$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft File: gFLXiRiFOIg0vD1ozrIclvdiXmc.mft (raw, json) Hash identifier: JPouHXRf1aWc17xqjYTKWB5OlEZdD+jujZbLeVHZ0Bo= Subject key identifier: 4F:27:59:9B:F7:1F:30:36:8F:D9:F5:84:A3:E2:5B:58:FD:7E:E9:BD Authority key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 Certificate issuer: /CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Certificate serial: 1D97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft Manifest number: 1D96 Signing time: Sat 18 May 2024 16:27:52 +0000 Manifest this update: Sat 18 May 2024 16:27:52 +0000 Manifest next update: Sat 25 May 2024 16:27:52 +0000 Files and hashes: 1: gFLXiRiFOIg0vD1ozrIclvdiXmc.crl (hash: XycE/UcNMnJL+3TQaXJ3zQPjR5GbIYuHwRF0JGV+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7575 (0x1d97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Validity Not Before: May 18 16:27:52 2024 GMT Not After : May 25 16:27:52 2024 GMT Subject: CN=6648d708-ff3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1b:19:c8:b7:cc:db:39:3c:02:2b:a6:06:7f: ec:28:34:a6:51:c2:88:bc:b9:31:96:ab:a1:53:4b: 4b:f5:37:c3:43:9e:10:d7:08:90:41:26:eb:c1:be: 43:c9:bb:c4:14:d7:21:ee:b0:5a:17:b9:1c:5f:f3: 7b:45:a5:82:20:28:e4:c8:0a:60:d6:de:04:35:66: 6d:ea:86:d9:8f:da:27:9c:06:f1:a5:eb:2d:af:d9: ed:c3:31:ef:09:1f:cf:34:45:b8:cd:00:01:db:14: 33:5e:55:f2:7c:dd:c4:18:27:db:59:b3:14:55:7c: 26:6c:68:24:cf:72:85:8e:4f:12:2d:75:0e:e9:d9: 68:a6:45:eb:ea:63:20:af:c1:86:8d:c1:a4:25:d5: b6:b5:f2:a5:ad:4e:b1:cd:ac:df:1a:62:37:b4:2d: 80:cc:62:54:b6:43:f0:9f:5a:fe:7a:47:ee:37:8f: c4:25:b4:c6:f8:89:54:ec:a5:28:b1:b4:5c:ef:49: 92:d2:54:04:fb:d5:2c:bd:1d:5e:10:cd:41:a7:5a: 64:38:9a:98:3d:2d:c2:dc:c4:5c:62:80:60:16:26: 48:a5:bf:68:30:9f:ad:d4:ea:f4:d2:f0:77:75:5e: 18:a8:61:84:b1:9c:df:71:94:c2:4f:b6:f3:49:66: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:27:59:9B:F7:1F:30:36:8F:D9:F5:84:A3:E2:5B:58:FD:7E:E9:BD X509v3 Authority Key Identifier: keyid:80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:6f:d0:a5:65:1f:5e:86:34:66:90:05:81:2e:44:ff:9d:86: b4:b3:9d:0a:cd:0c:0a:b1:5c:e0:5a:70:67:fe:86:da:c6:28: c5:4f:9a:6e:ad:92:63:38:72:01:2e:3b:15:be:82:13:2d:a9: 9c:9d:ac:12:70:50:ce:fb:10:c5:bf:40:ad:ad:ec:d8:91:32: f8:81:ae:ca:06:5b:cf:ed:22:4e:46:94:38:1b:3d:f0:ea:a2: 3e:4f:7e:84:b8:98:04:69:41:93:1e:61:3d:6f:33:04:24:5a: 36:c0:23:3c:4a:09:51:4b:e5:3c:ba:76:65:d4:b7:0b:cd:5d: 67:40:6f:90:8f:5a:6a:e5:d7:b3:c0:6f:44:2d:bb:9c:aa:dc: 84:e5:7e:6d:84:32:20:2c:b9:d3:d4:c3:fc:99:15:00:e7:f3: a9:41:c6:70:49:a6:61:c6:c9:a1:81:4b:b2:f4:7c:d9:e4:ad: e1:98:92:f0:17:cb:43:c4:2d:44:73:ac:e4:29:3f:79:09:a3: 27:d8:2c:cc:d5:11:61:28:12:3a:35:7e:f3:c6:09:18:63:ab: 09:0c:25:b2:a8:44:88:97:00:a2:fc:0b:ed:0c:00:71:80:2d: 61:99:bd:b3:9e:dd:d7:8b:e3:39:35:d0:5e:25:9c:29:1e:fd: d1:0c:ac:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2OENFQjIxQzk2 Rjc2MjVFNjcwHhcNMjQwNTE4MTYyNzUyWhcNMjQwNTI1MTYyNzUyWjAYMRYwFAYD VQQDEw02NjQ4ZDcwOC1mZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRsZyLfM2zk8AiumBn/sKDSmUcKIvLkxlquhU0tL9TfDQ54Q1wiQQSbrwb5D ybvEFNch7rBaF7kcX/N7RaWCICjkyApg1t4ENWZt6obZj9onnAbxpestr9ntwzHv CR/PNEW4zQAB2xQzXlXyfN3EGCfbWbMUVXwmbGgkz3KFjk8SLXUO6dlopkXr6mMg r8GGjcGkJdW2tfKlrU6xzazfGmI3tC2AzGJUtkPwn1r+ekfuN4/EJbTG+IlU7KUo sbRc70mS0lQE+9UsvR1eEM1Bp1pkOJqYPS3C3MRcYoBgFiZIpb9oMJ+t1Or00vB3 dV4YqGGEsZzfcZTCT7bzSWboBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8nWZv3 HzA2j9n1hKPiW1j9fum9MB8GA1UdIwQYMBaAFIBS14kYhTiINLw9aM6yHJb3Yl5n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU4OS9GMjcyNkExODc2 M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9JZzB2RDFvenJJY2x2ZGlY bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dGTFhpUmlGT0lnMHZEMW96ckljbHZkaVhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9J ZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBib9ClZR9ehjRmkAWBLkT/nYa0s50KzQwKsVzgWnBn/obaxijFT5pu rZJjOHIBLjsVvoITLamcnawScFDO+xDFv0CtrezYkTL4ga7KBlvP7SJORpQ4Gz3w 6qI+T36EuJgEaUGTHmE9bzMEJFo2wCM8SglRS+U8unZl1LcLzV1nQG+Qj1pq5dez wG9ELbucqtyE5X5thDIgLLnT1MP8mRUA5/OpQcZwSaZhxsmhgUuy9HzZ5K3hmJLw F8tDxC1Ec6zkKT95CaMn2CzM1RFhKBI6NX7zxgkYY6sJDCWyqESIlwCi/AvtDABx gC1hmb2znt3Xi+M5NdBeJZwpHv3RDKw8 -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org