$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: wrZ7Bqu4DF9HryZF2G3+SYumpG6d9p3jgWUeGKTFXIk= Subject key identifier: 9E:A1:37:7B:4F:97:6F:DA:EC:30:63:11:C7:F6:97:E0:5A:CA:A6:D6 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 33CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 33C7 Signing time: Sat 18 May 2024 14:46:24 +0000 Manifest this update: Sat 18 May 2024 14:46:23 +0000 Manifest next update: Sat 25 May 2024 14:46:23 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: gaymwJsnPZcIyM4AKhJHbzvQx6ytnFRCorCs5I9hkgU=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: tL/bpnY56thAmkSkvHj2zW1bjHE/bttQg4ijVfNoCPI=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: HtKSa26rIUPBKNNxZu7c+H1IlS8vW+/hfQnOO/XZdZc=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: 1Z3EtWYcZVV+ytIydGHG1ZcaZnMTdTNNZ1jf1qeQT6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13261 (0x33cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: May 18 14:46:23 2024 GMT Not After : May 25 14:46:23 2024 GMT Subject: CN=6648bf40-1f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:86:b3:f8:00:cf:a3:c8:08:87:34:cd:72: 1c:55:0a:e5:22:4c:10:1a:54:f7:c8:c2:dd:2a:c3: d1:57:27:e4:0e:b5:59:db:34:31:6d:2f:21:73:03: 1b:88:93:a6:a2:f8:8e:1c:cb:f1:87:43:df:22:f6: b8:ec:49:79:e6:54:18:07:55:6e:82:e8:56:85:a9: 1d:a4:83:aa:47:27:59:db:73:68:0b:fe:6a:2f:6d: 65:ff:3a:53:3b:a5:87:8d:97:26:bc:f0:f0:de:d2: 4c:70:79:7b:05:5a:aa:20:6e:31:0f:f6:a2:fb:cf: cf:c6:3e:ff:e3:2f:87:0e:fd:f2:51:9e:48:77:85: bc:36:0a:bf:d1:3b:2f:b8:6f:5c:fd:7b:9b:47:61: bf:73:23:91:ea:3a:40:19:a1:cb:48:d4:05:8e:9d: ef:c5:ad:d7:d6:51:97:ac:77:ae:e6:b5:bc:2e:8e: 35:7a:68:b6:e0:f8:1d:00:f9:19:91:58:e7:e7:87: a9:ae:34:39:8e:29:fc:49:63:7e:2f:7e:27:b1:c9: 91:8f:1e:e2:b3:74:c8:cf:28:d6:ab:73:be:47:66: 62:f4:37:e9:72:f1:ec:f6:f8:28:25:aa:d7:60:f7: 94:f8:62:29:fe:16:63:1c:02:9f:43:ad:82:f6:4f: 34:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A1:37:7B:4F:97:6F:DA:EC:30:63:11:C7:F6:97:E0:5A:CA:A6:D6 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:7a:6c:d2:da:fa:7f:03:0d:20:0e:89:e1:79:e5:d9:24:19: 06:f0:fb:b9:e4:ba:0b:11:8c:bd:56:c7:d0:9b:f9:f4:da:e9: f1:b3:f6:6a:dc:c0:74:62:1c:e7:da:55:fd:47:c4:04:36:07: e6:c1:ff:5a:fa:27:d1:27:08:5e:51:7e:78:7d:74:b8:2f:06: 59:d7:c7:d2:e5:41:1a:44:3e:21:21:7e:3d:15:ff:1b:c3:ac: 70:38:46:59:2f:66:f0:e4:cc:9c:db:1c:9f:cb:c3:f3:7f:21: 89:c4:e1:be:85:54:e4:81:52:43:40:2d:66:9e:d7:3f:bc:84: 9e:11:cd:f1:60:16:c0:fa:df:9d:e6:97:10:ad:99:5d:09:e4: b1:24:30:ab:6c:ff:29:d5:13:d2:20:a6:1d:e1:37:d2:4f:c3: e6:e6:f6:37:83:b8:4b:1a:18:ec:41:07:a2:e0:d0:96:7f:5d: f7:bf:30:30:b9:29:77:37:9d:a2:bc:ba:42:4f:6c:b7:6c:88: af:de:33:91:c4:3a:cb:9c:a6:a0:6e:2c:03:68:91:c6:6d:af: 0e:a4:4e:17:7d:68:dd:05:fc:c2:74:0e:22:4b:91:b9:85:94: 9c:47:f2:cc:4a:8e:1b:f5:a0:d2:8e:d9:1a:ea:dc:45:b0:80: 1d:b2:6a:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjQwNTE4MTQ0NjIzWhcNMjQwNTI1MTQ0NjIzWjAYMRYwFAYD VQQDEw02NjQ4YmY0MC0xZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ2Gs/gAz6PICIc0zXIcVQrlIkwQGlT3yMLdKsPRVyfkDrVZ2zQxbS8hcwMb iJOmoviOHMvxh0PfIva47El55lQYB1VuguhWhakdpIOqRydZ23NoC/5qL21l/zpT O6WHjZcmvPDw3tJMcHl7BVqqIG4xD/ai+8/Pxj7/4y+HDv3yUZ5Id4W8Ngq/0Tsv uG9c/XubR2G/cyOR6jpAGaHLSNQFjp3vxa3X1lGXrHeu5rW8Lo41emi24PgdAPkZ kVjn54eprjQ5jin8SWN+L34nscmRjx7is3TIzyjWq3O+R2Zi9DfpcvHs9vgoJarX YPeU+GIp/hZjHAKfQ62C9k80VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6hN3tP l2/a7DBjEcf2l+BayqbWMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjemzS2vp/Aw0gDonheeXZJBkG8Pu55LoLEYy9VsfQm/n02unxs/Zq 3MB0Yhzn2lX9R8QENgfmwf9a+ifRJwheUX54fXS4LwZZ18fS5UEaRD4hIX49Ff8b w6xwOEZZL2bw5Myc2xyfy8PzfyGJxOG+hVTkgVJDQC1mntc/vISeEc3xYBbA+t+d 5pcQrZldCeSxJDCrbP8p1RPSIKYd4TfST8Pm5vY3g7hLGhjsQQei4NCWf133vzAw uSl3N52ivLpCT2y3bIiv3jORxDrLnKagbiwDaJHGba8OpE4XfWjdBfzCdA4iS5G5 hZScR/LMSo4b9aDSjtka6txFsIAdsmpH -----END CERTIFICATE-----Generated at Sat May 18 15:58:26 2024 by rpki-client on console-ams.rpki-client.org