$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json) Hash identifier: 4EMRrlVVC904s0Ow0BCxN245+oClJ5mo9zD56DeUT8A= Subject key identifier: F4:94:E4:5A:33:B0:06:21:CA:E5:CC:06:0D:80:CB:D6:88:6D:EA:37 Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft Manifest number: 0C55 Signing time: Sat 18 May 2024 18:55:23 +0000 Manifest this update: Sat 18 May 2024 18:55:22 +0000 Manifest next update: Sat 25 May 2024 18:55:22 +0000 Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: m39y28m7pnnC6LqHBaxXJx3B0+oT79XcyWnu4HZEZUU=) 2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: he3bY6Is5h9acipgiTdJz3mt+8HdFzcITDRaeiCVzu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: May 18 18:55:22 2024 GMT Not After : May 25 18:55:22 2024 GMT Subject: CN=6648f99b-8ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a5:b5:c0:80:55:ff:0d:e2:f9:d1:29:84:40: 76:37:3b:c4:9a:f0:02:bc:70:65:df:1d:8c:1c:7a: 56:58:52:3d:cf:04:c8:40:90:d5:45:e8:1d:ee:b6: a9:c2:99:bc:1e:f6:76:8f:a4:80:76:d4:3e:28:e7: 32:d8:44:70:e3:9b:b6:06:b7:3f:ae:f0:9f:52:1f: 03:da:aa:ee:f6:e5:98:31:25:79:11:54:ba:0e:c1: f6:65:1c:87:b7:fc:bf:23:cd:85:2b:28:97:78:f9: 4e:da:54:40:28:96:3c:71:0f:a0:ea:c6:91:ed:5d: 92:06:2e:1c:93:91:6f:e5:33:d2:4b:b5:76:65:9d: 02:42:ae:4b:44:8c:21:cc:43:c2:19:bf:14:af:9a: f5:aa:64:05:a1:a2:c1:79:72:81:72:8a:23:45:61: 08:be:cf:75:8f:64:e7:88:4d:a2:b4:dd:51:68:3f: bc:58:d7:76:fc:7d:80:ae:b0:c4:4f:5e:58:97:48: 7c:af:40:9e:9a:15:61:f2:65:ca:23:e6:e3:32:47: d5:7d:55:ed:fe:eb:82:16:18:32:8a:43:81:05:9a: d9:e3:48:ab:71:aa:01:89:c9:a6:25:4e:a6:64:d4: 90:c2:84:d8:e4:73:92:4c:85:e0:80:b3:11:55:d0: b6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:94:E4:5A:33:B0:06:21:CA:E5:CC:06:0D:80:CB:D6:88:6D:EA:37 X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ea:3a:0e:66:00:d0:e8:45:72:4d:9d:8b:b4:72:8f:69:c2: b4:12:dd:55:cc:97:5a:a4:4a:64:1a:a0:2b:ee:9c:70:43:87: 74:93:70:1d:04:17:dc:b0:9f:ef:9b:7a:17:7d:cc:3a:d2:7f: 54:e1:9b:ec:8e:81:c4:dd:df:df:e4:f1:3d:84:f7:35:5f:50: 46:89:a0:67:4d:f0:fd:47:97:12:d3:d8:86:04:de:b4:e9:eb: 50:d6:02:1d:94:e0:d2:ac:88:c2:12:78:dd:41:65:79:4d:d4: 70:39:99:a6:f8:92:ea:32:7e:5f:44:ed:69:75:cc:8a:e9:42: 5d:d1:d8:69:3a:94:db:af:19:d9:e6:2d:1e:8b:21:38:9a:d7: ae:9c:3e:8e:eb:12:26:fc:2d:d2:82:cf:dc:d5:2f:4c:9f:08: c1:a0:28:d9:9f:f9:a7:35:c0:8e:6b:82:ee:56:84:5a:2b:5a: 09:5c:7c:07:80:a1:95:7d:38:f0:90:ac:a3:3d:35:fc:cd:93: cc:0d:5e:43:e7:0c:4a:37:e3:c1:02:8d:c8:94:71:9b:e7:5a: 78:2f:39:c4:84:14:de:10:a5:49:5a:6f:19:81:88:55:82:9e: 81:2d:7f:84:09:5e:7c:e2:8e:88:39:7c:ea:45:2a:51:3c:b7: 23:f4:3a:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjQwNTE4MTg1NTIyWhcNMjQwNTI1MTg1NTIyWjAYMRYwFAYD VQQDEw02NjQ4Zjk5Yi04YWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6W1wIBV/w3i+dEphEB2NzvEmvACvHBl3x2MHHpWWFI9zwTIQJDVRegd7rap wpm8HvZ2j6SAdtQ+KOcy2ERw45u2Brc/rvCfUh8D2qru9uWYMSV5EVS6DsH2ZRyH t/y/I82FKyiXePlO2lRAKJY8cQ+g6saR7V2SBi4ck5Fv5TPSS7V2ZZ0CQq5LRIwh zEPCGb8Ur5r1qmQFoaLBeXKBcoojRWEIvs91j2TniE2itN1RaD+8WNd2/H2ArrDE T15Yl0h8r0CemhVh8mXKI+bjMkfVfVXt/uuCFhgyikOBBZrZ40ircaoBicmmJU6m ZNSQwoTY5HOSTIXggLMRVdC2bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSU5Foz sAYhyuXMBg2Ay9aIbeo3MB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGNS8xRUM0RTA5QURCNzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1I N3ZpN19ZZFBjNDV0cWpWWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ6joOZgDQ6EVyTZ2LtHKPacK0Et1VzJdapEpkGqAr7pxwQ4d0k3Ad BBfcsJ/vm3oXfcw60n9U4ZvsjoHE3d/f5PE9hPc1X1BGiaBnTfD9R5cS09iGBN60 6etQ1gIdlODSrIjCEnjdQWV5TdRwOZmm+JLqMn5fRO1pdcyK6UJd0dhpOpTbrxnZ 5i0eiyE4mteunD6O6xIm/C3Sgs/c1S9MnwjBoCjZn/mnNcCOa4LuVoRaK1oJXHwH gKGVfTjwkKyjPTX8zZPMDV5D5wxKN+PBAo3IlHGb51p4LznEhBTeEKVJWm8ZgYhV gp6BLX+ECV584o6IOXzqRSpRPLcj9Dr0 -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org