$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: NXaZERq4W4y9Z8DX7Ff0WZDGB1ftd3VY68q9Ji+D1h8= Subject key identifier: AE:13:0D:FF:3A:F7:45:76:09:B9:AB:7B:EF:3C:83:CB:43:5F:56:D0 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 01F2 Signing time: Fri 31 May 2024 04:51:33 +0000 Manifest this update: Fri 31 May 2024 04:51:32 +0000 Manifest next update: Fri 07 Jun 2024 04:51:32 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: 9CiMRYWR8hTFN8oS2tyoKGai/OS4NOkrScMJky7j40M=) 2: 2E18B9F4F91E11EC9E48A02BC4F9AE02.roa (hash: yAfRR/+DRnQdilFydbUlQYYyxtfNQlGh28KEstk9hsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 04:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: May 31 04:51:32 2024 GMT Not After : Jun 7 04:51:32 2024 GMT Subject: CN=66595754-199e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:96:34:79:18:ec:4a:cd:f1:93:99:13:97:f8: f7:9b:be:fa:32:7a:10:74:84:27:b5:91:56:4e:41: d7:98:eb:ff:aa:72:10:ad:af:81:b5:84:84:84:98: cb:b2:80:6c:53:c3:fe:e6:09:5a:4a:0d:bb:88:f3: db:58:ba:cd:af:5d:c2:d5:69:63:6b:2b:00:ec:de: 4c:c9:49:16:6b:fa:be:c9:98:d1:8a:a7:37:9c:66: e1:f0:15:bb:ef:78:53:cd:88:df:58:fe:22:1f:c4: cf:7c:da:42:1e:37:7e:f1:a0:20:cb:37:96:c3:7d: 8b:49:69:8c:6a:e0:56:1a:e1:0c:9e:77:7b:87:52: 6f:7e:73:24:6b:24:b5:74:6d:55:d4:f0:e1:48:6a: d7:47:e3:26:c7:e1:cc:54:e6:fe:68:0c:a8:19:84: 69:ff:b4:d0:e7:46:4a:ff:d4:a5:36:35:6a:4b:fb: b0:7a:68:d2:90:1c:a9:59:08:37:07:e5:9f:25:33: 12:ba:2d:80:46:be:51:20:5f:17:01:e1:21:4a:5c: 7c:1f:c1:af:72:42:c6:26:43:bd:90:c6:b6:eb:24: bd:72:b0:d7:0c:10:f3:d4:f2:76:ea:51:ec:71:d1: 59:87:21:c4:20:a9:ca:86:11:5a:59:a0:4a:c2:ac: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:13:0D:FF:3A:F7:45:76:09:B9:AB:7B:EF:3C:83:CB:43:5F:56:D0 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7c:27:c8:1a:2f:2e:cb:35:fd:1f:ef:da:cb:88:3a:5d:44: dc:36:e7:f9:4e:2f:d0:e4:25:8e:75:4c:b8:83:7e:71:bf:c0: de:9c:06:2a:59:1f:60:f0:8e:01:15:e9:0e:2e:ed:19:17:ca: ef:57:ef:97:60:bd:7b:8c:82:a0:70:2f:50:d7:2d:1c:69:0e: e3:7c:fd:fa:6a:52:b8:7f:33:55:1d:02:cf:6e:c1:55:1f:2e: 26:76:ea:60:ea:87:e2:27:da:a7:3d:93:d6:94:e6:5b:a6:75: f7:01:5b:4c:6e:8c:7e:fc:80:3e:41:a6:da:e7:c9:57:c3:68: 2f:22:03:1a:d5:c1:21:df:10:c4:21:4f:61:bc:d8:15:e3:53: 26:3d:7d:c1:da:a0:11:d3:3f:21:22:40:03:5d:d2:5e:d3:2a: 5e:a6:90:63:f8:82:70:2b:90:87:3f:4c:7f:5b:d5:f7:f3:ed: c2:43:4b:b4:6d:ac:b8:1b:d4:58:c5:6d:82:eb:4b:05:58:a8: 31:59:fd:a8:7b:f5:b4:6b:a9:92:f0:88:de:3d:47:98:b9:9e: d1:39:a7:70:34:01:10:f3:fe:13:66:13:2f:86:ed:4c:29:b0: 73:16:8c:d6:98:46:c4:11:9a:3b:c6:24:70:ea:34:95:6b:9a: 71:08:0e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjQwNTMxMDQ1MTMyWhcNMjQwNjA3MDQ1MTMyWjAYMRYwFAYD VQQDEw02NjU5NTc1NC0xOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZY0eRjsSs3xk5kTl/j3m776MnoQdIQntZFWTkHXmOv/qnIQra+BtYSEhJjL soBsU8P+5glaSg27iPPbWLrNr13C1WljaysA7N5MyUkWa/q+yZjRiqc3nGbh8BW7 73hTzYjfWP4iH8TPfNpCHjd+8aAgyzeWw32LSWmMauBWGuEMnnd7h1JvfnMkayS1 dG1V1PDhSGrXR+Mmx+HMVOb+aAyoGYRp/7TQ50ZK/9SlNjVqS/uwemjSkBypWQg3 B+WfJTMSui2ARr5RIF8XAeEhSlx8H8GvckLGJkO9kMa26yS9crDXDBDz1PJ26lHs cdFZhyHEIKnKhhFaWaBKwqzEKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4TDf86 90V2Cbmre+88g8tDX1bQMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyfCfIGi8uyzX9H+/ay4g6XUTcNuf5Ti/Q5CWOdUy4g35xv8DenAYq WR9g8I4BFekOLu0ZF8rvV++XYL17jIKgcC9Q1y0caQ7jfP36alK4fzNVHQLPbsFV Hy4mdupg6ofiJ9qnPZPWlOZbpnX3AVtMbox+/IA+Qaba58lXw2gvIgMa1cEh3xDE IU9hvNgV41MmPX3B2qAR0z8hIkADXdJe0ypeppBj+IJwK5CHP0x/W9X38+3CQ0u0 bay4G9RYxW2C60sFWKgxWf2oe/W0a6mS8IjePUeYuZ7ROadwNAEQ8/4TZhMvhu1M KbBzFozWmEbEEZo7xiRw6jSVa5pxCA7l -----END CERTIFICATE-----Generated at Fri May 31 05:53:53 2024 by rpki-client on console-fra.rpki-client.org