$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft File: gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft (raw, json) Hash identifier: EzTo10F97rCqIyyfR/ukDs4q1XO9yNItseNzu7oyuoE= Subject key identifier: 41:9F:0A:C2:80:05:CA:E7:65:AE:BE:B0:44:49:0B:80:9B:41:D2:C9 Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Certificate serial: 0695 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft Manifest number: 068E Signing time: Sat 18 May 2024 23:22:05 +0000 Manifest this update: Sat 18 May 2024 23:22:05 +0000 Manifest next update: Sat 25 May 2024 23:22:05 +0000 Files and hashes: 1: gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl (hash: iaCxlkkiMhmXwV9dTQ7PdNHsJ/ituYp3eMS7CF8JMMo=) 2: 7D7B467CE06011EDBB10FD53C4F9AE02.roa (hash: pvGor71t4ioPGT4f0E8Hry/0JGwGZCFr6ATYIOq/AWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Validity Not Before: May 18 23:22:05 2024 GMT Not After : May 25 23:22:05 2024 GMT Subject: CN=6649381d-1be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:77:d0:a9:3b:2f:40:1c:81:14:1f:24:e9: 32:56:90:40:c7:d3:83:31:f9:25:79:89:42:e1:5b: 1b:a9:77:b9:68:5f:37:2b:5f:79:9a:43:42:44:e4: ba:6c:1f:af:78:60:80:c7:ad:17:d1:48:f2:35:04: 4e:81:8d:f2:ea:06:c6:20:54:bb:d2:b5:8d:2e:71: 6b:d4:e3:04:4b:8b:b3:55:e0:64:ef:ba:76:6e:e6: 5f:93:90:ea:ff:3b:11:b5:65:b3:19:f2:2c:60:b4: 10:73:9e:12:59:33:53:1d:77:2a:0f:44:b4:2e:f5: 6b:80:93:8c:19:1f:6a:4a:d9:63:73:e0:1a:99:4b: 64:79:d8:1b:8a:fe:00:8d:03:d4:bd:d2:1c:d5:9d: dd:9b:4b:ab:fa:b2:06:f9:bd:f1:60:6a:c1:b8:c9: 0a:c2:1f:f6:7e:cd:82:73:8e:8b:8f:30:7a:ba:48: e9:b8:48:02:ce:92:98:02:e0:68:d0:79:dd:82:50: f0:c6:ae:e2:06:72:75:fd:9e:4c:5f:12:0d:94:18: 3c:a9:fc:69:77:c7:0b:70:84:06:58:59:c7:bf:b5: 5c:e7:26:62:32:4f:e1:72:64:5c:49:01:a6:95:ee: c1:bb:8c:9c:48:0d:92:e1:5b:6a:6a:ad:6e:6d:75: d9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9F:0A:C2:80:05:CA:E7:65:AE:BE:B0:44:49:0B:80:9B:41:D2:C9 X509v3 Authority Key Identifier: keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:c9:58:32:c6:9f:e9:87:e1:ed:cd:f3:ba:aa:63:51:be:16: 51:4f:0e:35:7d:bd:49:05:1d:55:d8:87:3c:a5:f2:00:63:83: bc:69:55:ac:bb:73:b2:15:c2:eb:68:f0:50:2b:1f:13:58:1c: 40:b1:8b:28:d6:f2:2b:2c:ce:08:1b:0e:d3:e0:24:f2:7e:4c: 54:e0:3c:32:89:eb:1b:41:fd:2d:e7:c4:8e:6f:4e:12:c7:fe: 6a:b6:76:43:68:1a:3d:fd:e7:9a:f1:c3:66:0d:7e:36:c4:8f: 41:c6:37:14:ad:d6:f7:49:1e:e1:c9:ad:91:66:ce:0a:dd:fe: 79:1d:a6:7d:20:de:2a:5f:11:be:d4:21:1b:3b:2e:9f:c9:62: 73:bc:d1:28:2e:4a:51:5f:1b:18:2a:81:a3:67:7c:f1:a5:34: 41:d0:ec:9a:4d:48:21:4f:5f:bf:aa:0d:3f:9c:4d:df:02:f3: b9:83:b5:83:7b:00:c0:bb:e8:80:a6:b0:e1:bd:78:ff:dd:30: 34:02:de:46:05:c5:4c:f5:7b:41:0a:1f:31:ec:bd:c1:7d:3a: a9:ac:2c:91:ce:ac:87:7b:a9:ea:b3:88:0e:d9:e1:79:5e:79: 06:4e:d8:10:e2:0b:88:b7:b7:a0:87:7b:cc:19:4e:aa:a3:8b: 41:83:94:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NkMxMTAvBgNVBAUTKDgxOTc2NjNBN0Y2MzQ3RDU5MUI2QjJCOUFERDVBMkQ1 NzRFOTExMjQwHhcNMjQwNTE4MjMyMjA1WhcNMjQwNTI1MjMyMjA1WjAYMRYwFAYD VQQDEw02NjQ5MzgxZC0xYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAx30Kk7L0AcgRQfJOkyVpBAx9ODMfkleYlC4VsbqXe5aF83K195mkNCROS6 bB+veGCAx60X0UjyNQROgY3y6gbGIFS70rWNLnFr1OMES4uzVeBk77p2buZfk5Dq /zsRtWWzGfIsYLQQc54SWTNTHXcqD0S0LvVrgJOMGR9qStljc+AamUtkedgbiv4A jQPUvdIc1Z3dm0ur+rIG+b3xYGrBuMkKwh/2fs2Cc46LjzB6ukjpuEgCzpKYAuBo 0HndglDwxq7iBnJ1/Z5MXxINlBg8qfxpd8cLcIQGWFnHv7Vc5yZiMk/hcmRcSQGm le7Bu4ycSA2S4Vtqaq1ubXXZMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGfCsKA BcrnZa6+sERJC4CbQdLJMB8GA1UdIwQYMBaAFIGXZjp/Y0fVkbayua3VotV06REk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk2Qy8xRDMxQzE4NDI4 OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5V1J0cks1cmRXaTFYVHBF U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2daZG1PbjlqUjlXUnRySzVyZFdpMVhUcEVTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk2Qy8xRDMxQzE4NDI4OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5 V1J0cks1cmRXaTFYVHBFU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJyVgyxp/ph+HtzfO6qmNRvhZRTw41fb1JBR1V2Ic8pfIAY4O8aVWs u3OyFcLraPBQKx8TWBxAsYso1vIrLM4IGw7T4CTyfkxU4DwyiesbQf0t58SOb04S x/5qtnZDaBo9/eea8cNmDX42xI9BxjcUrdb3SR7hya2RZs4K3f55HaZ9IN4qXxG+ 1CEbOy6fyWJzvNEoLkpRXxsYKoGjZ3zxpTRB0OyaTUghT1+/qg0/nE3fAvO5g7WD ewDAu+iAprDhvXj/3TA0At5GBcVM9XtBCh8x7L3BfTqprCyRzqyHe6nqs4gO2eF5 XnkGTtgQ4guIt7egh3vMGU6qo4tBg5R4 -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org