$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: sLtfOB9eCAY58tDjc34z7Eo4Q/+DNgC82KS3cBpqrXc= Subject key identifier: 9B:4E:4F:44:05:CA:69:AD:4B:52:78:A6:D5:40:1D:41:1A:DE:C8:06 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 0381 Signing time: Sun 19 May 2024 02:43:30 +0000 Manifest this update: Sun 19 May 2024 02:43:29 +0000 Manifest next update: Sun 26 May 2024 02:43:29 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: X3rxrjulFIfuAHFUsYClaNQ+63irvbj7QkvEFQPWC7s=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: D+ZlHwdaikSqimshlMtOdjKO4cUt9Td5TIsVlTRcXrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: May 19 02:43:29 2024 GMT Not After : May 26 02:43:29 2024 GMT Subject: CN=66496751-7f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d3:7d:21:6f:a6:52:38:82:57:ba:e5:99:cd: 6a:ec:72:13:89:63:5e:c2:71:7d:19:8c:22:99:55: a2:9e:6d:78:a9:08:26:e6:19:bf:22:74:16:87:01: 3b:33:f0:c3:5f:15:2a:c5:84:7b:da:aa:21:e1:6a: 5e:1a:13:66:1b:c8:76:f1:53:c1:28:34:51:b3:ab: 60:98:d6:74:9b:a3:60:26:1f:38:f6:fa:03:22:07: 34:4d:0f:24:dc:e0:e1:36:ab:5e:bb:09:37:2c:48: 68:67:44:e8:bf:bd:33:6b:bf:e6:0a:a6:7e:d7:5d: fc:0c:9f:1b:42:1a:62:62:1a:65:43:f2:4d:2c:0d: 58:7f:6c:8c:39:19:b7:26:8d:b1:7c:06:4e:54:11: 30:18:69:78:63:94:81:a2:d3:74:76:91:6a:ea:01: 95:5d:5b:f8:bf:98:b0:ac:45:22:38:b8:b9:1f:80: 90:b9:0d:60:d7:f0:79:17:16:40:50:3c:46:a5:ad: 70:e0:49:95:7f:18:0e:fc:1b:9c:3c:22:00:44:c9: ae:61:59:bf:48:f3:2b:7d:8b:fb:38:4e:28:94:b0: 63:4c:39:4a:49:fd:01:88:2e:19:89:9d:e4:9a:46: af:a5:d9:2c:f5:d6:a3:69:bb:7e:bc:e3:09:98:c8: f0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4E:4F:44:05:CA:69:AD:4B:52:78:A6:D5:40:1D:41:1A:DE:C8:06 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0e:c3:8c:9e:64:7c:bd:44:72:9b:a9:46:11:6e:cd:ce:2b: f1:e4:80:0d:fa:cf:5f:38:35:55:12:c2:7e:22:95:b3:d8:9c: e4:8e:8a:8c:5f:07:64:60:51:8f:38:67:ee:25:cc:59:41:38: c8:60:1e:c8:c9:10:7c:1a:26:b7:c6:33:3e:3a:af:05:b3:56: 35:9f:59:ed:85:1e:0a:f7:dc:a4:e0:42:28:f8:39:34:87:28: fb:5c:01:f5:5c:c0:85:b0:c0:dc:a1:82:54:ab:45:31:be:3d: a5:4a:08:77:12:b2:6b:fc:d1:f7:48:05:01:5a:3c:c3:20:c0: da:6a:95:2e:18:6d:32:09:78:11:d7:a2:be:d2:20:ac:6c:c3: 3c:9c:a5:14:35:a3:cd:75:f8:0f:ac:19:d1:f1:d9:15:5b:df: 3d:26:3d:6f:26:77:b3:28:db:76:a9:a5:28:7f:7a:b4:ba:a9: 64:7c:12:09:f2:b3:1f:dc:f2:e6:55:7e:3e:fc:40:e7:97:42: e3:40:e7:48:1c:bc:5c:38:6f:84:64:32:8e:aa:7a:39:43:ff: c6:e3:42:9c:0c:0b:49:c9:0a:05:d8:f7:0b:29:94:ba:53:08: 77:56:f4:5c:08:71:c4:5d:ab:11:5d:ed:f9:d7:1b:bf:42:fb: 46:34:75:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjQwNTE5MDI0MzI5WhcNMjQwNTI2MDI0MzI5WjAYMRYwFAYD VQQDEw02NjQ5Njc1MS03ZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtN9IW+mUjiCV7rlmc1q7HITiWNewnF9GYwimVWinm14qQgm5hm/InQWhwE7 M/DDXxUqxYR72qoh4WpeGhNmG8h28VPBKDRRs6tgmNZ0m6NgJh849voDIgc0TQ8k 3ODhNqteuwk3LEhoZ0Tov70za7/mCqZ+1138DJ8bQhpiYhplQ/JNLA1Yf2yMORm3 Jo2xfAZOVBEwGGl4Y5SBotN0dpFq6gGVXVv4v5iwrEUiOLi5H4CQuQ1g1/B5FxZA UDxGpa1w4EmVfxgO/BucPCIARMmuYVm/SPMrfYv7OE4olLBjTDlKSf0BiC4ZiZ3k mkavpdks9dajabt+vOMJmMjwOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtOT0QF ymmtS1J4ptVAHUEa3sgGMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNDsOMnmR8vURym6lGEW7Nzivx5IAN+s9fODVVEsJ+IpWz2JzkjoqM XwdkYFGPOGfuJcxZQTjIYB7IyRB8Gia3xjM+Oq8Fs1Y1n1nthR4K99yk4EIo+Dk0 hyj7XAH1XMCFsMDcoYJUq0Uxvj2lSgh3ErJr/NH3SAUBWjzDIMDaapUuGG0yCXgR 16K+0iCsbMM8nKUUNaPNdfgPrBnR8dkVW989Jj1vJnezKNt2qaUof3q0uqlkfBIJ 8rMf3PLmVX4+/EDnl0LjQOdIHLxcOG+EZDKOqno5Q//G40KcDAtJyQoF2PcLKZS6 Uwh3VvRcCHHEXasRXe351xu/QvtGNHWe -----END CERTIFICATE-----Generated at Sun May 19 03:38:15 2024 by rpki-client on console-ams.rpki-client.org