$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: c871j8ByvTHhBa3hmWx2syvaoGBlKTZUiiFoWSQJnKk= Subject key identifier: 2C:AA:13:BC:94:AF:32:BE:09:D7:3C:2E:E4:FE:6F:9C:99:C7:4D:39 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: DF Signing time: Sat 23 Nov 2024 03:37:13 +0000 Manifest this update: Sat 23 Nov 2024 03:37:12 +0000 Manifest next update: Sat 30 Nov 2024 03:37:12 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: 2x2Pwf7oYEOwapGH18/CPUvrPPW+meoIJiGENlxuyXI=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: 2GUXTvD1eJQklWSVESsbc029xt7GQKzADSWXGXNgtZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Nov 23 03:37:12 2024 GMT Not After : Nov 30 03:37:12 2024 GMT Subject: CN=67414de9-7ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0c:10:d6:e0:62:2f:2c:cc:9b:ca:ed:bf:92: cd:57:da:38:72:0b:df:84:03:9b:82:dd:46:75:52: f1:96:a8:08:11:54:ac:82:60:26:78:eb:db:0a:39: 54:b6:5a:fd:6d:28:30:e9:bb:6c:a2:d9:01:08:c1: 83:24:60:ca:f9:50:e3:89:97:03:ee:ed:c3:00:5d: 52:25:bb:d8:a2:8f:4f:20:59:a7:3d:01:b9:e0:a6: 26:13:f0:be:d0:90:0d:71:9a:9f:28:79:fe:cc:ad: c2:c2:56:2e:8a:88:41:c7:c1:38:f4:85:03:a1:bc: 0b:57:d5:59:34:89:04:69:a7:2f:12:39:be:b5:0e: 29:6e:d8:7b:ba:c3:0f:fc:c6:36:2a:48:f9:51:2c: f7:1f:7e:3d:f7:ee:84:2d:bd:ab:85:fd:9b:87:f4: 9d:a0:76:c5:a1:a1:b1:c7:7d:d6:54:9a:dd:79:bc: bb:81:72:40:5f:b4:14:c8:50:11:dc:7c:ce:12:77: 81:7f:83:b5:92:7e:2c:d2:7f:f4:9a:5a:2c:d4:79: f5:79:a4:88:d1:f4:47:7f:24:fc:dc:68:4f:d2:62: ce:ff:71:6d:31:0b:38:13:e5:5a:69:90:70:13:19: 31:0d:c6:2a:ae:c4:6f:94:39:fd:c2:03:9f:61:ac: 33:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AA:13:BC:94:AF:32:BE:09:D7:3C:2E:E4:FE:6F:9C:99:C7:4D:39 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:9f:bb:20:c6:b9:89:c7:ff:6f:c2:b3:96:41:a8:7f:cd:c8: 18:4f:09:44:26:58:e9:be:00:ff:16:53:72:61:61:59:a4:ad: 1f:99:41:b2:09:f7:01:39:40:f8:27:26:ac:90:f9:81:66:4a: c6:54:2c:b1:a3:74:8d:9d:c3:85:ec:d6:f4:54:0a:b3:70:a4: 17:42:e4:03:86:4d:4a:12:6a:86:f0:39:2e:33:05:82:c9:74: d8:92:39:ae:e4:27:83:73:56:0c:4a:07:bb:cb:9a:1f:d9:8d: 60:11:de:be:c6:c7:34:4b:22:97:8f:2e:6b:14:21:25:2c:fc: ba:b6:41:11:d8:5a:19:60:b7:85:6f:cb:9d:d9:34:a7:0d:67: 01:85:71:1c:4d:63:c3:81:e1:22:09:ec:3b:52:2a:13:e7:c4: 97:fa:2b:92:b0:79:48:56:5a:14:0b:5d:4e:27:18:7d:e6:3a: 36:1e:d8:fe:21:53:2b:0f:82:ad:a3:2b:0d:6c:6f:41:5c:08: 48:af:04:6e:32:2b:d1:18:3f:ea:5b:32:89:91:3f:c9:78:81: 1e:69:45:0f:89:fc:e4:62:92:8b:37:86:ef:40:75:68:09:22: 71:d7:bb:81:6f:b3:a7:97:1c:34:fe:18:44:51:4e:4f:98:a9: 3c:bd:56:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjQxMTIzMDMzNzEyWhcNMjQxMTMwMDMzNzEyWjAYMRYwFAYD VQQDEw02NzQxNGRlOS03ZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AwQ1uBiLyzMm8rtv5LNV9o4cgvfhAObgt1GdVLxlqgIEVSsgmAmeOvbCjlU tlr9bSgw6btsotkBCMGDJGDK+VDjiZcD7u3DAF1SJbvYoo9PIFmnPQG54KYmE/C+ 0JANcZqfKHn+zK3CwlYuiohBx8E49IUDobwLV9VZNIkEaacvEjm+tQ4pbth7usMP /MY2Kkj5USz3H3499+6ELb2rhf2bh/SdoHbFoaGxx33WVJrdeby7gXJAX7QUyFAR 3HzOEneBf4O1kn4s0n/0mlos1Hn1eaSI0fRHfyT83GhP0mLO/3FtMQs4E+VaaZBw ExkxDcYqrsRvlDn9wgOfYawzDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyqE7yU rzK+Cdc8LuT+b5yZx005MB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5n7sgxrmJx/9vwrOWQah/zcgYTwlEJljpvgD/FlNyYWFZpK0fmUGy CfcBOUD4JyaskPmBZkrGVCyxo3SNncOF7Nb0VAqzcKQXQuQDhk1KEmqG8DkuMwWC yXTYkjmu5CeDc1YMSge7y5of2Y1gEd6+xsc0SyKXjy5rFCElLPy6tkER2FoZYLeF b8ud2TSnDWcBhXEcTWPDgeEiCew7UioT58SX+iuSsHlIVloUC11OJxh95jo2Htj+ IVMrD4KtoysNbG9BXAhIrwRuMivRGD/qWzKJkT/JeIEeaUUPifzkYpKLN4bvQHVo CSJx17uBb7Onlxw0/hhEUU5PmKk8vVaO -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:27 2024 by rpki-client on console-ams.rpki-client.org