$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: SoyLDCuFi5I3MOEh3X75MS8fGrPLX+551HKA/ki8JDs= Subject key identifier: 24:DA:1F:53:DD:36:D5:11:D5:19:60:2E:BF:FD:2E:12:D3:DA:45:14 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 33C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 33C7 Signing time: Sat 18 May 2024 14:38:52 +0000 Manifest this update: Sat 18 May 2024 14:38:51 +0000 Manifest next update: Sat 25 May 2024 14:38:51 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: 2sWxwdcTEnK0ma0q3sUsfovLEbAQOX7/IaMnS2yD3sI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13255 (0x33c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: May 18 14:38:51 2024 GMT Not After : May 25 14:38:51 2024 GMT Subject: CN=6648bd7c-e1ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:53:8a:e8:16:c8:0c:c4:d8:3e:f7:cb:a6:be: 3d:c5:73:fa:08:df:cd:cc:4c:2a:b7:b9:be:60:c3: c2:29:ac:0e:65:d1:f7:fb:95:05:5a:8f:91:59:d9: f1:fe:1c:bb:f6:28:da:40:03:24:7a:db:00:e4:32: 59:99:2a:21:6a:91:ea:d1:e5:1e:a4:50:33:ba:c6: 52:97:2b:dc:82:31:49:56:8d:45:10:64:e6:3e:78: 83:e5:4f:09:eb:2f:cf:a6:4e:05:6c:d1:18:cd:94: 15:26:ec:c6:51:34:21:dd:59:93:42:81:46:8c:91: f6:cc:84:63:06:58:38:e0:51:cb:a8:b6:06:63:d4: e8:b6:a8:70:d7:ce:bf:a1:43:6a:b1:90:02:09:d2: 20:15:27:ed:08:fd:92:e9:95:22:eb:a4:4b:9e:fb: 2b:11:6d:37:56:7b:0e:a2:2d:b8:41:4b:b1:a8:f1: ab:60:73:f1:98:c2:90:97:61:64:93:1c:19:8c:e7: 1a:e7:6a:90:07:94:15:a0:79:03:49:44:db:7b:99: f8:fa:67:46:ce:62:e3:a1:94:4d:a4:c7:73:3d:70: 64:00:06:80:4a:a0:e6:f9:9f:51:82:3c:35:25:98: 2a:08:b6:a7:ee:70:5f:30:88:89:fc:cf:2b:24:ab: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DA:1F:53:DD:36:D5:11:D5:19:60:2E:BF:FD:2E:12:D3:DA:45:14 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c0:1d:a3:23:6d:d2:4b:b7:6c:87:c6:6a:33:21:29:3e:b4: af:bc:78:da:db:9a:59:5a:4f:b6:fb:6a:f7:5e:b7:b1:92:ea: 1a:b3:ba:16:ea:b3:85:21:6c:fd:e4:16:40:0d:d6:8f:b9:b3: 61:c0:59:ab:67:75:46:55:f3:66:d3:b7:4a:71:af:8a:8e:e9: 5f:6b:ad:43:bd:eb:81:d9:8f:6f:38:64:ee:50:45:2a:2c:53: b6:c5:b1:26:a5:55:f3:ba:79:90:0e:d8:70:44:55:cb:15:b0: 6c:66:ca:64:fe:bd:84:72:37:00:b7:2d:cd:e0:aa:94:fd:ec: 95:15:57:81:88:ba:61:49:96:8d:ca:ed:09:c3:1e:af:66:b3: f8:92:66:81:da:d9:17:ce:30:1c:57:d8:04:9e:7b:c0:b2:7b: c0:8a:7d:28:d6:ee:7c:fc:5b:53:1d:95:b2:2b:76:34:c8:bf: 4a:74:92:52:e0:a5:db:1f:b9:56:8b:d2:09:64:a7:bd:66:eb: 73:83:ba:af:66:99:0d:f9:0b:dd:ea:5a:90:5a:54:d7:46:50: 7b:00:23:b2:60:88:5e:ed:42:63:c9:85:04:76:a9:c9:05:50: ed:87:59:95:e7:6f:d4:4d:52:60:72:ce:6e:9c:43:a9:82:e7: c0:b2:b0:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjQwNTE4MTQzODUxWhcNMjQwNTI1MTQzODUxWjAYMRYwFAYD VQQDEw02NjQ4YmQ3Yy1lMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFOK6BbIDMTYPvfLpr49xXP6CN/NzEwqt7m+YMPCKawOZdH3+5UFWo+RWdnx /hy79ijaQAMketsA5DJZmSohapHq0eUepFAzusZSlyvcgjFJVo1FEGTmPniD5U8J 6y/Ppk4FbNEYzZQVJuzGUTQh3VmTQoFGjJH2zIRjBlg44FHLqLYGY9Totqhw186/ oUNqsZACCdIgFSftCP2S6ZUi66RLnvsrEW03VnsOoi24QUuxqPGrYHPxmMKQl2Fk kxwZjOca52qQB5QVoHkDSUTbe5n4+mdGzmLjoZRNpMdzPXBkAAaASqDm+Z9Rgjw1 JZgqCLan7nBfMIiJ/M8rJKssWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTaH1Pd NtUR1RlgLr/9LhLT2kUUMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7wB2jI23SS7dsh8ZqMyEpPrSvvHja25pZWk+2+2r3Xrexkuoas7oW 6rOFIWz95BZADdaPubNhwFmrZ3VGVfNm07dKca+Kjulfa61DveuB2Y9vOGTuUEUq LFO2xbEmpVXzunmQDthwRFXLFbBsZspk/r2EcjcAty3N4KqU/eyVFVeBiLphSZaN yu0Jwx6vZrP4kmaB2tkXzjAcV9gEnnvAsnvAin0o1u58/FtTHZWyK3Y0yL9KdJJS 4KXbH7lWi9IJZKe9Zutzg7qvZpkN+Qvd6lqQWlTXRlB7ACOyYIhe7UJjyYUEdqnJ BVDth1mV52/UTVJgcs5unEOpgufAsrAn -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org