$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: i7E1q8kEA+uYraA/xPXljeYzFL1YOhD5AVNwc0nog94= Subject key identifier: 98:33:4F:13:BC:48:9D:05:32:D6:E4:52:1C:82:FD:B3:A9:6B:B4:FD Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 0551 Signing time: Sun 19 May 2024 00:51:23 +0000 Manifest this update: Sun 19 May 2024 00:51:23 +0000 Manifest next update: Sun 26 May 2024 00:51:23 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: 79Gt5Oq1jguvlbzuaB9wSR/Hfm5PJvmeRaao9zxaNxw=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: znVrzDU0BSkt2ZYFWZRzHnhuZQN/VFjT6FjpKFztMoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: May 19 00:51:23 2024 GMT Not After : May 26 00:51:23 2024 GMT Subject: CN=66494d0b-6c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:9d:9e:23:c8:3a:c7:61:66:0f:54:81:d2: eb:67:63:3c:fc:b3:4d:da:fa:67:08:e0:2e:a6:71: c2:c7:e9:e3:34:f0:4c:f9:a0:e0:78:d7:76:65:66: 1f:5f:76:3b:c9:31:e6:e2:d2:59:8b:da:b2:38:bf: 8f:dc:de:f7:55:46:00:85:5e:bb:2b:6a:ec:95:d7: 89:aa:5b:7b:86:05:d9:28:a0:44:d4:66:50:00:9e: f3:43:67:1f:46:c6:05:a3:14:ec:6b:89:0f:bf:7a: 75:5f:df:c0:8d:b6:7f:09:7c:72:6b:27:58:23:f4: f6:4e:2e:4c:d8:b6:cb:97:cc:46:70:e0:5d:fe:38: 73:a5:44:82:5e:49:6d:7e:f1:67:04:03:96:70:b5: 01:82:aa:06:12:d7:d3:d6:02:19:57:7e:20:15:4f: b0:06:6a:8b:0e:3f:30:23:b9:f6:7c:1e:1e:f8:87: ef:9e:8b:1b:86:5e:0e:7d:14:89:83:6f:7d:17:0d: 95:6d:e5:08:3a:49:66:a1:fc:8c:97:38:2c:79:12: ce:f9:e9:12:f9:52:5f:4b:4d:b4:1d:9f:42:d0:a4: b7:ed:1a:e8:d1:ae:44:6f:cb:0c:c0:10:2d:aa:06: e2:dc:55:ea:d9:8a:34:cf:fd:08:aa:99:53:f0:d9: ad:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:33:4F:13:BC:48:9D:05:32:D6:E4:52:1C:82:FD:B3:A9:6B:B4:FD X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:52:8b:d2:e5:fe:c6:b8:3e:f3:9c:85:f6:08:2a:0c:bf:2d: 4b:89:65:75:6a:8a:25:fc:80:56:f1:44:fc:17:20:55:a4:d7: 9a:05:ad:1b:b7:a6:e8:87:a0:53:10:3b:68:79:1c:f7:08:ec: 85:45:ff:73:7a:3d:cd:e0:24:02:7e:f6:a1:14:cc:d0:2d:87: 46:69:6f:2c:1e:13:a4:2f:80:80:fd:33:17:c6:79:4f:19:45: c5:8c:be:8c:0b:b3:37:be:7e:e7:0c:b7:77:cb:81:d3:c3:76: 67:d7:eb:e8:88:98:cb:6b:18:64:73:44:1c:87:52:5d:cf:77: 99:77:cc:3f:e1:89:18:29:9e:9b:59:03:85:21:70:0c:aa:5d: 53:5c:98:19:1d:b3:29:98:63:8a:24:76:70:73:56:23:25:ae: 17:cd:7c:d6:a8:cb:a0:a4:07:26:0d:f5:f0:65:a8:40:a4:6c: 63:b7:0e:c7:27:5a:2e:a8:70:b0:5b:06:11:86:33:3e:76:9a: f4:50:87:67:ce:28:a7:17:6b:e9:53:87:08:13:76:f2:78:64: a8:fd:13:f1:5a:fa:17:c3:f2:f4:29:b0:20:10:32:7a:2d:88: 6f:58:82:4a:20:7a:c4:6d:a1:17:5c:84:fd:4d:47:d9:e4:dc: 21:4e:17:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjQwNTE5MDA1MTIzWhcNMjQwNTI2MDA1MTIzWjAYMRYwFAYD VQQDEw02NjQ5NGQwYi02YzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/WdniPIOsdhZg9UgdLrZ2M8/LNN2vpnCOAupnHCx+njNPBM+aDgeNd2ZWYf X3Y7yTHm4tJZi9qyOL+P3N73VUYAhV67K2rsldeJqlt7hgXZKKBE1GZQAJ7zQ2cf RsYFoxTsa4kPv3p1X9/AjbZ/CXxyaydYI/T2Ti5M2LbLl8xGcOBd/jhzpUSCXklt fvFnBAOWcLUBgqoGEtfT1gIZV34gFU+wBmqLDj8wI7n2fB4e+Ifvnosbhl4OfRSJ g299Fw2VbeUIOklmofyMlzgseRLO+ekS+VJfS020HZ9C0KS37Rro0a5Eb8sMwBAt qgbi3FXq2Yo0z/0IqplT8NmtEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgzTxO8 SJ0FMtbkUhyC/bOpa7T9MB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIUovS5f7GuD7znIX2CCoMvy1LiWV1aool/IBW8UT8FyBVpNeaBa0b t6boh6BTEDtoeRz3COyFRf9zej3N4CQCfvahFMzQLYdGaW8sHhOkL4CA/TMXxnlP GUXFjL6MC7M3vn7nDLd3y4HTw3Zn1+voiJjLaxhkc0Qch1Jdz3eZd8w/4YkYKZ6b WQOFIXAMql1TXJgZHbMpmGOKJHZwc1YjJa4XzXzWqMugpAcmDfXwZahApGxjtw7H J1ouqHCwWwYRhjM+dpr0UIdnziinF2vpU4cIE3byeGSo/RPxWvoXw/L0KbAgEDJ6 LYhvWIJKIHrEbaEXXIT9TUfZ5NwhThfu -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org