$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft File: G5HVFg99VrcFqFFsahz0L0ln71Y.mft (raw, json) Hash identifier: sL9w0HxC6iMW5e8d46tBYWZi+HVAVZo2Y0sLeERUPJc= Subject key identifier: C0:F7:5B:4E:09:04:E5:9E:07:26:CA:C5:32:A8:F6:3C:B9:61:81:9B Authority key identifier: 1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 Certificate issuer: /CN=A91EF554/serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft Manifest number: 087B Signing time: Thu 30 May 2024 22:04:44 +0000 Manifest this update: Thu 30 May 2024 22:04:43 +0000 Manifest next update: Thu 06 Jun 2024 22:04:43 +0000 Files and hashes: 1: G5HVFg99VrcFqFFsahz0L0ln71Y.crl (hash: ng22f8yPs8/dSR+0n9Ugkhdf7fdqPZQeMcJGRSZxPRA=) 2: 156CEB62DC6011ECB2698C14C4F9AE02.roa (hash: oKOcbNnwPGTy3q5emliwbRxX0Ls/8MFVWMAhcz5HBKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 22:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF554/serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Validity Not Before: May 30 22:04:43 2024 GMT Not After : Jun 6 22:04:43 2024 GMT Subject: CN=6658f7fc-ff3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2a:1d:39:64:dd:1f:1e:eb:42:d4:84:35:9e: 4c:37:31:c1:a0:bd:48:97:6b:61:a2:ea:f7:67:c5: d3:e4:59:2d:65:c2:c6:e3:83:1c:50:79:c4:0a:80: ab:b2:d3:16:a8:01:4f:a9:d2:5f:4e:e2:fb:a9:ce: a1:23:6d:8a:e6:67:f0:13:ed:a3:f4:d1:79:83:8a: 5d:37:ff:5a:e6:45:78:f9:f6:ff:e3:da:1e:5f:0b: f4:06:1d:bb:17:02:2b:3d:da:e7:a8:9b:79:f3:7f: 97:18:52:5c:da:7b:1a:dd:29:18:64:19:05:cf:d7: fa:45:c7:35:31:fc:8c:33:2b:b2:83:85:71:70:c0: 08:37:99:19:a1:71:a7:3c:60:83:ab:12:41:60:a5: 44:d0:64:1e:4c:90:e8:b0:6f:90:29:19:bb:e0:2d: 63:b0:80:37:4c:9d:d2:a7:c2:f4:e9:68:da:2d:f7: c9:86:f1:24:91:4d:35:e0:4b:78:0d:96:12:e0:27: a2:fc:24:03:00:80:f4:d6:fe:6c:0e:b3:71:53:8b: 77:20:4d:1e:60:6d:f3:a0:9a:44:1a:e9:b9:ed:6e: 51:bd:4c:fa:a8:4e:cc:83:5c:df:69:b9:04:70:77: 05:20:26:7f:74:1a:e7:15:f3:14:d0:e0:95:6b:aa: 23:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F7:5B:4E:09:04:E5:9E:07:26:CA:C5:32:A8:F6:3C:B9:61:81:9B X509v3 Authority Key Identifier: keyid:1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:5b:f2:b3:6c:b1:d1:9b:18:8f:1a:9a:d2:ac:31:c7:d5:fc: 53:d0:0f:f6:20:44:44:52:1f:c7:f5:cd:d9:50:e9:74:b1:f4: 13:06:c3:78:09:01:36:28:2f:c7:66:a8:8a:5c:e8:82:02:a0: 6e:78:5f:3c:1e:07:85:01:53:dd:93:1c:52:24:06:0a:af:85: 11:e3:26:62:eb:34:92:e3:7b:ca:e0:2a:d9:fd:ab:c5:4e:53: 77:be:27:c7:d6:6c:41:6b:b1:d7:0f:b0:6c:01:10:8a:cd:1c: aa:e0:27:cf:b9:18:3c:8d:69:c0:f5:18:03:fd:c4:9b:16:2e: 7b:73:9a:23:9c:34:86:4d:91:bc:d8:f6:40:8d:8e:4d:a9:c5: 51:37:13:15:8d:83:f8:59:2d:c8:ed:eb:cb:d6:19:a0:c0:4a: c0:30:fd:8b:c1:c3:23:ba:62:ac:ce:10:b5:9c:a6:cd:79:a6: f1:84:7e:bf:4d:8c:8e:d2:61:c3:86:3d:75:82:af:9a:3b:5e: d7:da:e5:f4:b1:f2:6e:32:f6:77:0f:25:a6:b6:84:e6:c5:1f: e2:27:78:a4:51:f0:d5:10:12:7b:46:33:1e:a2:02:d6:6b:2e: d4:fb:43:3f:b7:b4:0d:79:3d:99:db:9d:38:8f:d9:0d:f1:63: 6a:7e:fc:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1NTQxMTAvBgNVBAUTKDFCOTFENTE2MEY3RDU2QjcwNUE4NTE2QzZBMUNGNDJG NDk2N0VGNTYwHhcNMjQwNTMwMjIwNDQzWhcNMjQwNjA2MjIwNDQzWjAYMRYwFAYD VQQDEw02NjU4ZjdmYy1mZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSodOWTdHx7rQtSENZ5MNzHBoL1Il2thour3Z8XT5FktZcLG44McUHnECoCr stMWqAFPqdJfTuL7qc6hI22K5mfwE+2j9NF5g4pdN/9a5kV4+fb/49oeXwv0Bh27 FwIrPdrnqJt583+XGFJc2nsa3SkYZBkFz9f6Rcc1MfyMMyuyg4VxcMAIN5kZoXGn PGCDqxJBYKVE0GQeTJDosG+QKRm74C1jsIA3TJ3Sp8L06WjaLffJhvEkkU014Et4 DZYS4Cei/CQDAID01v5sDrNxU4t3IE0eYG3zoJpEGum57W5RvUz6qE7Mg1zfabkE cHcFICZ/dBrnFfMU0OCVa6ojtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMD3W04J BOWeBybKxTKo9jy5YYGbMB8GA1UdIwQYMBaAFBuR1RYPfVa3BahRbGoc9C9JZ+9W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjU1NC9FQjFDQkJFMjlF NUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZyY0ZxRkZzYWh6MEwwbG43 MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c1SFZGZzk5VnJjRnFGRnNhaHowTDBsbjcxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjU1NC9FQjFDQkJFMjlFNUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZy Y0ZxRkZzYWh6MEwwbG43MVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUW/KzbLHRmxiPGprSrDHH1fxT0A/2IEREUh/H9c3ZUOl0sfQTBsN4 CQE2KC/HZqiKXOiCAqBueF88HgeFAVPdkxxSJAYKr4UR4yZi6zSS43vK4CrZ/avF TlN3vifH1mxBa7HXD7BsARCKzRyq4CfPuRg8jWnA9RgD/cSbFi57c5ojnDSGTZG8 2PZAjY5NqcVRNxMVjYP4WS3I7evL1hmgwErAMP2LwcMjumKszhC1nKbNeabxhH6/ TYyO0mHDhj11gq+aO17X2uX0sfJuMvZ3DyWmtoTmxR/iJ3ikUfDVEBJ7RjMeogLW ay7U+0M/t7QNeT2Z2504j9kN8WNqfvye -----END CERTIFICATE-----Generated at Thu May 30 23:29:15 2024 by rpki-client on console-ams.rpki-client.org