3rvX4TPoc0aDWrdH2lTTh2A ReTDLMeiyuh10vCRr4CD+81SR18de4HiZmKqL+oNMWjcRZ9sESJcgi3VgjLHCUE5 sw9PbR3wZFz3qEiNaFxuKHxNQ90IvfxD5LddR2tUMVNCnQmHjD2ZLRU0vyM9VLhe EukTwGLXIRWKDoELr6P6g/BtFriDphu08S4u0+l3EElWEfbtXfDBLLAOhEMY+6q8 5pJe5sp0aHT4JhISeAUs2iBRlmtLEa1B -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:21 2024 by rpki-client on console-fra.rpki-client.org