$ rpki-client -vvf rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft File: sGbiQQUMOMNJyyXUQBRFD09QGK4.mft (raw, json) Hash identifier: wsS2GaXmNC3l/jYWv6jOley3iS+b6ALXSADU0HNr/YQ= Subject key identifier: 5C:79:A7:73:58:ED:48:F6:67:70:00:24:DC:4D:DF:31:ED:C6:82:55 Authority key identifier: B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE Certificate issuer: /CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE Certificate serial: 0F63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft Manifest number: 0F5B Signing time: Sat 18 May 2024 18:09:59 +0000 Manifest this update: Sat 18 May 2024 18:09:58 +0000 Manifest next update: Sat 25 May 2024 18:09:58 +0000 Files and hashes: 1: sGbiQQUMOMNJyyXUQBRFD09QGK4.crl (hash: wKl0Xj2aEpiBUGLvhfN5vBrl1hxf9XcwLGzGzQLvx6I=) 2: 6657C8D243B911E9AE253437C4F9AE02.roa (hash: LmhQsBTb+BuO+Fwea9Qf/BB3cKTPF95IWgnUADqnRaM=) 3: D38E10ACDEA311EE901DD072C4F9AE02.roa (hash: 4rMhUP1V6/f4KSbXB3ah+ZfQ57lXwXKofHxQEjiCVfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3939 (0xf63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE Validity Not Before: May 18 18:09:58 2024 GMT Not After : May 25 18:09:58 2024 GMT Subject: CN=6648eef7-9581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:05:d8:b8:d4:fe:24:89:b1:78:fb:dd:0d: bf:46:51:72:a5:55:3a:68:14:d7:e6:fd:41:7f:be: 42:d9:f7:e3:0c:e4:82:12:71:4c:b2:c5:f5:cc:0f: 5c:1f:d0:f2:c7:92:82:03:27:b7:2d:4d:de:91:8d: 92:27:9f:21:cb:f3:a2:70:4c:85:70:60:6f:bc:38: 61:14:58:4d:8f:51:4d:b9:9c:41:3c:84:b2:fe:ff: b1:fc:92:8b:c7:26:f9:4a:5e:48:17:ee:bf:80:76: e4:4b:25:9e:54:78:b6:39:5e:fd:b0:3a:52:ac:df: 67:16:0e:9f:92:88:bc:35:11:07:73:22:03:4c:81: 09:1c:27:c1:ee:4c:93:c5:15:23:28:38:19:be:a0: 21:2d:bd:61:9b:a4:17:0e:40:93:bc:7d:24:a5:13: d6:99:b6:09:3b:5e:a2:25:ff:21:30:ab:68:fa:d7: 62:f4:07:27:6d:10:25:6e:7d:b8:61:37:2d:24:ac: 15:ed:ca:09:9a:17:d4:6d:d2:fa:24:51:17:01:64: 46:87:b5:96:eb:8d:3d:76:e5:96:d3:51:f5:5d:76: 18:5b:c0:ab:7f:18:99:e0:2b:19:fb:ed:87:02:08: dc:bf:a0:6d:26:d4:c4:62:2a:87:ea:f7:6b:57:b0: c1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:79:A7:73:58:ED:48:F6:67:70:00:24:DC:4D:DF:31:ED:C6:82:55 X509v3 Authority Key Identifier: keyid:B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:11:4b:60:e5:f0:0e:5d:f1:d8:46:3c:01:5b:a0:3a:98:5d: