$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: CK6JJmpVz29FuUw4zJVozG2/HMbUbBEdkMFdrmEcMg4= Subject key identifier: 1C:D6:C4:ED:B9:4C:CC:E2:C7:A7:94:90:CA:02:4E:96:FB:26:CD:FA Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 7C Signing time: Sun 19 May 2024 07:14:45 +0000 Manifest this update: Sun 19 May 2024 07:14:45 +0000 Manifest next update: Sun 26 May 2024 07:14:45 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: kmj8eLDqLyz8Dn/e8LgdjrCJInDXnDibHZfZmlv7l9g=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: 9bnPnY7GPoRHrZqv2o6SKPj0iUfl3wk+uZFDvVb/iJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: May 19 07:14:45 2024 GMT Not After : May 26 07:14:45 2024 GMT Subject: CN=6649a6e5-e3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:b5:05:0c:6e:ad:37:96:22:94:bd:ab:db: fd:e6:53:c4:8f:4a:6e:2a:c6:23:a6:75:46:98:3f: 07:de:93:83:4e:e3:98:58:b3:eb:a7:30:7e:72:af: ed:88:b7:cc:f7:be:ab:a1:72:19:56:de:69:b0:82: 23:a5:68:58:e8:3f:aa:91:f4:14:dd:6a:7f:c5:45: 87:92:78:2d:67:72:99:6f:0b:03:93:44:fd:e2:8f: 69:b2:a6:2a:14:cc:2c:d3:83:08:e3:99:a8:32:d5: 95:9d:4b:b4:34:0d:5e:2b:ab:68:dc:f6:50:df:ac: 5c:f3:70:56:88:86:85:f2:ae:db:df:23:72:d6:87: 41:70:de:b3:26:a8:66:f5:a9:d2:75:69:f3:bb:c8: 3a:64:d9:c4:5c:fe:e2:37:40:4e:94:10:29:ed:61: d2:b9:c7:d1:75:7c:11:f0:55:a9:ee:cc:d2:fc:33: a5:2c:b1:6e:d2:94:0c:9c:f1:fa:68:ee:44:03:e2: 44:ef:ca:90:2d:7c:08:64:ed:4e:cf:55:4a:30:04: b9:d0:52:4c:6f:33:d9:9c:8d:9f:92:ea:a8:c0:a2: 0d:d0:79:ce:7d:96:6c:fb:e3:60:28:8e:87:4f:79: d3:00:56:aa:4f:79:18:f6:35:07:be:08:81:ce:0a: b2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D6:C4:ED:B9:4C:CC:E2:C7:A7:94:90:CA:02:4E:96:FB:26:CD:FA X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e6:ff:a2:0e:59:3f:3c:f4:94:fe:f6:36:6d:e2:eb:b4:b7: 0d:76:1d:48:99:8e:38:87:0a:72:72:2f:df:be:a1:7d:04:86: b9:85:c4:2a:16:c5:9d:a2:af:b1:e1:80:8a:62:dc:e1:f5:fe: e5:24:ff:be:8f:b2:5e:92:1e:38:42:ef:28:8b:e5:39:95:7f: 25:af:18:14:f1:87:c1:9e:be:34:76:30:01:6b:a4:de:33:d0: 1c:85:f7:8f:d5:c6:3c:f9:6f:96:3d:13:97:90:3f:ec:b5:0b: a6:a5:11:f3:ab:21:6c:d9:75:49:d5:da:ab:71:20:90:45:14: b7:e8:22:9d:d3:d1:aa:73:c6:0a:69:72:c6:70:cd:f1:ca:b6: 55:b8:97:b8:13:30:cc:18:4b:01:80:32:76:d0:48:84:1d:d9: ba:7b:da:9b:4b:9e:c9:6d:f4:8e:ea:d5:80:f5:e9:33:3d:0f: c1:aa:b7:d7:20:64:46:d0:88:59:a4:8a:ed:ca:9f:0a:c3:a9: f5:87:d1:7e:26:cf:63:ea:63:a3:78:2c:d2:5f:7a:bd:66:84: 75:40:f3:a4:13:fc:65:e5:57:96:1d:38:1e:7c:e8:26:0d:62: 37:bd:23:91:cb:d6:2d:da:64:2a:b4:bb:0e:f8:83:83:d2:cc: 79:b5:b6:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDFDMzExMC8GA1UEBRMoMTg3QTJEMzVCQUY5MDU3QzBGMEI4RDI2MkQyRTVENjIy NkEzMjM4MjAeFw0yNDA1MTkwNzE0NDVaFw0yNDA1MjYwNzE0NDVaMBgxFjAUBgNV BAMTDTY2NDlhNmU1LWUzZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOq7UFDG6tN5YilL2r2/3mU8SPSm4qxiOmdUaYPwfek4NO45hYs+unMH5yr+2I t8z3vquhchlW3mmwgiOlaFjoP6qR9BTdan/FRYeSeC1ncplvCwOTRP3ij2mypioU zCzTgwjjmagy1ZWdS7Q0DV4rq2jc9lDfrFzzcFaIhoXyrtvfI3LWh0Fw3rMmqGb1 qdJ1afO7yDpk2cRc/uI3QE6UECntYdK5x9F1fBHwVanuzNL8M6UssW7SlAyc8fpo 7kQD4kTvypAtfAhk7U7PVUowBLnQUkxvM9mcjZ+S6qjAog3Qec59lmz742AojodP edMAVqpPeRj2NQe+CIHOCrINAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHNbE7blM zOLHp5SQygJOlvsmzfowHwYDVR0jBBgwFoAUGHotNbr5BXwPC40mLS5dYiajI4Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEMUMzL0ZCNzFDNTY2NTZD RjExRUVBOEM1MDQ1NkM0RjlBRTAyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0hvdE5icjVCWHdQQzQwbUxTNWRZaWFqSTRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE MUMzL0ZCNzFDNTY2NTZDRjExRUVBOEM1MDQ1NkM0RjlBRTAyL0dIb3ROYnI1Qlh3 UEM0MG1MUzVkWWlhakk0SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAXm/6IOWT889JT+9jZt4uu0tw12HUiZjjiHCnJyL9++oX0EhrmFxCoW xZ2ir7HhgIpi3OH1/uUk/76Psl6SHjhC7yiL5TmVfyWvGBTxh8GevjR2MAFrpN4z 0ByF94/Vxjz5b5Y9E5eQP+y1C6alEfOrIWzZdUnV2qtxIJBFFLfoIp3T0apzxgpp csZwzfHKtlW4l7gTMMwYSwGAMnbQSIQd2bp72ptLnslt9I7q1YD16TM9D8Gqt9cg ZEbQiFmkiu3KnwrDqfWH0X4mz2PqY6N4LNJfer1mhHVA86QT/GXlV5YdOB586CYN Yje9I5HL1i3aZCq0uw74g4PSzHm1tlU= -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org