$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: QPlT2pAFmyNVhFhf1Rhy3bRGyWgoaAaGFv1GQudYOSA= Subject key identifier: 4F:C6:B4:EB:2C:79:0D:A6:35:E2:12:8E:8C:60:DA:7D:42:C8:3C:59 Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 040E Signing time: Sun 19 May 2024 02:06:37 +0000 Manifest this update: Sun 19 May 2024 02:06:36 +0000 Manifest next update: Sun 26 May 2024 02:06:36 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: uJiCj6FyGRXGpTYz1KHFl/H2/xMOqXIwA398GyBgEKE=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: zo/+qmy2jk+AEg81LNIAMqSUawhw2XH+KNnnn5Sp1YU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: May 19 02:06:36 2024 GMT Not After : May 26 02:06:36 2024 GMT Subject: CN=66495eac-83e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:da:64:0f:c2:be:0f:c8:86:3e:b7:e7:db:2f: 35:95:e0:da:9c:5b:60:a8:49:20:fc:8c:64:c4:b8: e0:cf:c2:a5:b8:78:9f:2b:d1:c1:05:ea:c5:c9:10: 75:04:e3:ba:74:91:dd:db:83:45:de:47:61:e1:a0: 67:99:16:d9:d4:8c:81:fc:44:04:c0:96:b9:47:57: 42:b5:99:67:74:39:3b:1b:d9:22:6f:a9:28:a5:35: aa:c1:41:6b:d2:75:d8:d6:32:af:e8:58:21:0f:08: d4:32:f3:18:64:05:5a:51:f3:c0:aa:f3:fe:c5:4a: 1e:03:b0:b3:c6:68:37:a4:1c:82:e4:b7:ea:91:41: a6:6e:bf:0e:81:72:ef:cc:1e:bc:ad:b8:3e:bf:f9: cd:e3:85:e8:f3:a4:31:00:fd:d9:11:49:dd:04:d0: 93:ee:34:25:a9:56:bf:6e:b4:cb:36:25:85:24:b2: 3e:77:c5:d6:4f:a3:21:c9:0c:2d:46:bd:0a:7a:6b: b6:10:53:eb:87:0f:46:76:63:b0:a7:7c:91:5c:18: 7c:37:a4:43:b1:3e:89:a9:3d:80:7d:72:6c:d2:fe: 18:08:5b:b5:d8:9d:aa:5f:35:e7:6e:ae:5c:b4:ea: 74:81:21:d7:97:06:80:da:7f:05:ca:a4:32:e7:5f: e5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C6:B4:EB:2C:79:0D:A6:35:E2:12:8E:8C:60:DA:7D:42:C8:3C:59 X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ea:76:a7:eb:3a:ba:99:5f:c6:d7:2b:89:6d:2d:f2:5d:ce: 0e:53:0d:9e:4d:78:ce:e3:91:14:60:32:a4:71:c5:40:df:a9: 9d:5e:c5:f8:8a:ba:7d:df:d8:8f:7f:54:4b:0c:8d:7b:fc:4d: fb:a6:fb:28:cc:a1:f3:1b:24:07:34:4c:2f:14:37:b0:e4:13: 89:f6:ea:78:a5:11:a8:35:40:20:9a:47:dd:8c:f6:b1:01:d4: d5:a5:91:1b:01:8e:d3:53:b0:63:96:53:38:f6:aa:21:e3:7b: e8:3c:f7:e9:59:ba:70:9f:f7:e8:66:12:e5:6f:21:f3:14:97: 27:eb:83:5a:3a:2b:52:8f:5c:a3:21:d6:a5:72:b9:b6:60:c6: 61:65:6b:6b:ce:a5:a6:e3:9a:c9:28:24:d5:e4:e9:8a:0e:73: 1a:3d:dc:5f:ab:26:8a:db:4e:94:66:89:9b:a2:f7:75:83:c5: c3:19:f3:18:3f:a9:9c:ed:e3:28:70:94:d7:a9:ff:f5:d5:3f: 8e:d5:33:e8:4d:b0:1d:6e:a1:c9:39:e8:c3:9f:db:5a:3e:1f: ae:3c:79:5a:6e:19:78:f3:16:f6:00:35:a2:c0:7d:11:f5:b9: 3b:d0:a4:af:9b:d4:f0:34:f4:39:95:a2:79:2d:a0:11:f2:ac: ff:71:f0:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjQwNTE5MDIwNjM2WhcNMjQwNTI2MDIwNjM2WjAYMRYwFAYD VQQDEw02NjQ5NWVhYy04M2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dpkD8K+D8iGPrfn2y81leDanFtgqEkg/IxkxLjgz8KluHifK9HBBerFyRB1 BOO6dJHd24NF3kdh4aBnmRbZ1IyB/EQEwJa5R1dCtZlndDk7G9kib6kopTWqwUFr 0nXY1jKv6FghDwjUMvMYZAVaUfPAqvP+xUoeA7Czxmg3pByC5LfqkUGmbr8OgXLv zB68rbg+v/nN44Xo86QxAP3ZEUndBNCT7jQlqVa/brTLNiWFJLI+d8XWT6MhyQwt Rr0Kemu2EFPrhw9GdmOwp3yRXBh8N6RDsT6JqT2AfXJs0v4YCFu12J2qXzXnbq5c tOp0gSHXlwaA2n8FyqQy51/l/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/GtOss eQ2mNeISjoxg2n1CyDxZMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB96nan6zq6mV/G1yuJbS3yXc4OUw2eTXjO45EUYDKkccVA36mdXsX4 irp939iPf1RLDI17/E37pvsozKHzGyQHNEwvFDew5BOJ9up4pRGoNUAgmkfdjPax AdTVpZEbAY7TU7BjllM49qoh43voPPfpWbpwn/foZhLlbyHzFJcn64NaOitSj1yj Idalcrm2YMZhZWtrzqWm45rJKCTV5OmKDnMaPdxfqyaK206UZombovd1g8XDGfMY P6mc7eMocJTXqf/11T+O1TPoTbAdbqHJOejDn9taPh+uPHlabhl48xb2ADWiwH0R 9bk70KSvm9TwNPQ5laJ5LaAR8qz/cfDY -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org