$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: HzJiR10rXwodW23pdZnPUzDKCEBOubP8aR98Z/F3sZ0= Subject key identifier: A1:BD:F9:A7:94:91:71:F7:F1:BE:BE:C3:3E:55:C5:35:29:35:FE:C8 Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 0661 Signing time: Fri 31 May 2024 00:03:25 +0000 Manifest this update: Fri 31 May 2024 00:03:24 +0000 Manifest next update: Fri 07 Jun 2024 00:03:24 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: 5Y2iLGptGl5TYDXge8Bwa+vdIH+qVnvGDTO7fCoA44k=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: rpcF4b+qJUHC5lmcRh3xOOCURA4ffTRb8SZCHWobMmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 00:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: May 31 00:03:24 2024 GMT Not After : Jun 7 00:03:24 2024 GMT Subject: CN=665913cc-ae2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:98:02:45:05:6e:81:4b:1b:7c:11:52:de:79: 98:39:bb:8c:a2:81:10:9c:d6:ee:03:ac:c2:e3:24: 6f:a9:b5:70:ad:32:5a:1a:35:af:dc:77:26:79:d9: ea:0d:a5:51:66:ee:d1:09:82:31:31:74:a0:e6:18: de:b7:02:13:6f:7b:65:55:4a:27:68:d2:80:72:f7: 59:c9:25:60:af:38:91:a0:b7:2a:a4:fb:ba:be:a2: 7f:d6:c0:18:8b:a2:9e:db:2e:9b:84:9e:9e:ce:96: f9:de:ec:cb:ea:63:de:24:b6:fc:63:e6:22:be:fe: 1e:a8:ed:f3:6f:80:3c:14:ef:a3:fc:03:a0:91:78: 1a:cc:2b:e0:cb:ff:1b:bd:59:10:49:15:b0:5a:6b: 51:d8:a6:cc:d3:0b:be:3e:47:89:2e:48:35:5b:f1: ff:3e:f1:26:e5:0e:aa:a1:78:ab:81:0a:73:a0:1d: 48:21:13:5e:45:f1:c7:40:68:08:f4:da:12:3f:3e: 7b:db:23:b7:4c:36:98:06:4b:f2:1e:a2:b8:1b:cc: 2c:7f:79:54:d5:48:7d:e5:06:9b:5e:cf:46:fc:93: ca:19:38:e3:90:99:25:da:c2:33:e8:69:30:04:49: c5:e9:1d:5b:57:88:67:ef:98:28:1b:52:a4:6b:fc: 9f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BD:F9:A7:94:91:71:F7:F1:BE:BE:C3:3E:55:C5:35:29:35:FE:C8 X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c9:4c:37:d7:62:1c:99:cf:5b:0a:b3:5c:77:8f:5c:45:5d: b6:29:7d:73:0c:3f:0c:ed:84:4d:ae:2c:bc:e7:2d:de:2e:30: f1:b0:31:1f:f9:e9:a6:5f:8f:e6:40:a3:3f:a4:5f:8b:85:a7: 3b:d0:7d:2c:f5:34:f5:56:19:5e:1a:c5:7f:7e:4c:96:04:1b: 1d:00:69:51:57:c3:3c:85:aa:1e:19:62:fc:78:16:00:50:bf: 9f:98:45:86:b6:2c:36:d0:60:47:e2:4a:b4:f1:be:95:fe:fa: d8:e0:3e:e2:8f:26:5d:db:83:8e:e6:36:15:13:d3:2e:2c:29: 58:14:8e:48:fa:81:23:5f:f7:ee:8c:0c:9a:5a:f0:e6:de:89: de:ce:82:57:cf:57:d6:0c:c9:8a:8e:fe:a6:8e:f8:c4:89:3a: b3:1b:f7:ae:9f:2c:35:8a:91:aa:f6:8f:cc:7b:c5:70:93:39: 85:9f:57:8e:61:76:b3:8d:49:9d:05:c7:38:52:9b:76:46:4b: b7:68:5c:7c:9f:ca:37:32:2c:b1:80:35:8b:ec:0e:0d:3d:d7: 7a:03:7e:da:f5:e4:1d:80:9c:62:02:32:5b:cb:7f:dd:64:bb: a8:c3:1d:8c:df:87:c6:04:dd:75:0b:8f:8d:4d:f0:0f:51:27: 6c:65:d2:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjQwNTMxMDAwMzI0WhcNMjQwNjA3MDAwMzI0WjAYMRYwFAYD VQQDEw02NjU5MTNjYy1hZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65gCRQVugUsbfBFS3nmYObuMooEQnNbuA6zC4yRvqbVwrTJaGjWv3Hcmednq DaVRZu7RCYIxMXSg5hjetwITb3tlVUonaNKAcvdZySVgrziRoLcqpPu6vqJ/1sAY i6Ke2y6bhJ6ezpb53uzL6mPeJLb8Y+Yivv4eqO3zb4A8FO+j/AOgkXgazCvgy/8b vVkQSRWwWmtR2KbM0wu+PkeJLkg1W/H/PvEm5Q6qoXirgQpzoB1IIRNeRfHHQGgI 9NoSPz572yO3TDaYBkvyHqK4G8wsf3lU1Uh95QabXs9G/JPKGTjjkJkl2sIz6Gkw BEnF6R1bV4hn75goG1Kka/yfFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG9+aeU kXH38b6+wz5VxTUpNf7IMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAyUw312Icmc9bCrNcd49cRV22KX1zDD8M7YRNriy85y3eLjDxsDEf +emmX4/mQKM/pF+Lhac70H0s9TT1VhleGsV/fkyWBBsdAGlRV8M8haoeGWL8eBYA UL+fmEWGtiw20GBH4kq08b6V/vrY4D7ijyZd24OO5jYVE9MuLClYFI5I+oEjX/fu jAyaWvDm3onezoJXz1fWDMmKjv6mjvjEiTqzG/eunyw1ipGq9o/Me8VwkzmFn1eO YXazjUmdBcc4Upt2Rku3aFx8n8o3MiyxgDWL7A4NPdd6A37a9eQdgJxiAjJby3/d ZLuowx2M34fGBN11C4+NTfAPUSdsZdJD -----END CERTIFICATE-----Generated at Fri May 31 01:36:45 2024 by rpki-client on console-fra.rpki-client.org