$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: VR5KLPmFtSrgEFa5K03nViVr9tmoT5UHdyVENCP9BfE= Subject key identifier: F8:E2:68:A7:4F:80:29:54:58:20:3E:CE:D3:5F:C9:3A:1A:E2:0D:6F Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0663 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 065A Signing time: Sat 18 May 2024 23:36:17 +0000 Manifest this update: Sat 18 May 2024 23:36:16 +0000 Manifest next update: Sat 25 May 2024 23:36:16 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: ecIxLbGed1pFTBJGVFoZT43xC0eVTyg6vg3nfeNxZGM=) 2: C7DC98823AFA11EBB1D9CD42C4F9AE02.roa (hash: 4m5cge3vfBFRAwJq9ZsEfSZsFRQypbWUNuMKaTOKg1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: May 18 23:36:16 2024 GMT Not After : May 25 23:36:16 2024 GMT Subject: CN=66493b70-790f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2f:ac:ce:ca:2a:e5:da:75:5f:b2:d3:2d:6d: 79:7c:2f:c4:b0:dc:c4:01:27:4a:ea:64:0e:21:11: b8:73:d8:cd:a4:ea:47:66:95:2a:6e:3b:14:89:76: 55:83:ef:80:a6:32:ec:f7:2d:8e:86:0c:21:0b:0f: cc:49:2d:85:87:39:03:f8:7b:a9:bb:7b:7f:57:bf: 4f:14:5b:4c:41:f1:db:95:b3:40:a5:da:c1:11:04: ae:93:82:55:ab:aa:8b:9f:24:b6:c1:95:c1:b9:ca: f8:25:ff:5a:12:9c:13:d0:9e:0a:b9:ea:44:f4:cf: cb:b2:b4:3b:e4:f9:0f:17:c8:04:ec:fc:a0:62:5a: c2:af:dc:63:c9:31:b9:bc:a6:5b:ae:22:f2:34:67: aa:63:14:d5:77:ac:84:dd:0d:c2:6e:2d:e9:52:9e: 94:9c:99:22:a0:65:2b:8e:4c:cb:d7:00:d0:f6:38: 97:5a:06:4f:23:91:29:0c:fb:af:7d:10:04:b1:0e: 6e:a2:cd:ea:05:23:fe:13:e1:dd:6e:d4:1e:ec:20: c3:27:58:07:6f:ed:4f:1e:8a:84:69:78:92:94:d3: 42:b0:2f:c7:dc:53:2a:e3:7a:d1:f1:85:6c:7f:e7: 90:a8:ae:57:87:ca:b9:d3:fd:04:8e:bc:af:13:02: d2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E2:68:A7:4F:80:29:54:58:20:3E:CE:D3:5F:C9:3A:1A:E2:0D:6F X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:cb:aa:0d:46:47:64:1d:2e:f9:79:e8:32:f4:d3:9a:d7:77: 38:fe:0f:9d:11:e7:42:3a:2a:6d:86:2f:9c:92:5d:8a:c3:92: e1:18:c3:cd:05:f0:74:bc:a5:7f:61:f0:84:ed:5d:29:1f:dd: eb:32:f8:6d:47:be:94:44:b9:1e:6a:30:b7:13:79:43:3c:97: cf:ca:b2:7e:fe:ad:39:dd:4b:b9:36:aa:6d:ae:d1:57:91:0e: 1d:e6:c4:bd:6a:f8:47:51:4e:d0:ce:0e:fe:f8:62:9e:e1:1c: 1d:b8:85:28:3c:4c:ed:64:e4:5f:b0:0d:12:bf:28:88:54:da: 8b:3f:46:9c:76:a7:ea:21:2e:db:6a:ac:80:a4:c3:91:00:96: 93:a6:55:f4:49:49:38:e9:81:7e:13:f9:72:7f:0f:e9:2b:8e: 92:52:dc:d8:8b:c1:45:ef:14:da:88:d0:78:51:fd:d6:ee:23: ad:6b:80:7a:7a:54:1e:94:52:7c:98:1b:f1:d4:63:18:5f:1b: 72:76:ee:ec:ed:e1:52:d9:39:2a:48:16:82:80:8a:72:a1:b9: b0:c2:87:30:18:01:fd:bb:cf:2a:3c:62:7b:6d:27:b4:90:6a: 18:1f:52:eb:65:95:67:bc:93:5a:07:e3:5e:e0:b2:d2:d5:02: bd:bf:95:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjQwNTE4MjMzNjE2WhcNMjQwNTI1MjMzNjE2WjAYMRYwFAYD VQQDEw02NjQ5M2I3MC03OTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC+szsoq5dp1X7LTLW15fC/EsNzEASdK6mQOIRG4c9jNpOpHZpUqbjsUiXZV g++ApjLs9y2OhgwhCw/MSS2FhzkD+Hupu3t/V79PFFtMQfHblbNApdrBEQSuk4JV q6qLnyS2wZXBucr4Jf9aEpwT0J4KuepE9M/LsrQ75PkPF8gE7PygYlrCr9xjyTG5 vKZbriLyNGeqYxTVd6yE3Q3Cbi3pUp6UnJkioGUrjkzL1wDQ9jiXWgZPI5EpDPuv fRAEsQ5uos3qBSP+E+HdbtQe7CDDJ1gHb+1PHoqEaXiSlNNCsC/H3FMq43rR8YVs f+eQqK5Xh8q50/0EjryvEwLSBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjiaKdP gClUWCA+ztNfyToa4g1vMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSy6oNRkdkHS75eegy9NOa13c4/g+dEedCOipthi+ckl2Kw5LhGMPN BfB0vKV/YfCE7V0pH93rMvhtR76URLkeajC3E3lDPJfPyrJ+/q053Uu5NqptrtFX kQ4d5sS9avhHUU7Qzg7++GKe4RwduIUoPEztZORfsA0SvyiIVNqLP0acdqfqIS7b aqyApMORAJaTplX0SUk46YF+E/lyfw/pK46SUtzYi8FF7xTaiNB4Uf3W7iOta4B6 elQelFJ8mBvx1GMYXxtydu7s7eFS2TkqSBaCgIpyobmwwocwGAH9u88qPGJ7bSe0 kGoYH1LrZZVnvJNaB+Ne4LLS1QK9v5XH -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org