$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft File: 1p-GUNl6UkwplFPMtI13tOZf3yI.mft (raw, json) Hash identifier: iTzg4K5NkCBQs4pBZAQJivzj7rdMnxWSn6Feg5OM9j4= Subject key identifier: 65:DC:AD:81:A4:6A:EA:FF:AA:33:06:59:AC:07:C5:C3:0F:0D:AC:74 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft Manifest number: 53 Signing time: Fri 31 May 2024 08:49:37 +0000 Manifest this update: Fri 31 May 2024 08:49:37 +0000 Manifest next update: Fri 07 Jun 2024 08:49:37 +0000 Files and hashes: 1: 1p-GUNl6UkwplFPMtI13tOZf3yI.crl (hash: a0dRD69qcLejrjVMQBYkS0UHElBtCYJaQKMEWfOqZa0=) 2: D1054582A0C111EEA54E2F0BC4F9AE02.roa (hash: ufLJRRdUpzCQBelxO6pq55mnDbpwZDlR7ckrZNKver4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Validity Not Before: May 31 08:49:37 2024 GMT Not After : Jun 7 08:49:37 2024 GMT Subject: CN=66598f21-3fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:3b:bd:c1:fd:d7:e2:50:25:c6:22:37:e2: 86:f0:64:7a:86:88:89:0d:61:91:55:09:e2:97:dc: bd:5f:26:23:27:25:fd:49:5c:ed:d2:a9:ed:a4:d7: 63:cc:05:9e:60:71:4d:4e:4b:41:49:11:41:19:fe: 8f:cf:69:da:8b:36:df:49:ad:34:e7:63:10:c2:e3: 15:66:0c:27:bf:ed:7b:e1:64:9a:52:dd:96:4f:40: b2:b8:af:55:b3:1e:d1:01:91:c1:e9:3b:ee:a8:59: fe:52:5e:77:dc:13:60:29:96:46:50:d0:15:70:d1: 97:31:84:18:bf:71:fc:4c:a8:7b:42:95:3d:0c:1b: 82:e9:a9:6d:8f:26:f9:10:27:ff:d6:71:35:1d:14: 6e:17:c1:66:07:63:d4:2c:34:b4:7e:03:b8:38:fc: 0d:8e:f5:0a:36:34:8d:fa:dd:51:0e:ce:58:7e:ec: 9a:8a:8b:e3:f7:36:50:da:d1:c4:0f:64:10:3a:e4: 3c:e6:bc:d0:27:15:30:50:21:f6:df:c7:ff:30:e4: b8:5f:6d:d4:f4:dc:a0:ec:2b:5a:f6:bf:d8:05:c5: 92:cd:37:37:79:cb:e3:7e:f1:eb:c0:6b:7b:2e:24: 12:13:0c:17:c1:d8:f0:ff:25:11:ee:c0:c8:21:95: 9b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DC:AD:81:A4:6A:EA:FF:AA:33:06:59:AC:07:C5:C3:0F:0D:AC:74 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:7f:2d:a6:cf:72:c2:e2:a0:dd:c5:ba:fb:d4:c6:49:8c:d4: bd:41:99:9e:e4:1a:f6:c9:2f:fb:3a:bc:4e:ae:be:4b:11:94: 99:e2:bb:84:01:84:d2:34:6c:a7:3e:18:39:a3:dd:bc:6d:8b: 62:12:e2:9d:1f:c6:67:03:29:9c:67:80:7b:83:27:46:10:ff: 66:f9:08:da:b8:b5:e0:a8:d3:88:08:ce:3b:3e:ee:67:d4:6b: 29:1a:6b:48:27:b8:e2:7d:64:96:a5:b5:c7:0a:c6:93:d6:ee: 9e:69:a0:f6:39:69:52:72:91:26:ea:a3:0b:a3:55:37:29:42: eb:e6:f9:2f:ab:33:44:5d:ce:8d:05:65:78:73:f9:79:b0:80: fd:8e:ae:48:1e:f9:bd:09:28:e8:c2:7d:e8:63:99:58:8f:df: 1c:b7:6f:3f:63:2c:ce:0d:84:58:eb:f4:33:40:8b:e4:8c:e1: 4a:bc:a5:ee:39:c6:0f:9b:4d:d9:56:27:cd:98:62:d2:30:f7: 6b:39:bd:f4:51:5d:f1:fa:2d:f6:0e:02:a7:09:0d:14:f6:6f: b4:16:71:a4:17:83:f7:ca:ad:e3:40:24:3e:8a:2a:1b:41:b5: 16:0d:a4:3a:5a:37:fb:2f:c3:23:f1:79:73:c4:5c:3c:ff:e5: 5d:01:f4:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDY5NTExMC8GA1UEBRMoRDY5Rjg2NTBEOTdBNTI0QzI5OTQ1M0NDQjQ4RDc3QjRF NjVGREYyMjAeFw0yNDA1MzEwODQ5MzdaFw0yNDA2MDcwODQ5MzdaMBgxFjAUBgNV BAMTDTY2NTk4ZjIxLTNmYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwBzu9wf3X4lAlxiI34obwZHqGiIkNYZFVCeKX3L1fJiMnJf1JXO3Sqe2k12PM BZ5gcU1OS0FJEUEZ/o/PadqLNt9JrTTnYxDC4xVmDCe/7XvhZJpS3ZZPQLK4r1Wz HtEBkcHpO+6oWf5SXnfcE2AplkZQ0BVw0ZcxhBi/cfxMqHtClT0MG4LpqW2PJvkQ J//WcTUdFG4XwWYHY9QsNLR+A7g4/A2O9Qo2NI363VEOzlh+7JqKi+P3NlDa0cQP ZBA65DzmvNAnFTBQIfbfx/8w5LhfbdT03KDsK1r2v9gFxZLNNzd5y+N+8evAa3su JBITDBfB2PD/JRHuwMghlZsnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZdytgaRq 6v+qMwZZrAfFww8NrHQwHwYDVR0jBBgwFoAU1p+GUNl6UkwplFPMtI13tOZf3yIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNjk1LzdDNjc4MTQ4QTBD MTExRUVCMjIzMjk0QUM0RjlBRTAyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXAtR1VObDZVa3dwbEZQTXRJMTN0T1pmM3lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw Njk1LzdDNjc4MTQ4QTBDMTExRUVCMjIzMjk0QUM0RjlBRTAyLzFwLUdVTmw2VWt3 cGxGUE10STEzdE9aZjN5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALZ/LabPcsLioN3FuvvUxkmM1L1BmZ7kGvbJL/s6vE6uvksRlJniu4QB hNI0bKc+GDmj3bxti2IS4p0fxmcDKZxngHuDJ0YQ/2b5CNq4teCo04gIzjs+7mfU aykaa0gnuOJ9ZJaltccKxpPW7p5poPY5aVJykSbqowujVTcpQuvm+S+rM0Rdzo0F ZXhz+XmwgP2Orkge+b0JKOjCfehjmViP3xy3bz9jLM4NhFjr9DNAi+SM4Uq8pe45 xg+bTdlWJ82YYtIw92s5vfRRXfH6LfYOAqcJDRT2b7QWcaQXg/fKreNAJD6KKhtB tRYNpDpaN/svwyPxeXPEXDz/5V0B9B4= -----END CERTIFICATE-----Generated at Fri May 31 10:42:52 2024 by rpki-client on console-fra.rpki-client.org