$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: n3o8bIX1dPpgyL0/EqiAPmHRNhFJJPTYA7y5FUc99eA= Subject key identifier: 52:D7:3C:BE:2E:43:A9:FF:B2:BB:C3:A9:BE:24:36:0B:FA:63:D9:BD Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: B1 Signing time: Sun 19 May 2024 06:33:27 +0000 Manifest this update: Sun 19 May 2024 06:33:26 +0000 Manifest next update: Sun 26 May 2024 06:33:25 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: wdpKQcZp6orod1NH3PfSCUdS0scdc3/cr3A5bQbv3bU=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: 0YyUbP/GJ+UuQCl7qEg3Lew5r+V1ykLIOBRod/oh4qQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: May 19 06:33:26 2024 GMT Not After : May 26 06:33:25 2024 GMT Subject: CN=66499d36-d627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d9:d0:e1:5a:37:24:4a:ca:50:e8:f3:86:34: 26:57:17:c8:b2:07:7b:69:0b:cd:0d:4f:b7:c3:d1: ad:d4:49:68:1f:94:33:be:b0:f5:60:16:ea:8b:2a: 26:a6:51:27:56:7b:ad:23:a3:1b:5c:ae:f9:92:e1: 31:0c:77:cf:f0:90:fb:45:26:9f:73:08:35:60:c6: a2:af:b4:44:59:2c:2e:7e:f6:b7:3b:5e:0f:e6:6c: 52:55:fa:f5:63:f3:ba:c4:a1:e4:e1:2b:91:c9:b7: d3:43:ce:33:bc:56:11:54:0c:23:04:17:0c:5f:4c: cb:f1:ad:e2:07:d5:51:5a:fa:7a:06:18:5b:2b:b2: 19:3d:7a:55:fb:93:80:07:6b:af:9e:7e:20:e2:f4: 90:51:fe:56:c1:ac:a0:14:82:90:5a:ba:28:ad:8d: 2d:ef:b4:31:3b:9e:93:c7:de:50:02:44:bd:29:fb: 39:14:22:b5:3d:97:89:09:17:ff:e8:06:40:bd:b0: 43:38:7d:ce:93:68:67:eb:76:a2:d3:e0:f4:aa:c0: d6:04:69:e9:73:61:2a:f7:0b:33:cc:5d:b6:3d:2b: 95:ff:de:b6:3d:2a:3e:2e:9b:a3:83:12:e9:98:b3: 0a:88:78:39:31:76:65:73:43:b2:aa:c1:cd:c8:cd: 40:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D7:3C:BE:2E:43:A9:FF:B2:BB:C3:A9:BE:24:36:0B:FA:63:D9:BD X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:7d:0f:6e:cc:ed:e0:7f:14:7c:a1:0e:6c:ba:f9:7e:cf:fb: 5b:ba:67:dd:aa:5f:19:40:24:2f:72:f8:34:7d:96:29:e5:a9: 73:b3:56:43:7b:79:5d:98:01:0d:31:54:6e:40:9a:41:df:96: 8a:fe:eb:d6:e4:08:74:5e:f5:d1:e4:e2:47:ce:6e:4e:01:e2: 28:59:fa:17:b3:02:02:6e:bc:f3:c9:2f:1e:16:db:2f:92:b8: f5:77:60:e2:35:0c:94:db:da:24:33:f0:82:72:8d:8d:69:3e: 91:d8:c9:fa:f6:45:26:7b:5e:11:03:89:0c:75:e3:92:50:90: 11:67:2f:bb:b3:76:bf:e6:53:33:77:a0:74:5b:0c:0b:da:6f: aa:ed:5b:6e:2a:65:f6:f0:9e:f0:7a:0f:12:56:67:99:31:5e: 59:cb:e0:2e:ab:e9:58:e8:35:51:40:1d:af:88:31:88:e5:e5: e6:fc:35:ca:f8:80:e9:74:46:05:3a:1f:0a:37:19:42:cb:ea: 44:bb:ef:42:ea:1b:db:1a:87:f8:6e:04:52:77:86:cd:18:d2: b6:c5:d7:21:9f:ff:fb:b8:ca:39:12:c3:a0:35:e6:03:f1:6d: fa:59:8c:9e:53:e9:27:c8:08:d7:b7:46:a8:68:94:7d:9b:af: 5a:1e:15:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjQwNTE5MDYzMzI2WhcNMjQwNTI2MDYzMzI1WjAYMRYwFAYD VQQDEw02NjQ5OWQzNi1kNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dnQ4Vo3JErKUOjzhjQmVxfIsgd7aQvNDU+3w9Gt1EloH5QzvrD1YBbqiyom plEnVnutI6MbXK75kuExDHfP8JD7RSafcwg1YMair7REWSwufva3O14P5mxSVfr1 Y/O6xKHk4SuRybfTQ84zvFYRVAwjBBcMX0zL8a3iB9VRWvp6BhhbK7IZPXpV+5OA B2uvnn4g4vSQUf5WwaygFIKQWroorY0t77QxO56Tx95QAkS9Kfs5FCK1PZeJCRf/ 6AZAvbBDOH3Ok2hn63ai0+D0qsDWBGnpc2Eq9wszzF22PSuV/962PSo+LpujgxLp mLMKiHg5MXZlc0OyqsHNyM1AYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLXPL4u Q6n/srvDqb4kNgv6Y9m9MB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLfQ9uzO3gfxR8oQ5suvl+z/tbumfdql8ZQCQvcvg0fZYp5alzs1ZD e3ldmAENMVRuQJpB35aK/uvW5Ah0XvXR5OJHzm5OAeIoWfoXswICbrzzyS8eFtsv krj1d2DiNQyU29okM/CCco2NaT6R2Mn69kUme14RA4kMdeOSUJARZy+7s3a/5lMz d6B0WwwL2m+q7VtuKmX28J7weg8SVmeZMV5Zy+Auq+lY6DVRQB2viDGI5eXm/DXK +IDpdEYFOh8KNxlCy+pEu+9C6hvbGof4bgRSd4bNGNK2xdchn//7uMo5EsOgNeYD 8W36WYyeU+knyAjXt0aoaJR9m69aHhV0 -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org