$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: EEp9tmP3ZGC4IxeOqVlnoP42W4LrPi6CP7xoHteARqM= Subject key identifier: E0:35:DD:D8:2E:E8:D9:ED:4E:25:8E:34:56:3A:FD:2B:96:1D:07:95 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0A5C Signing time: Sat 18 May 2024 20:22:18 +0000 Manifest this update: Sat 18 May 2024 20:22:18 +0000 Manifest next update: Sat 25 May 2024 20:22:18 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: LPA/QWtwLjDf+a71OVhAPclQMFcoQ7/YoBOpTeJPsK4=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: ReFTt+TXKiTCWQ2EeZN5sYY0hJNr3cSRmJoP/SBVLqs=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: YJ76HhaPfBCtCqTNn8tqhJhNOJ+Bfaxx/ZJ3mQYsBwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: May 18 20:22:18 2024 GMT Not After : May 25 20:22:18 2024 GMT Subject: CN=66490dfa-cb0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8d:55:90:25:56:7f:74:27:2e:4b:8b:a0:c2: b1:95:3d:e5:1b:20:3a:d6:df:f1:cb:a4:6d:e3:7d: 11:27:87:be:a4:19:38:e1:84:d4:6a:5f:3e:4a:c1: d1:8c:fe:2d:d7:b2:c5:2f:41:8b:8f:4d:71:bf:8a: 7c:1e:79:d4:2b:e5:5a:ef:8b:33:ee:04:6d:8a:a9: 71:95:9c:38:c4:04:6a:67:0b:8a:3c:a0:d0:9f:cf: fb:63:5f:9f:60:b0:5b:20:97:8a:e2:e2:05:d6:70: d0:e0:29:4a:4c:8d:73:84:79:df:44:02:e9:87:0d: 5f:e6:4c:c4:d9:66:94:1c:82:cc:f6:ee:f5:97:25: 01:ad:ab:2b:c0:90:cd:e2:2f:88:0a:db:0b:21:90: e0:b2:10:39:4e:0e:fc:56:81:c3:7c:21:6d:14:de: f1:eb:4c:30:33:7a:9e:20:45:75:86:b5:b7:6d:fa: 86:c7:39:d7:8a:1a:70:ee:4e:69:89:19:e4:fd:97: 53:2c:e7:0b:96:78:7d:8f:43:5c:e4:e4:88:80:8c: 85:ae:08:60:f9:6f:85:63:ea:a1:f9:5a:b1:6a:38: 41:15:5e:89:00:4b:2c:f2:0c:a2:64:ba:8c:68:92: 37:a4:7f:66:1f:a8:93:f1:08:17:64:34:6a:8f:fe: b4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:35:DD:D8:2E:E8:D9:ED:4E:25:8E:34:56:3A:FD:2B:96:1D:07:95 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:3a:ab:30:57:d3:98:de:de:7c:a4:c1:c2:3e:51:d9:67:76: a9:c1:13:d5:72:c4:02:3a:93:e9:ef:3e:92:72:85:ca:02:cb: 9b:95:e2:8d:e8:39:c7:16:7b:a5:a2:d7:34:1a:fb:5b:52:c3: fd:aa:f6:16:a8:e9:6a:44:81:e9:df:e6:99:77:16:bf:8e:ff: 96:32:5c:ac:79:16:77:98:26:58:f6:96:12:8b:d2:75:df:67: b2:80:6b:de:d7:1e:fb:b7:4b:d8:39:89:4e:aa:51:e0:b5:5a: 81:4c:d8:a2:f4:87:de:91:47:f2:6a:8e:e3:2d:2d:5e:2c:b7: 5f:46:53:c3:89:a8:17:7d:e8:8d:ba:e2:c7:ed:02:12:a8:e6: fe:73:b0:64:b5:6c:f4:f8:d0:30:16:85:40:28:d8:03:ef:c0: c9:e4:a4:17:6b:76:c6:ca:bb:79:5b:0c:71:a0:b4:4b:94:91: 4a:f8:53:37:2b:40:db:c2:23:48:7e:6b:e5:72:98:69:c9:37: 1a:5b:1b:ab:c3:d9:5d:8f:ff:a4:05:6d:ac:96:fd:f9:15:3b: 8d:29:16:fb:09:8a:4d:30:14:4c:07:f4:87:02:09:db:4c:56: b4:f8:43:33:02:20:1b:54:8b:29:db:4d:26:62:4c:21:69:a4: d2:6f:06:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjQwNTE4MjAyMjE4WhcNMjQwNTI1MjAyMjE4WjAYMRYwFAYD VQQDEw02NjQ5MGRmYS1jYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI1VkCVWf3QnLkuLoMKxlT3lGyA61t/xy6Rt430RJ4e+pBk44YTUal8+SsHR jP4t17LFL0GLj01xv4p8HnnUK+Va74sz7gRtiqlxlZw4xARqZwuKPKDQn8/7Y1+f YLBbIJeK4uIF1nDQ4ClKTI1zhHnfRALphw1f5kzE2WaUHILM9u71lyUBrasrwJDN 4i+ICtsLIZDgshA5Tg78VoHDfCFtFN7x60wwM3qeIEV1hrW3bfqGxznXihpw7k5p iRnk/ZdTLOcLlnh9j0Nc5OSIgIyFrghg+W+FY+qh+VqxajhBFV6JAEss8gyiZLqM aJI3pH9mH6iT8QgXZDRqj/60kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA13dgu 6NntTiWONFY6/SuWHQeVMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqOqswV9OY3t58pMHCPlHZZ3apwRPVcsQCOpPp7z6ScoXKAsubleKN 6DnHFnulotc0GvtbUsP9qvYWqOlqRIHp3+aZdxa/jv+WMlyseRZ3mCZY9pYSi9J1 32eygGve1x77t0vYOYlOqlHgtVqBTNii9IfekUfyao7jLS1eLLdfRlPDiagXfeiN uuLH7QISqOb+c7BktWz0+NAwFoVAKNgD78DJ5KQXa3bGyrt5WwxxoLRLlJFK+FM3 K0DbwiNIfmvlcphpyTcaWxurw9ldj/+kBW2slv35FTuNKRb7CYpNMBRMB/SHAgnb TFa0+EMzAiAbVIsp200mYkwhaaTSbwb7 -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org