$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: a58euYlzzNZLlX8TfZlvKqYx4hz7NGnpOvXLUc+FNiE= Subject key identifier: 61:0B:3B:31:54:28:38:82:93:3B:37:8B:79:A4:AE:58:5A:B1:32:65 Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 260A Signing time: Sat 18 May 2024 16:20:26 +0000 Manifest this update: Sat 18 May 2024 16:20:26 +0000 Manifest next update: Sat 25 May 2024 16:20:26 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: 3L0IxijwO93M/7KZqq8peb1H2u1IIopBrFHktsJJcYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: May 18 16:20:26 2024 GMT Not After : May 25 16:20:26 2024 GMT Subject: CN=6648d54a-ef97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:1f:37:9a:23:8d:97:d7:ce:e5:3b:38:2b:a7: 91:f9:71:ca:0f:b5:a1:dd:73:62:e4:ab:a5:a6:b8: 64:50:73:ba:dc:57:93:83:af:7b:85:2a:81:c5:3c: e7:5a:2a:9c:30:25:14:36:ab:52:b6:83:2a:5b:c5: bf:1e:5d:b3:2e:59:31:e0:a4:21:68:e7:60:9c:7f: 02:fb:ba:27:75:fb:0f:05:bb:a3:75:4d:f3:d7:3b: 1c:cd:ce:bc:c3:68:28:95:ff:1d:5b:e3:80:03:05: f7:08:5f:ba:ac:8c:1b:0e:2f:28:f0:6b:6f:5a:59: 22:2c:6e:96:76:f5:99:95:27:0c:f5:2c:20:1a:7a: a6:88:9b:de:70:c0:59:5a:0d:19:3d:34:ff:18:71: 11:db:2f:4d:e0:bb:02:9d:f2:82:93:41:1c:7e:00: a1:12:0a:0a:a3:82:f4:e6:7f:20:1c:d3:81:ee:f4: 3a:35:2b:78:58:5b:a0:9b:c9:61:5a:47:bc:08:82: 40:97:34:99:bd:c4:86:b5:a6:52:ca:aa:ae:2f:17: cd:c7:59:87:f8:89:20:86:23:d6:66:7a:fc:9a:b2: 4f:c2:35:d6:25:0f:a0:78:06:5e:52:3e:e3:c7:88: 3e:99:0c:7c:cf:c1:7f:fc:04:72:36:9e:b4:c0:60: a6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0B:3B:31:54:28:38:82:93:3B:37:8B:79:A4:AE:58:5A:B1:32:65 X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ff:3e:d1:1a:87:89:18:95:1c:a0:49:6d:e7:8f:88:28:a5: 68:7c:7a:75:f7:58:d5:48:b3:13:5f:eb:dc:15:2c:1f:d4:fc: 8b:c2:0d:13:6d:e3:33:80:d8:8f:5f:1c:09:5c:e7:f7:d1:7c: 45:20:1c:85:04:ac:e9:c8:9d:d6:22:cf:f7:cb:23:6c:52:01: f6:2d:01:53:ca:19:59:06:3c:74:6f:b3:cb:32:b7:f8:20:5f: 72:c8:2b:33:cf:56:b2:ca:19:82:75:7b:d7:9e:ef:91:39:36: 38:15:52:ae:56:87:3b:b2:1f:02:b5:55:7e:22:14:86:3e:7b: 22:91:de:a4:29:0c:af:56:1e:39:68:53:1b:f2:41:c3:93:c0: 75:9b:63:5c:57:11:e7:af:c3:5f:d4:a8:2d:7c:c3:8f:15:7a: 3b:33:96:04:2e:03:12:a2:ef:7e:a5:fc:dd:dd:3c:f3:5f:4a: 9d:c4:e1:e4:b0:24:7f:c6:d7:3e:66:94:c9:80:f9:e4:71:59: df:54:16:a3:be:56:c6:d6:f4:42:9e:3c:75:2f:d9:0e:fd:00: a9:1c:11:5c:c5:b6:7f:d9:15:02:be:37:00:9e:53:49:06:8c: ea:71:8c:21:0a:6b:56:e8:c4:ec:04:19:31:18:ce:85:c5:63: b6:28:9a:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjQwNTE4MTYyMDI2WhcNMjQwNTI1MTYyMDI2WjAYMRYwFAYD VQQDEw02NjQ4ZDU0YS1lZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlx83miONl9fO5Ts4K6eR+XHKD7Wh3XNi5KulprhkUHO63FeTg697hSqBxTzn WiqcMCUUNqtStoMqW8W/Hl2zLlkx4KQhaOdgnH8C+7ondfsPBbujdU3z1zsczc68 w2golf8dW+OAAwX3CF+6rIwbDi8o8GtvWlkiLG6WdvWZlScM9SwgGnqmiJvecMBZ Wg0ZPTT/GHER2y9N4LsCnfKCk0EcfgChEgoKo4L05n8gHNOB7vQ6NSt4WFugm8lh Wke8CIJAlzSZvcSGtaZSyqquLxfNx1mH+IkghiPWZnr8mrJPwjXWJQ+geAZeUj7j x4g+mQx8z8F//ARyNp60wGCm5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGELOzFU KDiCkzs3i3mkrlhasTJlMB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf/z7RGoeJGJUcoElt54+IKKVofHp191jVSLMTX+vcFSwf1PyLwg0T beMzgNiPXxwJXOf30XxFIByFBKzpyJ3WIs/3yyNsUgH2LQFTyhlZBjx0b7PLMrf4 IF9yyCszz1ayyhmCdXvXnu+ROTY4FVKuVoc7sh8CtVV+IhSGPnsikd6kKQyvVh45 aFMb8kHDk8B1m2NcVxHnr8Nf1KgtfMOPFXo7M5YELgMSou9+pfzd3TzzX0qdxOHk sCR/xtc+ZpTJgPnkcVnfVBajvlbG1vRCnjx1L9kO/QCpHBFcxbZ/2RUCvjcAnlNJ BozqcYwhCmtW6MTsBBkxGM6FxWO2KJp9 -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org