$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: snzxzFe+36ECbQcdOPxEv4D0A1FAchiESfjV3QgZbxU= Subject key identifier: 4C:66:6F:42:DF:CB:FE:FC:B2:55:BF:56:44:F2:B2:8A:2A:D7:C7:82 Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 33C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 3F11 Signing time: Sat 18 May 2024 15:13:56 +0000 Manifest this update: Sat 18 May 2024 15:13:56 +0000 Manifest next update: Sat 25 May 2024 15:13:56 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: f3lO/OPUTA5zCAnbDBZt3QfHM+0xzIsmYg9nis5w8+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13256 (0x33c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: May 18 15:13:56 2024 GMT Not After : May 25 15:13:56 2024 GMT Subject: CN=6648c5b4-cfd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7b:52:51:03:b5:d4:75:f5:dd:43:c5:58:2b: 49:42:4a:fd:97:a6:81:1a:e0:98:2a:49:64:3a:10: 39:a8:be:fa:7e:85:a0:bd:dc:6b:1a:35:77:57:eb: 62:7c:f4:45:68:2b:f0:ab:07:12:25:7a:14:e2:f3: 60:4b:28:fa:39:82:b7:1c:16:3f:6c:ab:c4:ef:2c: e3:77:f2:55:58:5a:0a:bc:94:20:40:0f:c1:72:e3: 9b:52:0c:c1:26:9f:94:f1:43:12:e3:73:15:44:38: 70:25:26:5a:4d:80:8d:8c:55:22:95:44:c6:52:5f: 3d:53:cf:bf:65:b0:83:c7:4e:4c:67:ac:da:51:8f: a0:38:62:d1:76:52:dc:66:3e:e7:a9:14:dd:ee:ba: 30:b2:65:b5:44:eb:f7:3f:8a:0d:e3:e6:e7:d6:4c: 82:ec:08:6a:d7:2b:d7:ba:b6:4f:4f:91:61:37:80: e1:f0:f5:4b:9b:a2:eb:70:5f:47:66:a9:f8:0a:b5: f0:4b:2f:3f:3e:a3:f2:f0:5b:17:2e:8a:c9:50:4c: 5a:d4:8a:62:f6:b7:ee:78:7a:0d:5d:37:4d:32:25: 5c:8a:ae:d2:3d:c3:34:dc:85:8e:1c:8e:ec:3f:60: 23:12:59:bc:40:be:f9:ae:3a:1f:fb:b0:3c:62:79: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:66:6F:42:DF:CB:FE:FC:B2:55:BF:56:44:F2:B2:8A:2A:D7:C7:82 X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:9d:fd:aa:63:1a:2e:ae:8e:d8:e0:04:f6:bc:b3:c3:22:b7: 1b:e2:77:bf:26:35:6d:73:59:5f:3a:de:44:7a:d2:5f:b6:84: 72:e1:2a:b7:f4:a7:14:0c:6f:7e:f2:5a:bc:96:e6:f8:d0:d4: b4:f4:97:f4:6c:9e:a0:73:16:ec:ec:fa:8e:77:61:8c:48:9a: a2:08:e3:32:49:1a:39:14:88:c5:ac:c4:d9:06:28:c6:68:c6: ab:73:cd:94:d1:28:ae:82:40:95:2f:e7:aa:c8:19:cb:44:be: 65:f0:a7:24:11:6a:eb:77:05:f5:26:e8:3c:77:e7:31:50:bb: f9:e5:52:f9:d0:9d:91:f6:dc:ac:5b:53:7f:6e:73:66:9e:a3: 28:97:be:35:09:a3:ec:af:c5:e0:ac:2e:74:72:f2:ab:41:a5: d7:cc:e8:d9:9c:65:55:cc:80:91:ca:fc:4c:bb:44:ae:fd:be: c7:3a:89:23:36:f9:30:51:b3:36:0a:6e:71:0c:e5:d9:12:b1: d7:3c:7d:90:eb:ae:03:7f:8d:78:6c:b4:63:a2:cc:51:53:b1: f6:6b:8b:75:b5:b2:e5:ff:ba:45:6c:23:f3:af:31:d3:39:0c: d8:e8:9b:45:24:a3:b6:26:72:88:df:ca:c2:72:b1:f7:2c:41: 99:dd:25:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjQwNTE4MTUxMzU2WhcNMjQwNTI1MTUxMzU2WjAYMRYwFAYD VQQDEw02NjQ4YzViNC1jZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXtSUQO11HX13UPFWCtJQkr9l6aBGuCYKklkOhA5qL76foWgvdxrGjV3V+ti fPRFaCvwqwcSJXoU4vNgSyj6OYK3HBY/bKvE7yzjd/JVWFoKvJQgQA/BcuObUgzB Jp+U8UMS43MVRDhwJSZaTYCNjFUilUTGUl89U8+/ZbCDx05MZ6zaUY+gOGLRdlLc Zj7nqRTd7rowsmW1ROv3P4oN4+bn1kyC7Ahq1yvXurZPT5FhN4Dh8PVLm6LrcF9H Zqn4CrXwSy8/PqPy8FsXLorJUExa1Ipi9rfueHoNXTdNMiVciq7SPcM03IWOHI7s P2AjElm8QL75rjof+7A8YnkzBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExmb0Lf y/78slW/VkTysooq18eCMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBonf2qYxouro7Y4AT2vLPDIrcb4ne/JjVtc1lfOt5EetJftoRy4Sq3 9KcUDG9+8lq8lub40NS09Jf0bJ6gcxbs7PqOd2GMSJqiCOMySRo5FIjFrMTZBijG aMarc82U0SiugkCVL+eqyBnLRL5l8KckEWrrdwX1Jug8d+cxULv55VL50J2R9tys W1N/bnNmnqMol741CaPsr8XgrC50cvKrQaXXzOjZnGVVzICRyvxMu0Su/b7HOokj NvkwUbM2Cm5xDOXZErHXPH2Q664Df414bLRjosxRU7H2a4t1tbLl/7pFbCPzrzHT OQzY6JtFJKO2JnKI38rCcrH3LEGZ3SUE -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org