$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: xy43hzvmgPtEo+eM+3DrB0bshftUsdepLlj3SyMPWKg= Subject key identifier: DC:6D:93:9E:01:E3:95:54:21:54:81:13:D2:29:C0:07:96:3E:37:ED Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0CCC Signing time: Sat 18 May 2024 18:47:20 +0000 Manifest this update: Sat 18 May 2024 18:47:19 +0000 Manifest next update: Sat 25 May 2024 18:47:19 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: 1cSmutpqIqkCzUj5cPTF+MqS/7w2bSDVqlmg0z0AvvM=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: /gYeXHKuLNjytyyeFHp/R1V+DYnstOYuJrrPT80MS8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: May 18 18:47:19 2024 GMT Not After : May 25 18:47:19 2024 GMT Subject: CN=6648f7b8-c864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7f:38:41:57:95:77:56:40:1e:e2:4b:ac:00: d0:50:13:a8:f4:4d:3e:b9:65:61:f8:a6:51:ad:4f: b9:e4:4b:65:89:44:83:ac:06:96:e6:7b:31:32:c8: 90:07:57:b3:6e:b6:14:a0:80:ea:8a:30:70:5c:ff: 96:b3:65:3d:23:ae:b3:82:43:9e:9c:c6:b9:72:54: 0f:e9:d6:83:74:d4:e6:80:64:82:df:ce:91:93:7a: 10:d8:e3:38:6e:cd:b6:6f:ef:06:26:9f:8c:ae:83: 25:24:c0:fa:e4:45:e2:0f:ea:a5:62:5c:9c:ea:1a: 47:8a:d9:7e:a2:da:01:91:f6:39:3c:8a:e3:63:41: d6:98:15:ee:82:df:9f:d9:7a:cb:59:6e:e9:74:56: 2b:79:f6:5d:09:c0:48:07:08:8c:5d:fe:0f:c2:8b: fe:05:35:eb:7d:64:b4:0f:ef:d2:b5:3a:e3:db:c1: c4:f8:1e:af:46:23:41:d9:d3:36:b9:01:21:ab:55: d5:07:4c:f7:b5:c7:a4:d3:d7:8f:dd:64:6b:3d:1d: 45:e2:72:64:50:98:a5:14:45:18:75:ba:f9:c9:d1: 5a:35:20:fd:94:e2:6e:08:85:1e:ea:22:fa:74:60: 6b:8b:f1:6f:20:dd:98:3b:38:d9:17:09:24:fd:d3: 1b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6D:93:9E:01:E3:95:54:21:54:81:13:D2:29:C0:07:96:3E:37:ED X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:62:f2:e0:43:d5:f7:a0:3d:05:e0:16:51:c8:e1:93:9d:05: a7:33:37:73:04:f9:94:1d:80:e0:7c:0d:38:d5:9f:05:1a:11: fc:fc:39:e5:0b:ee:76:eb:da:23:c4:71:92:28:da:22:d4:66: 85:6a:95:b1:e0:22:1c:cf:78:89:bb:0f:84:df:14:b4:2e:58: d9:2f:bf:95:34:32:9a:44:25:8d:f8:ca:d0:25:53:8b:38:56: 9f:1b:3c:fc:6d:1f:32:bf:72:e6:d9:99:0a:14:6a:e6:27:bc: f4:d3:39:6d:74:0f:32:4a:a0:d7:47:4f:77:df:95:29:53:c5: 7d:19:16:38:62:4b:64:8a:0f:a3:c2:48:01:f0:ef:ad:40:f7: a2:98:c3:e9:1f:20:36:6f:ae:38:5b:73:20:a9:1c:62:c1:94: 71:11:90:49:7a:a6:e8:58:1a:03:7f:6b:9e:ac:97:80:75:eb: 5f:e7:15:5d:a5:ad:41:f2:c1:be:a8:97:9e:48:3e:fb:84:f5: 2b:a6:39:f8:3d:b2:2f:70:42:95:7d:dc:77:a5:35:bc:58:9f: bd:7e:cd:99:aa:79:1d:42:93:b4:be:6f:b3:bf:72:fa:89:84: a2:ff:16:72:a5:7c:05:66:e8:49:77:47:10:c3:3b:8e:3b:a8: bb:1d:b8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjQwNTE4MTg0NzE5WhcNMjQwNTI1MTg0NzE5WjAYMRYwFAYD VQQDEw02NjQ4ZjdiOC1jODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2n84QVeVd1ZAHuJLrADQUBOo9E0+uWVh+KZRrU+55EtliUSDrAaW5nsxMsiQ B1ezbrYUoIDqijBwXP+Ws2U9I66zgkOenMa5clQP6daDdNTmgGSC386Rk3oQ2OM4 bs22b+8GJp+MroMlJMD65EXiD+qlYlyc6hpHitl+otoBkfY5PIrjY0HWmBXugt+f 2XrLWW7pdFYrefZdCcBIBwiMXf4Pwov+BTXrfWS0D+/StTrj28HE+B6vRiNB2dM2 uQEhq1XVB0z3tcek09eP3WRrPR1F4nJkUJilFEUYdbr5ydFaNSD9lOJuCIUe6iL6 dGBri/FvIN2YOzjZFwkk/dMb/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxtk54B 45VUIVSBE9IpwAeWPjftMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMYvLgQ9X3oD0F4BZRyOGTnQWnMzdzBPmUHYDgfA041Z8FGhH8/Dnl C+5269ojxHGSKNoi1GaFapWx4CIcz3iJuw+E3xS0LljZL7+VNDKaRCWN+MrQJVOL OFafGzz8bR8yv3Lm2ZkKFGrmJ7z00zltdA8ySqDXR09335UpU8V9GRY4Yktkig+j wkgB8O+tQPeimMPpHyA2b644W3MgqRxiwZRxEZBJeqboWBoDf2uerJeAdetf5xVd pa1B8sG+qJeeSD77hPUrpjn4PbIvcEKVfdx3pTW8WJ+9fs2ZqnkdQpO0vm+zv3L6 iYSi/xZypXwFZuhJd0cQwzuOO6i7HbjO -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org