$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: 3qENmAfRt7Ez1z4D9WM7tQcchDuWPp4DHKWxUBPQ4oI= Subject key identifier: B5:02:63:D3:29:AE:58:5C:42:34:BF:24:01:21:E6:41:2E:6C:6F:26 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 0234 Signing time: Sun 19 May 2024 04:01:02 +0000 Manifest this update: Sun 19 May 2024 04:01:02 +0000 Manifest next update: Sun 26 May 2024 04:01:02 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: ykwtixNhmOJkZv3UZXYMDmnRLU2lP/SxgWVE2Kywn/w=) 2: 1691259ADCD711EC87E30728C4F9AE02.roa (hash: C185C+rmE0a9mSx0M/vQd7gmQTZl9tIBUomuBj7QiJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: May 19 04:01:02 2024 GMT Not After : May 26 04:01:02 2024 GMT Subject: CN=6649797e-d65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:ea:d9:94:b3:b0:52:c3:fc:40:55:c6:e8: 3e:c0:ee:9d:63:fe:e8:69:b4:3a:06:cf:18:3c:dd: fc:17:dc:16:74:af:2e:a1:9e:8c:de:15:3b:c0:90: 9f:49:51:47:1f:e3:10:16:1f:db:93:fa:ea:eb:b5: fb:9e:c8:ff:38:63:21:18:4c:b7:46:28:4c:5b:bc: 73:8e:d3:46:75:bc:65:34:3e:17:3a:0a:e4:83:eb: 13:0a:3e:08:92:b9:0d:c1:23:20:60:d9:a3:93:80: 4a:7a:54:cc:05:e9:97:54:a6:b7:44:c1:3a:17:9e: 69:43:09:2a:c4:d3:59:e0:e6:0a:d0:04:c0:27:d7: 1d:0b:de:b2:6c:84:9d:13:19:c6:db:41:19:2b:32: 63:db:ab:28:aa:13:88:95:26:5e:22:dc:49:e4:ef: 89:c3:a4:a6:06:5c:39:02:aa:f9:7a:9b:df:36:d7: 7f:40:28:1f:75:23:45:30:c5:de:d3:a3:5c:bd:4e: 60:2c:ba:5f:41:ff:1f:ed:a1:ae:87:67:51:38:2e: 11:6e:0b:fb:93:d1:d8:a4:4f:a9:3e:eb:57:8b:7a: bf:fa:37:0b:b4:56:08:3b:ab:af:6f:3a:f9:0a:6e: 21:e4:39:9d:5b:98:b6:fc:a2:d3:1b:04:d9:66:9f: 87:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:02:63:D3:29:AE:58:5C:42:34:BF:24:01:21:E6:41:2E:6C:6F:26 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:db:f9:a9:76:09:5a:09:b4:21:68:cb:99:4a:0a:4f:a5:b4: cb:76:1a:8e:97:a8:76:83:56:b9:bc:93:04:47:b8:08:f7:63: f4:f4:b3:5b:f7:97:c0:3b:5c:cb:3c:e8:05:f2:96:e4:ce:84: 12:2a:6e:fe:25:ed:ec:e3:cb:de:30:26:4d:79:d8:26:a3:84: 23:e9:ef:86:59:44:7a:e3:77:f6:7f:47:fd:f4:7a:c6:b6:da: e4:83:4e:4f:5c:7a:ab:4f:c2:a2:f6:18:76:63:f5:34:fd:a8: 51:5a:05:83:aa:33:e1:84:64:81:96:e8:74:ef:5c:58:2f:b2: 86:cc:6f:85:c2:5d:c3:41:7c:10:a3:a1:1c:19:e6:4b:0c:ce: 43:a8:28:e7:b8:98:7b:c2:81:cd:dd:ef:91:1b:0e:dc:ea:ee: 36:64:1b:60:48:b5:87:ec:a0:05:64:d6:64:ab:75:f8:7f:1c: 46:fe:08:9c:bc:59:41:57:4d:f4:f3:ae:6c:bd:27:e0:82:7d: 1d:d4:3e:e3:f9:f6:53:4b:de:c1:5f:ce:39:4b:49:94:ef:1c: 87:03:8e:58:a8:f7:46:b7:8c:e7:1f:3a:4c:a7:8a:8e:4b:03: d6:45:24:6f:a7:f5:05:43:13:db:a8:b8:57:f3:40:dc:d3:93: 8a:77:75:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjQwNTE5MDQwMTAyWhcNMjQwNTI2MDQwMTAyWjAYMRYwFAYD VQQDEw02NjQ5Nzk3ZS1kNjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HXq2ZSzsFLD/EBVxug+wO6dY/7oabQ6Bs8YPN38F9wWdK8uoZ6M3hU7wJCf SVFHH+MQFh/bk/rq67X7nsj/OGMhGEy3RihMW7xzjtNGdbxlND4XOgrkg+sTCj4I krkNwSMgYNmjk4BKelTMBemXVKa3RME6F55pQwkqxNNZ4OYK0ATAJ9cdC96ybISd ExnG20EZKzJj26soqhOIlSZeItxJ5O+Jw6SmBlw5Aqr5epvfNtd/QCgfdSNFMMXe 06NcvU5gLLpfQf8f7aGuh2dROC4Rbgv7k9HYpE+pPutXi3q/+jcLtFYIO6uvbzr5 Cm4h5DmdW5i2/KLTGwTZZp+HbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUCY9Mp rlhcQjS/JAEh5kEubG8mMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ2/mpdglaCbQhaMuZSgpPpbTLdhqOl6h2g1a5vJMER7gI92P09LNb 95fAO1zLPOgF8pbkzoQSKm7+Je3s48veMCZNedgmo4Qj6e+GWUR643f2f0f99HrG ttrkg05PXHqrT8Ki9hh2Y/U0/ahRWgWDqjPhhGSBluh071xYL7KGzG+Fwl3DQXwQ o6EcGeZLDM5DqCjnuJh7woHN3e+RGw7c6u42ZBtgSLWH7KAFZNZkq3X4fxxG/gic vFlBV030865svSfggn0d1D7j+fZTS97BX845S0mU7xyHA45YqPdGt4znHzpMp4qO SwPWRSRvp/UFQxPbqLhX80Dc05OKd3XR -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org