$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: ZaoJLBGSUvFpSix1uc4u7moXKs7l3Xhh9lF4kLSQqAA= Subject key identifier: 83:FE:B1:C3:90:A2:A8:DC:A0:EB:C7:40:8A:C7:57:2A:F3:68:76:0B Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 0220 Signing time: Sun 19 May 2024 04:04:24 +0000 Manifest this update: Sun 19 May 2024 04:04:23 +0000 Manifest next update: Sun 26 May 2024 04:04:23 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: qbAkgpewEpvng7d5yo1nSxn10s4s7R3eZz0tLjpjOJo=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: MZEWQMsUFrt7PRCDHvEFHoB8qTdQmnAUwHLZ9CXSRog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: May 19 04:04:23 2024 GMT Not After : May 26 04:04:23 2024 GMT Subject: CN=66497a48-bf39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:b2:0d:d8:d9:89:86:7a:bf:4a:32:06:5b: d9:26:6d:5f:33:90:7d:43:ca:99:a1:57:05:3c:e9: e8:f4:56:96:b4:21:63:5a:f5:2d:1e:db:da:d2:3c: 0e:fd:5b:6b:31:eb:d1:fe:17:8c:d2:77:b0:90:52: 20:43:1e:78:c9:0a:71:0a:1f:d6:60:17:a1:49:4d: 85:af:d9:44:8a:8f:a3:e9:b3:eb:bf:22:c8:29:17: dd:4f:8d:ec:e3:f3:59:52:a3:f3:05:3e:0b:4f:a8: 50:e3:ce:0c:e4:33:69:8a:7a:54:13:42:58:cf:6f: e0:29:bf:39:9d:ed:c3:34:da:0a:5d:75:da:dd:14: c9:a3:d0:c0:47:ea:18:9a:0c:a3:01:c6:3e:61:89: af:46:05:43:2d:22:2a:ca:0d:06:b1:1e:c9:50:9b: af:e6:22:f6:f4:b9:c3:e5:aa:9f:4b:12:a5:d9:53: ad:b1:15:8b:55:11:b3:3f:d5:15:1e:1b:51:b7:15: ef:d5:f9:ac:81:1e:b9:17:01:1f:c7:a4:78:d7:65: b2:fc:d8:20:06:50:ce:84:ec:f4:37:51:ac:4d:b0: 06:fd:d1:81:59:ee:a1:b3:ab:11:4e:a5:5b:4a:c1: 1c:f4:43:a3:63:55:e8:f5:8a:b3:11:81:de:cc:83: 31:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FE:B1:C3:90:A2:A8:DC:A0:EB:C7:40:8A:C7:57:2A:F3:68:76:0B X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:49:1a:6f:bb:83:9e:65:c2:9c:cc:86:a5:bb:df:71:f3:b2: 22:ae:96:a5:f1:6a:65:82:54:f4:8f:66:99:7b:06:a8:be:5b: 40:c9:31:bc:68:48:51:07:31:83:37:e8:41:29:fe:ef:59:45: 44:5c:2b:e4:b0:30:5b:91:d0:63:ee:77:04:02:23:50:6c:bd: 7b:de:22:e7:20:c7:52:9c:a9:5d:d7:9f:8b:eb:ca:c5:a0:fb: 19:d2:59:d2:c2:ba:19:45:b6:80:51:80:df:3a:1b:bd:ae:3f: 41:39:79:d3:1f:53:34:9d:51:87:36:48:e5:bb:42:e7:87:e8: e7:9b:db:2d:96:f7:33:cd:d4:62:80:bf:64:78:ce:2b:d4:5b: b0:ae:3a:01:3e:f4:86:f5:1d:06:f6:8a:f5:50:fa:5f:8c:db: 75:63:7a:11:fc:83:e2:35:c9:db:59:97:f2:85:12:70:20:94: 2e:c8:57:f7:e3:e6:0d:7f:f5:e2:cf:90:c7:37:c9:90:d6:f6: 43:1c:e5:10:e3:59:bb:0c:28:13:82:29:79:05:a7:76:b9:fd: 2a:a3:9f:cf:93:0f:16:14:e2:df:a0:ea:02:25:46:2d:82:e3: c8:6a:aa:b6:2e:d3:58:af:c8:51:71:fb:a9:08:cb:1a:d2:dd: 04:c4:8f:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjQwNTE5MDQwNDIzWhcNMjQwNTI2MDQwNDIzWjAYMRYwFAYD VQQDEw02NjQ5N2E0OC1iZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNmyDdjZiYZ6v0oyBlvZJm1fM5B9Q8qZoVcFPOno9FaWtCFjWvUtHtva0jwO /VtrMevR/heM0newkFIgQx54yQpxCh/WYBehSU2Fr9lEio+j6bPrvyLIKRfdT43s 4/NZUqPzBT4LT6hQ484M5DNpinpUE0JYz2/gKb85ne3DNNoKXXXa3RTJo9DAR+oY mgyjAcY+YYmvRgVDLSIqyg0GsR7JUJuv5iL29LnD5aqfSxKl2VOtsRWLVRGzP9UV HhtRtxXv1fmsgR65FwEfx6R412Wy/NggBlDOhOz0N1GsTbAG/dGBWe6hs6sRTqVb SsEc9EOjY1Xo9YqzEYHezIMxHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIP+scOQ oqjcoOvHQIrHVyrzaHYLMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgSRpvu4OeZcKczIalu99x87Iirpal8WplglT0j2aZewaovltAyTG8 aEhRBzGDN+hBKf7vWUVEXCvksDBbkdBj7ncEAiNQbL173iLnIMdSnKld15+L68rF oPsZ0lnSwroZRbaAUYDfOhu9rj9BOXnTH1M0nVGHNkjlu0Lnh+jnm9stlvczzdRi gL9keM4r1FuwrjoBPvSG9R0G9or1UPpfjNt1Y3oR/IPiNcnbWZfyhRJwIJQuyFf3 4+YNf/Xiz5DHN8mQ1vZDHOUQ41m7DCgTgil5Bad2uf0qo5/Pkw8WFOLfoOoCJUYt guPIaqq2LtNYr8hRcfupCMsa0t0ExI+V -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org