$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: t5Njpb8OKz5HQuIVWe1aD6sFeRiiodUYFddbHQmMwiQ= Subject key identifier: 5C:6D:11:D3:6C:53:13:7F:14:0A:F5:8F:41:39:AB:25:9E:C2:FC:8B Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: 1F Signing time: Thu 19 Sep 2024 06:09:23 +0000 Manifest this update: Thu 19 Sep 2024 06:09:23 +0000 Manifest next update: Thu 26 Sep 2024 06:09:23 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: qMqI9oAcmcMt+7OTJ3GKCjK4pDWXQY/oTdx92Z8w5r4=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Validity Not Before: Sep 19 06:09:23 2024 GMT Not After : Sep 26 06:09:23 2024 GMT Subject: CN=66ebc013-d61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2f:62:c7:7c:d3:29:b6:f7:02:50:a5:45:6c: 18:6a:d3:8f:74:7f:00:1c:c4:ed:4a:4d:bd:94:d3: 71:9c:a8:42:1c:87:5c:dc:70:97:3a:8a:02:8c:12: eb:52:ca:35:39:22:3e:92:ee:4a:0a:14:2d:27:cf: cb:e5:06:32:19:1a:0e:2e:86:55:2a:8c:44:c9:fd: 0f:11:80:6d:12:f2:3e:dd:65:6d:7e:07:39:ef:49: 2d:2f:1a:04:18:9f:8c:11:d5:e8:cf:06:f8:56:55: 31:28:fa:27:90:53:a1:ea:e6:bb:0b:96:99:94:e4: 37:df:ff:db:80:3d:93:d7:5b:f0:da:ca:4e:03:b9: f7:9e:77:14:31:bd:6f:e4:32:24:42:36:71:01:2d: a2:da:49:81:3d:87:3a:ec:bd:67:50:48:52:ca:bd: 75:d3:3d:9c:05:4c:ee:30:d4:8f:88:6e:11:c9:09: 71:0e:04:6e:70:b0:c7:bc:54:d4:d9:d6:bf:94:1d: 68:6f:1e:f7:e3:13:58:f9:3a:60:69:e9:d5:72:49: d1:dd:90:24:2f:9b:72:24:64:e2:5f:e8:a1:14:2a: 06:cd:48:ac:b9:d4:4e:81:ca:ca:f1:8b:6b:0d:eb: b8:00:50:77:66:3d:55:a3:41:11:87:81:cf:f2:0b: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6D:11:D3:6C:53:13:7F:14:0A:F5:8F:41:39:AB:25:9E:C2:FC:8B X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:fa:d3:f8:bb:e8:a9:3b:b7:c4:ab:7f:3e:17:ac:ae:2e:5d: 69:4a:c3:e2:46:97:5f:d8:a8:ba:6f:a9:3a:d3:3e:37:5a:85: 3b:9e:ae:f6:6d:2d:16:98:b3:66:c7:f1:77:97:38:fd:73:6e: 36:c1:34:63:fa:64:e7:c2:2c:46:eb:3a:7c:80:bb:04:6a:c7: 10:4d:26:07:70:f1:a9:7f:22:e4:46:82:13:2f:87:fd:75:ab: a5:94:ee:cf:44:28:55:10:b7:8e:2a:9d:ad:98:a9:79:b7:c8: c8:40:3a:76:79:0e:8a:30:37:8f:2c:4c:fe:f1:84:1f:f0:9a: ab:0e:8f:ae:6f:88:98:7a:89:91:06:14:5f:a1:9f:7c:f7:81: ad:83:1b:b7:9f:1d:71:69:68:52:b0:35:31:19:f3:d8:9f:f4: 06:96:ba:8f:11:c3:50:19:11:69:4d:a5:37:fa:b2:af:d8:37: c8:92:1c:70:15:0e:00:b0:33:cd:97:1a:ac:31:8d:53:33:c4: 36:80:fa:d2:78:00:6d:f6:06:78:5c:a8:52:cf:33:e5:b0:df: 30:b9:26:1d:d7:ba:87:df:d2:78:e0:b8:db:69:14:1f:f5:56: 85:15:c2:f3:3d:90:8f:f5:77:3b:a6:95:50:34:aa:b1:dc:1c: 5d:71:54:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENGNTExMC8GA1UEBRMoODEzQTZFNEY3RURDNThCQzdBNDhCNkQxRkQ3QzE5REZE ODI4RjFGMTAeFw0yNDA5MTkwNjA5MjNaFw0yNDA5MjYwNjA5MjNaMBgxFjAUBgNV BAMTDTY2ZWJjMDEzLWQ2MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVL2LHfNMptvcCUKVFbBhq0490fwAcxO1KTb2U03GcqEIch1zccJc6igKMEutS yjU5Ij6S7koKFC0nz8vlBjIZGg4uhlUqjETJ/Q8RgG0S8j7dZW1+BznvSS0vGgQY n4wR1ejPBvhWVTEo+ieQU6Hq5rsLlpmU5Dff/9uAPZPXW/Dayk4DufeedxQxvW/k MiRCNnEBLaLaSYE9hzrsvWdQSFLKvXXTPZwFTO4w1I+IbhHJCXEOBG5wsMe8VNTZ 1r+UHWhvHvfjE1j5OmBp6dVySdHdkCQvm3IkZOJf6KEUKgbNSKy51E6Bysrxi2sN 67gAUHdmPVWjQRGHgc/yC6LHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXG0R02xT E38UCvWPQTmrJZ7C/IswHwYDVR0jBBgwFoAUgTpuT37cWLx6SLbR/XwZ39go8fEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0Y1LzRCQjdDNjQ0NDky QjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1RwdVQzN2NXTHg2U0xiUl9Yd1ozOWdvOGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0Y1LzRCQjdDNjQ0NDkyQjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4 NlNMYlJfWHdaMzlnbzhmRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJn60/i76Kk7t8Srfz4XrK4uXWlKw+JGl1/YqLpvqTrTPjdahTuervZt LRaYs2bH8XeXOP1zbjbBNGP6ZOfCLEbrOnyAuwRqxxBNJgdw8al/IuRGghMvh/11 q6WU7s9EKFUQt44qna2YqXm3yMhAOnZ5DoowN48sTP7xhB/wmqsOj65viJh6iZEG FF+hn3z3ga2DG7efHXFpaFKwNTEZ89if9AaWuo8Rw1AZEWlNpTf6sq/YN8iSHHAV DgCwM82XGqwxjVMzxDaA+tJ4AG32BnhcqFLPM+Ww3zC5Jh3Xuoff0njguNtpFB/1 VoUVwvM9kI/1dzumlVA0qrHcHF1xVNo= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:25 2024 by rpki-client on console-fra.rpki-client.org