$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: /T25FuEwSXrdAAdMamrDqem7ZMvdF6lAYBIcUH/tkRE= Subject key identifier: 8E:4A:EF:F8:53:E5:0D:CD:8F:CD:A7:21:08:13:8D:E0:3A:97:61:F0 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1B7C Signing time: Sat 18 May 2024 16:37:44 +0000 Manifest this update: Sat 18 May 2024 16:37:44 +0000 Manifest next update: Sat 25 May 2024 16:37:44 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: SF5W7TgJFy8HSdXxvqsWU3zKD9V9oGLymUEphajqnRU=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: U3IpEIQd/Tw2xubAYPeBmnwW+xhdoTFgtE7qEfwYvec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7051 (0x1b8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: May 18 16:37:44 2024 GMT Not After : May 25 16:37:44 2024 GMT Subject: CN=6648d958-65a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:44:ed:4b:fa:44:7d:9e:75:6d:c2:b2:03:3c: 73:34:d2:38:64:d1:1b:b0:41:96:4b:43:8e:bf:08: cb:94:f1:75:f0:c6:a4:0d:a2:98:b4:ba:33:68:ec: 8c:b8:76:cf:9a:53:d4:91:f6:3c:14:cb:8e:cf:52: c5:df:f6:e5:22:4f:e6:5a:5a:1b:77:c2:9c:95:46: ad:61:3e:34:ad:40:c2:fb:3e:28:9c:cb:ba:2e:3d: 98:d8:1e:75:a6:16:79:6c:ea:fd:95:e3:b8:a6:4c: 2d:e6:8f:28:14:53:36:c0:dd:7f:bc:81:c2:c0:47: 31:36:80:ba:07:90:8c:4d:11:3f:27:ec:25:28:a2: db:e8:03:e4:8b:b2:18:e3:aa:8b:93:43:d5:ce:91: 4d:cd:d5:3a:9d:b1:c3:56:8c:9f:b8:27:3b:b7:52: da:b5:28:bc:9a:af:23:ea:c3:c0:02:ce:19:65:c9: ee:6b:d9:91:d3:5e:ba:85:b2:bf:d0:81:25:cb:db: 7f:f8:da:fa:59:66:2b:86:d6:64:44:db:71:20:90: 4f:39:f6:d1:bc:9d:51:79:4d:48:a1:25:39:7e:ab: d8:ac:39:4a:a6:d1:fe:7d:7f:0c:ca:2b:93:dd:a3: 97:e7:b4:43:fc:67:06:e5:33:cb:a8:9e:4f:ab:a7: af:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4A:EF:F8:53:E5:0D:CD:8F:CD:A7:21:08:13:8D:E0:3A:97:61:F0 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:86:06:32:3f:78:13:07:0f:4a:e0:63:44:55:0b:43:df:a2: f3:50:37:93:86:0f:22:42:c9:a6:50:61:f1:a1:3e:4f:7f:33: f3:8d:a8:dd:ef:29:fc:42:78:50:b2:87:db:62:52:11:6b:90: 14:42:ac:02:ac:59:53:dc:c1:35:44:e2:e6:be:00:e7:5e:f8: 34:74:f0:ce:50:ea:ee:da:b4:58:71:b8:0f:59:0b:a4:9b:33: 5e:ae:b0:24:c0:33:83:79:92:bf:87:fe:66:74:2e:ec:cd:5d: 50:d8:aa:05:f0:1f:c7:87:5d:de:39:c0:08:9a:02:23:3c:c6: 67:dd:2f:61:8c:2c:0b:7b:ef:c8:b0:bb:a4:31:5b:1c:ba:07: d2:6f:38:4f:a5:05:ea:98:a8:e3:99:1f:7a:40:75:92:83:12: b2:07:ea:96:6e:7a:50:a4:d8:74:7b:16:8f:55:04:a3:e4:b5: fb:ea:1d:82:97:1b:d4:22:bc:21:ae:c2:bc:5a:a2:a9:45:9c: 51:b5:22:ab:f1:77:00:42:2a:fe:22:1c:56:ec:0f:3a:3f:f6: df:db:b7:1b:4f:db:6d:a9:27:a1:e9:07:08:9c:8a:e8:91:9f: fc:9a:25:31:60:e5:74:6d:ec:27:e8:f5:7b:f7:25:46:a7:4f: b9:1a:fe:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjQwNTE4MTYzNzQ0WhcNMjQwNTI1MTYzNzQ0WjAYMRYwFAYD VQQDEw02NjQ4ZDk1OC02NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUTtS/pEfZ51bcKyAzxzNNI4ZNEbsEGWS0OOvwjLlPF18MakDaKYtLozaOyM uHbPmlPUkfY8FMuOz1LF3/blIk/mWlobd8KclUatYT40rUDC+z4onMu6Lj2Y2B51 phZ5bOr9leO4pkwt5o8oFFM2wN1/vIHCwEcxNoC6B5CMTRE/J+wlKKLb6APki7IY 46qLk0PVzpFNzdU6nbHDVoyfuCc7t1LatSi8mq8j6sPAAs4ZZcnua9mR0166hbK/ 0IEly9t/+Nr6WWYrhtZkRNtxIJBPOfbRvJ1ReU1IoSU5fqvYrDlKptH+fX8MyiuT 3aOX57RD/GcG5TPLqJ5Pq6evfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5K7/hT 5Q3Nj82nIQgTjeA6l2HwMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBahgYyP3gTBw9K4GNEVQtD36LzUDeThg8iQsmmUGHxoT5PfzPzjajd 7yn8QnhQsofbYlIRa5AUQqwCrFlT3ME1ROLmvgDnXvg0dPDOUOru2rRYcbgPWQuk mzNerrAkwDODeZK/h/5mdC7szV1Q2KoF8B/Hh13eOcAImgIjPMZn3S9hjCwLe+/I sLukMVscugfSbzhPpQXqmKjjmR96QHWSgxKyB+qWbnpQpNh0exaPVQSj5LX76h2C lxvUIrwhrsK8WqKpRZxRtSKr8XcAQir+IhxW7A86P/bf27cbT9ttqSeh6QcInIro kZ/8miUxYOV0bewn6PV79yVGp0+5Gv70 -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org