$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft File: gO0g9_wH3gyfPBuOKunNP85u2yE.mft (raw, json) Hash identifier: WEdEH9ovN8NPcgIIvsLFnBOcaIoUTyONOk+UJPoJfAo= Subject key identifier: 73:C1:5B:A6:86:5A:19:B5:AE:0A:70:FB:39:D2:1B:07:D4:EB:A2:65 Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft Manifest number: 047F Signing time: Sun 19 May 2024 01:40:29 +0000 Manifest this update: Sun 19 May 2024 01:40:28 +0000 Manifest next update: Sun 26 May 2024 01:40:28 +0000 Files and hashes: 1: gO0g9_wH3gyfPBuOKunNP85u2yE.crl (hash: tj85gSE5sHmigmx4LneEUEEVAKPHgHrXdgCvsv3iNl0=) 2: 8B656418F50011EBBF60EA16C4F9AE02.roa (hash: IIm1yA8njoUcBWRxCoDaEZk7LCuRfNfjy2yV4TDOftg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Validity Not Before: May 19 01:40:28 2024 GMT Not After : May 26 01:40:28 2024 GMT Subject: CN=6649588d-65c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:e0:90:f6:ed:60:86:1f:21:67:60:9b:5e: ac:2b:a3:29:24:23:c4:64:7e:3a:4b:8f:7a:fe:05: aa:91:4a:41:81:8a:be:1b:6d:a2:21:e9:a5:ca:46: ed:3b:77:b1:1f:14:44:e7:ea:7b:94:ff:04:17:23: fb:ad:63:85:8b:9f:84:32:21:67:0c:aa:3b:24:79: 25:4d:95:55:5c:8d:44:d0:51:ba:92:8c:eb:43:05: 71:53:f3:fa:89:43:d7:d2:a4:6a:db:aa:42:22:e6: be:17:0c:58:eb:bb:55:ff:cb:58:57:b4:e3:29:7a: 52:6c:c7:84:27:99:11:ab:f4:19:08:d9:29:a9:62: b5:b6:5b:93:14:05:db:e0:74:21:72:6b:23:8b:68: f9:89:58:aa:cd:71:f8:ef:61:43:ec:17:3b:e6:36: f1:94:7d:a1:8e:b0:9d:98:e2:fa:a2:cc:07:dc:64: b3:48:c6:87:e1:8e:7c:51:23:1c:db:02:17:f3:d2: a5:5a:56:b4:89:1f:d2:e0:d8:31:96:ad:da:c9:be: 8b:e8:01:43:b1:32:9a:6d:5b:78:d2:4a:68:fd:a5: a4:d3:05:da:ef:60:de:25:be:8c:ec:d4:ae:83:25: 44:3a:8b:8a:27:37:97:8b:1a:22:36:76:6e:0d:77: e9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C1:5B:A6:86:5A:19:B5:AE:0A:70:FB:39:D2:1B:07:D4:EB:A2:65 X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b9:79:01:e7:0c:48:1b:84:71:0a:45:89:d9:25:13:6a:f6: ad:3b:01:01:38:6c:3e:e6:d6:7e:dd:57:ad:a1:d1:3a:37:25: 8c:9f:21:d3:ab:e1:33:e5:9d:16:fb:90:48:5b:39:c1:80:7e: 29:7a:82:7e:35:73:92:fb:f3:20:11:ce:69:07:c9:32:5f:3b: 5f:f6:89:61:27:e3:95:52:ff:1e:53:fe:1e:f5:94:47:f8:7f: 7b:7f:b0:df:de:d4:cc:b7:ed:87:a1:b3:6b:27:6b:8c:40:a5: 92:15:63:a9:f7:be:ad:10:28:8d:9b:43:6e:d8:85:4d:c3:ca: 6d:42:15:1e:29:1b:80:25:f0:07:55:df:e0:f5:df:e7:09:1a: d8:3c:dc:b9:62:df:21:f2:87:9a:5c:97:12:82:8a:1e:48:e9: 5e:44:ce:41:fd:78:9b:83:69:f8:33:9f:a4:ad:58:53:e3:1b: 04:0d:bb:2d:c2:40:9c:b1:a6:ab:78:57:78:b7:32:5f:05:ca: 19:65:70:0e:31:36:67:a1:44:bb:d6:4c:6b:b0:01:50:57:41: b3:0f:12:75:7c:16:ad:6f:1e:04:d3:dc:f9:dd:22:f2:47:64: f8:c2:64:f3:b8:af:7e:90:e2:45:64:f1:dc:e2:67:0f:9e:4e: d8:fe:e3:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjQwNTE5MDE0MDI4WhcNMjQwNTI2MDE0MDI4WjAYMRYwFAYD VQQDEw02NjQ5NTg4ZC02NWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFfgkPbtYIYfIWdgm16sK6MpJCPEZH46S496/gWqkUpBgYq+G22iIemlykbt O3exHxRE5+p7lP8EFyP7rWOFi5+EMiFnDKo7JHklTZVVXI1E0FG6kozrQwVxU/P6 iUPX0qRq26pCIua+FwxY67tV/8tYV7TjKXpSbMeEJ5kRq/QZCNkpqWK1tluTFAXb 4HQhcmsji2j5iViqzXH472FD7Bc75jbxlH2hjrCdmOL6oswH3GSzSMaH4Y58USMc 2wIX89KlWla0iR/S4Ngxlq3ayb6L6AFDsTKabVt40kpo/aWk0wXa72DeJb6M7NSu gyVEOouKJzeXixoiNnZuDXfpJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPBW6aG Whm1rgpw+znSGwfU66JlMB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkUwMC8zRDBCMjEyQUY0RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNn eWZQQnVPS3VuTlA4NXUyeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABuXkB5wxIG4RxCkWJ2SUTavatOwEBOGw+5tZ+3VetodE6NyWMnyHT q+Ez5Z0W+5BIWznBgH4peoJ+NXOS+/MgEc5pB8kyXztf9olhJ+OVUv8eU/4e9ZRH +H97f7Df3tTMt+2HobNrJ2uMQKWSFWOp976tECiNm0Nu2IVNw8ptQhUeKRuAJfAH Vd/g9d/nCRrYPNy5Yt8h8oeaXJcSgooeSOleRM5B/Xibg2n4M5+krVhT4xsEDbst wkCcsaareFd4tzJfBcoZZXAOMTZnoUS71kxrsAFQV0GzDxJ1fBatbx4E09z53SLy R2T4wmTzuK9+kOJFZPHc4mcPnk7Y/uPJ -----END CERTIFICATE-----Generated at Sun May 19 02:59:07 2024 by rpki-client on console-ams.rpki-client.org