$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft File: -gRcYwK4c-iDZfqaAhSZtPPFhog.mft (raw, json) Hash identifier: wYxWkTgrkgOJNH9Az1L2rmbNxL+r01MKI9khnWeqm6c= Subject key identifier: F4:79:F2:E1:E7:64:7E:8E:05:57:D0:BD:BC:9C:24:F5:0A:D0:44:82 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft Manifest number: 0477 Signing time: Fri 31 May 2024 02:22:26 +0000 Manifest this update: Fri 31 May 2024 02:22:26 +0000 Manifest next update: Fri 07 Jun 2024 02:22:26 +0000 Files and hashes: 1: -gRcYwK4c-iDZfqaAhSZtPPFhog.crl (hash: HrB2SOlAvRFHkvPk7X5wAfCFv8FyY98/tMcnu7oLHNY=) 2: D62399042D1E11EE8C614E3EC4F9AE02.roa (hash: qkH2tgtItXAMLVzBegmHlsCSZQIwAcDk4bjO6eyiVsA=) 3: 14A59A26E15B11ECA05C9236C4F9AE02.roa (hash: tCsPFlQbHjPtdKo2By1Yv1A/CwgH+Wy/z7j32R4zxhU=) 4: 36C4FAAAA9FC11EEBEF3E64AC4F9AE02.roa (hash: Wg0ycCOoKuAHP5nQShBntZqgFSfdv38dgCrRwUlSjDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: May 31 02:22:26 2024 GMT Not After : Jun 7 02:22:26 2024 GMT Subject: CN=66593462-94a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3e:22:67:63:75:4d:80:8f:e7:8d:4a:67:f9: ea:5d:29:e0:24:4f:dd:ba:e0:82:68:0f:30:cd:f4: 9e:fd:1e:ea:ae:88:c7:43:59:09:7e:97:48:ae:03: 78:ba:2c:b0:a0:0a:66:3b:0d:a4:0b:3c:e4:8d:fc: da:19:d3:38:0f:55:71:a0:6c:13:0b:29:59:c7:bd: e4:4c:e1:c1:a9:39:ee:64:36:5d:c9:4c:22:3a:8c: f1:d8:88:9f:5a:70:75:ad:e9:20:ff:7f:b0:61:78: fa:87:ff:4c:03:89:95:27:18:32:c6:39:0b:05:6c: 6e:4b:aa:d0:7b:65:99:54:2f:8b:4b:ed:9b:56:70: 94:f5:4b:d1:22:c8:2c:82:53:18:a6:db:61:0b:e7: ce:ee:92:aa:57:c0:e0:d4:1e:01:cc:02:b8:f9:7d: ee:c2:b5:04:19:b6:7f:90:f2:61:be:bb:c8:9e:74: 6a:69:6b:04:f1:8c:9d:2f:9e:45:67:aa:59:78:44: a1:63:2c:5e:8f:c5:76:66:b5:1f:01:16:aa:e4:c0: e9:c0:66:dc:69:1b:59:df:45:fb:ff:5e:37:07:89: de:12:62:2e:a5:9f:ac:1a:bd:c7:5f:85:f8:a6:78: ab:95:44:dc:83:fa:01:e2:a9:2e:0c:32:f7:f3:5b: 0b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:79:F2:E1:E7:64:7E:8E:05:57:D0:BD:BC:9C:24:F5:0A:D0:44:82 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a8:a1:d8:75:68:c1:f2:1f:7f:40:ec:ef:72:8c:de:ef:9a: 61:d7:83:70:77:22:b1:06:8a:ea:d8:48:af:ed:43:bc:d7:2c: a9:96:9c:46:1c:25:6b:fd:d9:ff:d5:f8:90:d2:3f:94:82:25: 20:4d:f5:e9:0d:5f:c5:ed:e7:18:56:c2:5c:8a:15:f3:13:a8: 4a:6c:01:d9:88:69:2d:57:9e:ab:78:67:ea:8d:f4:62:0f:22: be:c9:68:3f:a5:a1:4b:34:11:53:e1:41:a4:1a:ea:92:5e:e0: 97:7f:da:29:34:24:1b:49:eb:9c:12:ba:40:bb:6f:67:12:68: bb:7d:59:84:cd:69:14:eb:b4:e8:69:5f:b9:fe:5e:d2:d8:ed: 2d:7a:45:3a:b5:dd:b1:7e:c7:35:ef:31:43:91:25:0c:e0:b1: 5c:32:79:f8:93:fd:a5:c3:5e:30:34:d8:36:89:6a:08:63:93: 38:62:e9:6a:c7:21:9a:13:c4:cd:ba:8d:74:77:67:5b:ff:67: e6:f0:70:0c:e5:19:de:26:b0:49:07:08:df:c8:ba:b9:a7:9b: 88:26:97:07:d6:5f:a7:ff:1d:c8:bf:95:d7:3e:2c:28:29:49: f9:4c:ac:e5:c1:7b:ae:20:d4:b8:03:a8:a7:2c:ca:69:b4:7b: 14:52:85:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjQwNTMxMDIyMjI2WhcNMjQwNjA3MDIyMjI2WjAYMRYwFAYD VQQDEw02NjU5MzQ2Mi05NGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2D4iZ2N1TYCP541KZ/nqXSngJE/duuCCaA8wzfSe/R7qrojHQ1kJfpdIrgN4 uiywoApmOw2kCzzkjfzaGdM4D1VxoGwTCylZx73kTOHBqTnuZDZdyUwiOozx2Iif WnB1rekg/3+wYXj6h/9MA4mVJxgyxjkLBWxuS6rQe2WZVC+LS+2bVnCU9UvRIsgs glMYptthC+fO7pKqV8Dg1B4BzAK4+X3uwrUEGbZ/kPJhvrvInnRqaWsE8YydL55F Z6pZeEShYyxej8V2ZrUfARaq5MDpwGbcaRtZ30X7/143B4neEmIupZ+sGr3HX4X4 pnirlUTcg/oB4qkuDDL381sLCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR58uHn ZH6OBVfQvbycJPUK0ESCMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTNEMy82RUMwRTM2ODAwMEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMt aURaZnFhQWhTWnRQUEZob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnqKHYdWjB8h9/QOzvcoze75ph14NwdyKxBorq2Eiv7UO81yyplpxG HCVr/dn/1fiQ0j+UgiUgTfXpDV/F7ecYVsJcihXzE6hKbAHZiGktV56reGfqjfRi DyK+yWg/paFLNBFT4UGkGuqSXuCXf9opNCQbSeucErpAu29nEmi7fVmEzWkU67To aV+5/l7S2O0tekU6td2xfsc17zFDkSUM4LFcMnn4k/2lw14wNNg2iWoIY5M4Yulq xyGaE8TNuo10d2db/2fm8HAM5RneJrBJBwjfyLq5p5uIJpcH1l+n/x3Iv5XXPiwo KUn5TKzlwXuuINS4A6inLMpptHsUUoWh -----END CERTIFICATE-----Generated at Fri May 31 02:50:46 2024 by rpki-client on console-fra.rpki-client.org