$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: uUF0IhCJh/hTUm21tfC7bA2/h85kotun/T9BaqLnukU= Subject key identifier: F2:37:E0:7A:3E:C5:35:A8:E5:F7:D0:3F:0D:1D:B9:27:67:72:12:7E Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0552 Signing time: Sat 01 Jun 2024 01:47:45 +0000 Manifest this update: Sat 01 Jun 2024 01:47:44 +0000 Manifest next update: Sat 08 Jun 2024 01:47:44 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: iETid8gnM1Rd/gL51c495jq8GcLlMMu3hQ82fonMlMs=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: 0zFQ1BRYNI+2cFpJMpx2xapZnaYr/Wv7xM9sKrY4jS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Jun 1 01:47:44 2024 GMT Not After : Jun 8 01:47:44 2024 GMT Subject: CN=665a7dc1-f913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:b8:a7:02:75:6e:5d:2a:5b:2e:ee:49:9c: 79:19:19:31:ac:38:86:b4:4a:b4:03:9a:1e:d9:3d: cb:72:03:23:ec:60:c0:17:67:5b:fd:8f:a2:a4:6b: b5:b8:d2:89:fe:a4:ac:03:4b:b1:66:cf:97:08:23: be:6d:2e:24:80:ed:79:72:5e:96:d1:d8:5b:1b:a2: 71:f4:75:33:cd:78:3e:c2:73:ee:26:14:fb:55:44: b7:f3:5b:e6:6a:94:79:48:72:6b:a8:47:6e:71:c7: f4:5b:b1:cf:42:55:eb:45:79:9e:1b:ff:51:00:39: 2c:4a:24:d4:6a:e8:e6:31:9b:1d:f7:33:02:72:3c: 73:9f:70:3a:88:68:a0:b9:bd:b8:22:39:52:0a:25: a3:0e:14:71:c0:f0:63:32:69:7f:7e:cd:9b:0e:f4: 98:ed:66:d0:20:8c:29:dc:90:01:4a:98:e2:6b:d6: 15:4e:c8:82:41:0f:2f:fb:7f:ae:1a:01:5f:f4:f8: 23:c7:f5:b8:42:65:a4:4c:c5:da:ce:ac:c0:88:4f: b0:20:59:e7:66:d4:bd:b3:af:28:ac:f3:a1:c3:a0: a4:80:81:7f:31:80:cb:f9:a8:f3:57:e6:8c:73:0c: 27:aa:10:b4:43:fa:6e:b5:09:b2:97:9c:cf:ee:59: fb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:37:E0:7A:3E:C5:35:A8:E5:F7:D0:3F:0D:1D:B9:27:67:72:12:7E X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:14:df:d4:55:50:8c:71:f1:68:cb:86:c8:68:6c:87:35:80: 17:03:f1:15:00:f9:47:d5:e4:b4:6c:5e:6a:f6:f0:c7:a6:dd: c7:41:a9:ea:87:98:92:9e:b4:97:15:91:fe:a1:a1:e9:4f:43: 9f:e0:4b:ed:17:a7:d3:c3:b9:cc:d7:23:8f:38:d0:cb:06:65: 6b:8f:67:6d:e6:5e:a4:98:b3:3d:1c:57:ae:36:04:8e:81:a4: 15:ed:7e:dd:c0:ca:b7:6e:14:27:15:6d:da:fa:20:4f:50:ab: 16:3e:5e:a4:02:65:aa:9c:7d:80:c6:a5:1a:0d:b2:27:c0:9a: b4:17:d8:92:d4:db:05:9b:4e:dd:eb:cb:bd:53:15:c2:51:8a: 55:72:c2:b8:fa:64:a3:d9:31:da:fa:d5:f3:63:d4:56:a5:14: 03:3d:8a:71:b4:0f:db:ff:35:75:91:25:63:37:7a:5d:d5:ff: 96:3d:d3:6e:08:3a:90:81:f9:85:35:8e:9c:65:e1:b4:62:e2: 7a:be:1b:78:79:48:30:19:81:55:1c:5f:31:1c:80:a5:c3:4e: c3:a8:05:44:b1:5a:8a:6f:fd:77:fa:90:85:30:ab:b0:b1:21: a0:77:5c:45:96:0f:10:96:c3:62:00:c2:e9:9e:88:f9:00:f5: 4d:98:d4:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjQwNjAxMDE0NzQ0WhcNMjQwNjA4MDE0NzQ0WjAYMRYwFAYD VQQDEw02NjVhN2RjMS1mOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeW4pwJ1bl0qWy7uSZx5GRkxrDiGtEq0A5oe2T3LcgMj7GDAF2db/Y+ipGu1 uNKJ/qSsA0uxZs+XCCO+bS4kgO15cl6W0dhbG6Jx9HUzzXg+wnPuJhT7VUS381vm apR5SHJrqEduccf0W7HPQlXrRXmeG/9RADksSiTUaujmMZsd9zMCcjxzn3A6iGig ub24IjlSCiWjDhRxwPBjMml/fs2bDvSY7WbQIIwp3JABSpjia9YVTsiCQQ8v+3+u GgFf9Pgjx/W4QmWkTMXazqzAiE+wIFnnZtS9s68orPOhw6CkgIF/MYDL+ajzV+aM cwwnqhC0Q/putQmyl5zP7ln7gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPI34Ho+ xTWo5ffQPw0duSdnchJ+MB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCFN/UVVCMcfFoy4bIaGyHNYAXA/EVAPlH1eS0bF5q9vDHpt3HQanq h5iSnrSXFZH+oaHpT0Of4EvtF6fTw7nM1yOPONDLBmVrj2dt5l6kmLM9HFeuNgSO gaQV7X7dwMq3bhQnFW3a+iBPUKsWPl6kAmWqnH2AxqUaDbInwJq0F9iS1NsFm07d 68u9UxXCUYpVcsK4+mSj2THa+tXzY9RWpRQDPYpxtA/b/zV1kSVjN3pd1f+WPdNu CDqQgfmFNY6cZeG0YuJ6vht4eUgwGYFVHF8xHIClw07DqAVEsVqKb/13+pCFMKuw sSGgd1xFlg8QlsNiAMLpnoj5APVNmNQO -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:30 2024 by rpki-client on console-ams.rpki-client.org