$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: glQ0xAW45EYk4LnLf5/GcF0wqJ1XJsTQBRE2TxnoHPU= Subject key identifier: AB:2B:93:61:3D:6B:F3:D4:95:5C:C5:A5:F0:34:B8:5E:7E:B4:E8:47 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 095A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 0954 Signing time: Fri 22 Nov 2024 19:58:14 +0000 Manifest this update: Fri 22 Nov 2024 19:58:14 +0000 Manifest next update: Fri 29 Nov 2024 19:58:14 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: nLMnQKMPeiD5Z0sB6kz7AU83pUxkT5Wb/E2EqSnOkog=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: +4vEjQDzFMfcTakIiGJFd0hIS0rT096BdM+YIUk8vVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2394 (0x95a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Nov 22 19:58:14 2024 GMT Not After : Nov 29 19:58:14 2024 GMT Subject: CN=6740e256-59e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:77:67:6e:ae:3f:9e:c5:c3:e7:e9:5a:c6:de: b7:a8:4a:cd:92:76:7e:c1:f8:ad:30:18:a4:b2:a5: a6:2e:e3:55:e3:0d:e5:fa:ae:52:04:bd:73:92:8f: de:e6:cc:16:7c:ed:81:bc:de:7b:42:5d:5f:37:35: 98:95:d6:d3:d3:e8:bf:57:d6:dc:1c:e7:42:12:3f: da:21:e1:c2:bb:17:19:08:8d:ce:5e:b7:94:cc:26: 63:00:51:b3:8a:4e:ee:ed:b5:ca:4a:1b:2c:73:ec: 60:3e:cf:11:1f:a7:f5:59:f7:f8:1a:f4:ea:4e:55: 7b:b1:62:9a:81:10:f6:04:1b:dd:fb:20:9d:bd:bd: 94:bd:d5:b6:fe:f1:30:13:d1:52:71:13:88:57:e1: 48:79:e2:2a:17:18:52:fd:e9:f9:4b:37:c7:27:71: ac:bc:9a:f2:fd:3d:1f:63:49:8b:c1:28:c5:90:7b: 06:8f:45:ed:8e:e6:fe:79:4f:13:4e:dc:bf:95:34: 6e:d2:91:25:a8:87:8f:47:a7:19:ff:13:39:9e:c1: 81:63:59:fe:e5:56:ce:71:54:3e:15:9d:77:92:c2: d2:2c:d5:71:d5:8d:fe:7b:37:0c:11:f7:ac:a1:9b: 0b:71:a6:0e:73:3c:2c:e3:d7:4f:3f:7b:61:bf:b8: 51:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2B:93:61:3D:6B:F3:D4:95:5C:C5:A5:F0:34:B8:5E:7E:B4:E8:47 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:df:de:65:13:73:0f:d4:53:39:bb:d8:b8:1d:60:6a:0a:08: 33:24:18:b9:79:e7:3b:3a:2d:bc:ac:8f:d9:39:3a:1c:69:fc: 3b:55:47:92:f6:de:77:69:b5:36:d1:d5:9d:4a:58:0a:b4:33: 93:bb:12:15:62:c7:b5:1b:a9:c9:ed:b2:12:0e:ca:98:4f:bc: 87:09:84:2b:e0:c2:44:d1:8e:ef:36:db:50:4b:1b:76:10:34: ef:ec:ca:bd:45:16:01:c0:32:21:6d:fc:cb:ec:f0:bc:70:98: 4a:30:60:05:19:67:82:da:81:d4:7a:fc:1e:6b:c9:72:48:5f: f1:1d:c0:f0:2c:30:0f:0a:be:55:cc:6d:c5:84:03:9f:52:03: c5:e6:e0:4c:e0:37:8c:76:64:b6:12:c5:14:b6:13:09:48:8b: 9e:8e:7c:de:16:47:bf:3a:65:1b:b0:bc:ee:01:c2:74:d6:f0: 52:40:d2:4a:54:1c:7f:aa:56:ad:c2:d5:48:cb:ae:71:16:ee: 6b:9e:0c:9c:b4:a3:6d:1d:8a:8a:01:1a:ba:31:96:59:4e:6f: 5f:5a:9b:90:79:67:e0:b4:bb:ae:ae:b5:19:5b:9a:f0:71:24: 57:2a:51:78:0e:d8:55:89:0e:f2:0c:b2:39:15:dd:c3:ee:f5: c2:1f:dd:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjQxMTIyMTk1ODE0WhcNMjQxMTI5MTk1ODE0WjAYMRYwFAYD VQQDEw02NzQwZTI1Ni01OWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Xdnbq4/nsXD5+laxt63qErNknZ+wfitMBiksqWmLuNV4w3l+q5SBL1zko/e 5swWfO2BvN57Ql1fNzWYldbT0+i/V9bcHOdCEj/aIeHCuxcZCI3OXreUzCZjAFGz ik7u7bXKShssc+xgPs8RH6f1Wff4GvTqTlV7sWKagRD2BBvd+yCdvb2UvdW2/vEw E9FScROIV+FIeeIqFxhS/en5SzfHJ3GsvJry/T0fY0mLwSjFkHsGj0Xtjub+eU8T Tty/lTRu0pElqIePR6cZ/xM5nsGBY1n+5VbOcVQ+FZ13ksLSLNVx1Y3+ezcMEfes oZsLcaYOczws49dPP3thv7hRRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsrk2E9 a/PUlVzFpfA0uF5+tOhHMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt395lE3MP1FM5u9i4HWBqCggzJBi5eec7Oi28rI/ZOTocafw7VUeS 9t53abU20dWdSlgKtDOTuxIVYse1G6nJ7bISDsqYT7yHCYQr4MJE0Y7vNttQSxt2 EDTv7Mq9RRYBwDIhbfzL7PC8cJhKMGAFGWeC2oHUevwea8lySF/xHcDwLDAPCr5V zG3FhAOfUgPF5uBM4DeMdmS2EsUUthMJSIuejnzeFke/OmUbsLzuAcJ01vBSQNJK VBx/qlatwtVIy65xFu5rngyctKNtHYqKARq6MZZZTm9fWpuQeWfgtLuurrUZW5rw cSRXKlF4DthViQ7yDLI5Fd3D7vXCH92C -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org