$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: U6DbpIBKy7Eptwgd8BD3gUTxiEjigwkaOFLUozv6l7k= Subject key identifier: 98:FA:30:A1:BC:45:70:0E:AA:5A:31:3A:D9:51:92:EC:84:96:26:DF Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 188A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1D54 Signing time: Thu 30 May 2024 17:12:29 +0000 Manifest this update: Thu 30 May 2024 17:12:29 +0000 Manifest next update: Thu 06 Jun 2024 17:12:29 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: c+8toDjeB3sxjr63+MU3f/CXmqmE7uRhy0QVfoIPSMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 17:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6282 (0x188a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: May 30 17:12:29 2024 GMT Not After : Jun 6 17:12:29 2024 GMT Subject: CN=6658b37d-5ece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8d:ce:9e:a2:ca:61:ae:33:8f:cf:38:11:91: 0a:ce:d1:ed:05:df:34:1e:3f:85:33:3a:e6:76:30: 2c:a7:75:5d:6c:4b:fe:5b:d0:40:5c:d8:70:b9:a5: fe:ed:71:3d:07:f3:e2:d3:ea:2e:d3:8d:5f:56:f0: 23:3e:2f:ae:7c:86:bf:72:a3:26:88:46:eb:9a:83: f8:67:e3:ce:f9:b7:64:0c:45:b7:55:3b:ac:cb:d2: 4f:ae:e6:75:07:63:51:6d:3b:b8:d1:dd:50:8f:38: b1:62:9e:25:b4:98:f5:57:3b:47:41:a1:06:fc:38: a4:df:1c:30:2d:d8:be:7c:56:5a:37:29:4c:af:21: 36:25:f5:71:71:dc:f8:50:d4:d8:64:31:eb:33:d4: 40:75:1d:37:27:5a:0a:ea:3c:5d:1f:51:4a:0f:0e: 6c:72:d9:7a:e8:5b:34:77:09:a5:95:6b:bb:b0:5e: f6:23:b6:dc:46:6c:3b:b3:48:71:80:77:bb:bc:85: 22:ea:7a:d0:56:52:22:df:10:35:14:7e:47:6c:31: 63:5b:ec:df:e7:0f:fb:05:0f:93:b5:0d:33:8d:11: e7:ba:ee:c5:22:48:df:fe:86:21:aa:20:fd:cc:8c: a2:61:bf:80:45:8e:dc:56:91:a8:6b:dd:80:c4:a4: bd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FA:30:A1:BC:45:70:0E:AA:5A:31:3A:D9:51:92:EC:84:96:26:DF X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:95:b8:1e:bb:4f:d5:e4:c7:6b:07:b3:aa:79:46:b4:6b:5a: 51:66:16:d6:f4:87:2f:8d:68:c3:28:c5:db:ef:52:27:79:c5: fd:03:5a:3a:e3:5d:27:e0:15:1a:3b:78:c2:94:aa:62:90:69: 27:ec:28:85:a0:c7:b6:cc:96:3d:b5:ba:58:40:d2:37:a0:c6: b5:e3:cd:85:56:33:0a:c1:59:8c:63:67:bc:d7:d3:1a:08:49: 3b:46:b9:0a:ba:64:0a:f7:31:e8:6b:1c:a8:a8:50:57:e8:56: e4:f9:7a:9e:28:4a:4a:b1:1a:1c:00:28:06:17:74:da:6a:4c: cd:a9:44:30:ac:5c:a2:92:bd:0a:6d:1e:e7:c9:0c:a1:60:68: ab:05:4b:90:87:7b:e6:25:2b:ca:75:a0:0f:16:c4:ad:d4:61: fe:c4:1e:05:53:64:6b:ee:77:d2:8f:3a:86:47:52:d9:d7:2c: 83:39:83:55:59:3f:bd:1b:f4:34:78:e8:33:37:70:30:1c:1b: d3:c5:8c:2d:d2:ce:20:33:b3:66:d7:82:e3:38:6b:43:a4:4e: 4f:65:e7:a9:fb:0c:bf:d6:00:2b:4a:f5:94:30:2d:a7:7c:08: 84:af:05:ac:4e:f3:4f:87:3d:47:d8:7d:91:f9:ec:3a:51:7a: cf:74:5a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjQwNTMwMTcxMjI5WhcNMjQwNjA2MTcxMjI5WjAYMRYwFAYD VQQDEw02NjU4YjM3ZC01ZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo3OnqLKYa4zj884EZEKztHtBd80Hj+FMzrmdjAsp3VdbEv+W9BAXNhwuaX+ 7XE9B/Pi0+ou041fVvAjPi+ufIa/cqMmiEbrmoP4Z+PO+bdkDEW3VTusy9JPruZ1 B2NRbTu40d1QjzixYp4ltJj1VztHQaEG/Dik3xwwLdi+fFZaNylMryE2JfVxcdz4 UNTYZDHrM9RAdR03J1oK6jxdH1FKDw5sctl66Fs0dwmllWu7sF72I7bcRmw7s0hx gHe7vIUi6nrQVlIi3xA1FH5HbDFjW+zf5w/7BQ+TtQ0zjRHnuu7FIkjf/oYhqiD9 zIyiYb+ARY7cVpGoa92AxKS9twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj6MKG8 RXAOqloxOtlRkuyElibfMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCalbgeu0/V5MdrB7OqeUa0a1pRZhbW9IcvjWjDKMXb71InecX9A1o6 410n4BUaO3jClKpikGkn7CiFoMe2zJY9tbpYQNI3oMa1482FVjMKwVmMY2e819Ma CEk7RrkKumQK9zHoaxyoqFBX6Fbk+XqeKEpKsRocACgGF3TaakzNqUQwrFyikr0K bR7nyQyhYGirBUuQh3vmJSvKdaAPFsSt1GH+xB4FU2Rr7nfSjzqGR1LZ1yyDOYNV WT+9G/Q0eOgzN3AwHBvTxYwt0s4gM7Nm14LjOGtDpE5PZeep+wy/1gArSvWUMC2n fAiErwWsTvNPhz1H2H2R+ew6UXrPdFqv -----END CERTIFICATE-----Generated at Thu May 30 18:46:48 2024 by rpki-client on console-ams.rpki-client.org