b3:27:56:45:5b:03:95:f5:ac:10:ba:cf:ef:01:a8:5e:c2:e2: b0:7a:7d:38:d9:45:6c:9e:62:b1:f8:f1:f3:3f:dd:b8:4e:a2: 85:6b:c5:91:c9:5c:6b:15:7e:48:01:83:b2:a8:b4:e1:cf:cb: 0b:47:f1:fa:cd:3b:f3:24:c5:1f:97:e5:b4:55:a4:ba:22:fa: d3:5f:bb:cd:ee:b5:b4:54:c3:29:22:0d:75:c2:c6:dc:9a:62: 1c:b7:2c:01:7a:5a:20:dc:6a:4a:54:c8:c1:47:64:01:f4:7a: c6:5a:ed:48:fa:52:67:9b:06:f4:96:60:7c:f9:87:9c:13:57: 58:08:f6:c2:8c:eb:90:42:5d:c1:3f:9c:a5:8e:f1:41:5c:b5: 8e:e8:19:9f:fd:b2:1c:2b:19:e9:42:cd:b4:f9:77:86:32:cc: 5f:44:7a:67:6e:1c:8d:21:1d:c3:dd:36:d6:2e:a6:1b:05:c4: 1e:92:e6:6e:82:54:d8:0c:c8:85:5a:6e:6c:a1:76:9d:94:20: a8:10:69:ab:ab:32:29:8f:19:b4:0c:d4:b3:ff:9d:56:d1:5a: cf:48:51:19:88:4e:86:99:82:25:a2:78:9d:3f:92:ea:2b:d4: 7d:2d:12:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNFODMxMTAvBgNVBAUTKEIwNjZFMjQxMDUwQzM4QzM0OUNCMjVENDQwMTQ0NTBG NEY1MDE4QUUwHhcNMjQwNTE4MTgwOTU4WhcNMjQwNTI1MTgwOTU4WjAYMRYwFAYD VQQDEw02NjQ4ZWVmNy05NTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpYF2LjU/iSJsXj73Q2/RlFypVU6aBTX5v1Bf75C2ffjDOSCEnFMssX1zA9c H9Dyx5KCAye3LU3ekY2SJ58hy/OicEyFcGBvvDhhFFhNj1FNuZxBPISy/v+x/JKL xyb5Sl5IF+6/gHbkSyWeVHi2OV79sDpSrN9nFg6fkoi8NREHcyIDTIEJHCfB7kyT xRUjKDgZvqAhLb1hm6QXDkCTvH0kpRPWmbYJO16iJf8hMKto+tdi9AcnbRAlbn24 YTctJKwV7coJmhfUbdL6JFEXAWRGh7WW6409duWW01H1XXYYW8CrfxiZ4CsZ++2H Agjcv6BtJtTEYiqH6vdrV7DBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx5p3NY 7Uj2Z3AAJNxN3zHtxoJVMB8GA1UdIwQYMBaAFLBm4kEFDDjDScsl1EAURQ9PUBiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0U4My85NTY0MTkxQTQz QjgxMUU5QUJBMjJBMzRDNEY5QUUwMi9zR2JpUVFVTU9NTkp5eVhVUUJSRkQwOVFH SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHYmlRUVVNT01OSnl5WFVRQlJGRDA5UUdLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0U4My85NTY0MTkxQTQzQjgxMUU5QUJBMjJBMzRDNEY5QUUwMi9zR2JpUVFVTU9N Tkp5eVhVUUJSRkQwOVFHSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkEUtg5fAOXfHYRjwBW6A6mF2zJ1ZFWwOV9awQus/vAahewuKwen04 2UVsnmKx+PHzP924TqKFa8WRyVxrFX5IAYOyqLThz8sLR/H6zTvzJMUfl+W0VaS6 IvrTX7vN7rW0VMMpIg11wsbcmmIctywBelog3GpKVMjBR2QB9HrGWu1I+lJnmwb0 lmB8+YecE1dYCPbCjOuQQl3BP5yljvFBXLWO6Bmf/bIcKxnpQs20+XeGMsxfRHpn bhyNIR3D3TbWLqYbBcQekuZuglTYDMiFWm5soXadlCCoEGmrqzIpjxm0DNSz/51W 0VrPSFEZiE6GmYIlonidP5LqK9R9LRK2 -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org