$ rpki-client -vvf rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft File: GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft (raw, json) Hash identifier: S80m3mgnsh9TaXnlu+THMHD1AN8IlDZgrxa+OukrZB8= Subject key identifier: AB:90:62:17:CE:F0:14:49:B5:83:74:35:26:72:18:3D:98:42:8D:63 Authority key identifier: 19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E Certificate issuer: /CN=A917C615/serialNumber=1948CC14F30ED83CAA52C8EC4B08C44CA83A629E Certificate serial: 0BA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft Manifest number: 0B9D Signing time: Thu 30 May 2024 19:40:14 +0000 Manifest this update: Thu 30 May 2024 19:40:13 +0000 Manifest next update: Thu 06 Jun 2024 19:40:13 +0000 Files and hashes: 1: GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl (hash: 3ppnhaDxZ6XXXbibezgs2nYmvGAuGayZTYlY3iGJVek=) 2: 9A19DA76006E11EAA4A23169C4F9AE02.roa (hash: d6+czzaXzjR+oMWjcQJ5TbOLXy8eOPfMAOtPZua+jIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 19:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2979 (0xba3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C615/serialNumber=1948CC14F30ED83CAA52C8EC4B08C44CA83A629E Validity Not Before: May 30 19:40:13 2024 GMT Not After : Jun 6 19:40:13 2024 GMT Subject: CN=6658d61d-409b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:67:f2:27:2c:0f:9b:53:60:c3:a9:20:8b: 49:c2:a5:f0:96:77:b3:5e:aa:6d:94:f7:7e:29:3c: ef:c0:7b:d9:44:6e:0c:af:4e:33:4d:ae:ff:b7:92: db:ed:3f:86:e6:e5:29:6c:2b:a9:b8:f7:e5:39:be: 02:a3:8d:9c:70:40:35:93:4f:0b:f7:bf:7a:7a:df: fa:64:82:25:ea:2c:d9:22:42:b9:2e:37:88:e9:1a: 56:91:c4:82:8f:cd:2c:39:7b:b2:62:96:57:a4:31: 41:b5:e4:37:46:4c:44:14:23:1c:f1:ac:f7:ce:dc: e8:a0:91:47:c4:65:19:88:34:5f:32:67:df:66:59: b5:3e:24:a8:dc:67:57:80:1c:fd:d9:fd:11:b4:78: 51:76:94:d5:c3:a8:e8:7c:bb:23:33:28:f4:f8:3a: b4:5f:47:fc:c9:41:87:ed:23:03:c0:ff:fb:24:6e: ed:61:30:bf:e9:c0:0d:d6:96:0b:1c:93:72:c3:4b: 2d:83:8c:6d:32:24:d8:23:9f:33:26:e1:9f:c4:e1: 74:e2:00:e4:ff:bb:a4:a9:70:b4:55:8c:12:0b:ef: cc:37:e8:4b:d0:bb:d5:f6:60:07:3b:2b:c7:bc:ba: 63:fd:e3:87:53:c4:60:f3:72:20:59:a1:06:46:df: 30:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:90:62:17:CE:F0:14:49:B5:83:74:35:26:72:18:3D:98:42:8D:63 X509v3 Authority Key Identifier: keyid:19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:7e:9c:71:5b:b2:bb:89:98:58:46:a6:2a:2d:5f:cf:d9:10: c0:d1:7a:bb:e8:67:86:b0:ac:82:c7:b8:8a:d3:dc:5c:e6:ea: a1:0c:bb:3b:57:ee:33:da:8d:5e:29:37:94:c8:d6:ec:7a:05: f9:fe:38:60:1a:2e:1c:fb:8f:b9:41:64:45:e0:16:c1:64:63: 1b:20:71:14:e1:c1:c8:b1:38:de:4c:ed:42:8d:b3:ea:ac:bc: 20:58:76:f7:84:6e:79:fb:91:92:31:9d:77:2c:da:fa:ba:f7: a2:41:b8:df:06:46:76:ce:84:8c:ef:07:9d:5f:bd:e2:39:75: f9:9e:94:2b:db:9b:e0:fb:5b:94:7c:fb:89:bf:5c:e9:d9:a9: 11:e5:96:7a:01:cc:df:ef:cc:07:71:3a:da:5c:16:e1:28:a2: 4d:f9:94:37:71:d6:64:4d:59:b4:24:2c:81:b8:ae:dc:ca:9c: 86:b3:73:93:6a:c2:96:fb:8f:e2:71:c6:0f:74:4f:93:95:b0: 69:76:1f:d0:89:f3:1a:87:2b:e8:2d:e3:5a:e4:13:6d:79:41: 3b:57:3d:5d:a0:17:f3:a4:cb:48:4a:9c:0f:4f:87:5c:94:d7: f3:15:fd:d2:77:cb:4f:a7:57:69:ee:e5:ff:76:96:26:06:d1: b5:79:07:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MTUxMTAvBgNVBAUTKDE5NDhDQzE0RjMwRUQ4M0NBQTUyQzhFQzRCMDhDNDRD QTgzQTYyOUUwHhcNMjQwNTMwMTk0MDEzWhcNMjQwNjA2MTk0MDEzWjAYMRYwFAYD VQQDEw02NjU4ZDYxZC00MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovhn8icsD5tTYMOpIItJwqXwlnezXqptlPd+KTzvwHvZRG4Mr04zTa7/t5Lb 7T+G5uUpbCupuPflOb4Co42ccEA1k08L9796et/6ZIIl6izZIkK5LjeI6RpWkcSC j80sOXuyYpZXpDFBteQ3RkxEFCMc8az3ztzooJFHxGUZiDRfMmffZlm1PiSo3GdX gBz92f0RtHhRdpTVw6jofLsjMyj0+Dq0X0f8yUGH7SMDwP/7JG7tYTC/6cAN1pYL HJNyw0stg4xtMiTYI58zJuGfxOF04gDk/7ukqXC0VYwSC+/MN+hL0LvV9mAHOyvH vLpj/eOHU8Rg83IgWaEGRt8w/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuQYhfO 8BRJtYN0NSZyGD2YQo1jMB8GA1UdIwQYMBaAFBlIzBTzDtg8qlLI7EsIxEyoOmKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYxNS80MjAwQzlFNjAw NkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJEeXFVc2pzU3dqRVRLZzZZ cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dVak1GUE1PMkR5cVVzanNTd2pFVEtnNllwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYxNS80MjAwQzlFNjAwNkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJE eXFVc2pzU3dqRVRLZzZZcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUfpxxW7K7iZhYRqYqLV/P2RDA0Xq76GeGsKyCx7iK09xc5uqhDLs7 V+4z2o1eKTeUyNbsegX5/jhgGi4c+4+5QWRF4BbBZGMbIHEU4cHIsTjeTO1CjbPq rLwgWHb3hG55+5GSMZ13LNr6uveiQbjfBkZ2zoSM7wedX73iOXX5npQr25vg+1uU fPuJv1zp2akR5ZZ6Aczf78wHcTraXBbhKKJN+ZQ3cdZkTVm0JCyBuK7cypyGs3OT asKW+4/iccYPdE+TlbBpdh/QifMahyvoLeNa5BNteUE7Vz1doBfzpMtISpwPT4dc lNfzFf3Sd8tPp1dp7uX/dpYmBtG1eQfq -----END CERTIFICATE-----Generated at Thu May 30 20:35:33 2024 by rpki-client on console-fra.rpki-client.org