$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft File: gja7zXAtSCL93VuwVmDPEDjsjH4.mft (raw, json) Hash identifier: 2+kujBfswc7ensNcjVCis01cLE4AHH1INpZxAlzNPr4= Subject key identifier: 8A:4B:5E:1B:AC:EF:5B:0F:BE:E9:29:0F:0C:80:05:81:B6:18:4B:79 Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 0768 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft Manifest number: 0763 Signing time: Sat 04 May 2024 22:27:28 +0000 Manifest this update: Sat 04 May 2024 22:27:27 +0000 Manifest next update: Sat 11 May 2024 22:27:27 +0000 Files and hashes: 1: gja7zXAtSCL93VuwVmDPEDjsjH4.crl (hash: bd3odZoGWMtgEie6VAOMW1i3ZuTGPs5g1SdnlsPAVVI=) 2: 63B7CB76D0E511EA9916E053C4F9AE02.roa (hash: IA8RKSjSMHtlCg0VWWLv9mcy72TVUgTJoTJ/w4ZseJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1896 (0x768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: May 4 22:27:27 2024 GMT Not After : May 11 22:27:27 2024 GMT Subject: CN=6636b64f-f1d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:80:38:5b:00:84:00:e1:e1:ab:76:6b:a3:9f: ca:ef:2d:d2:73:15:c4:f0:7f:b7:6a:2a:72:8f:2b: ce:0d:42:ed:d7:9d:ca:a6:35:e4:77:7a:09:b7:8d: 59:14:40:a7:8e:89:ad:6f:df:d0:5a:cb:30:b1:07: 38:85:37:fb:ad:96:fc:c2:f1:68:d6:f2:ed:79:be: 1b:a7:a6:f4:79:52:b6:de:cc:1d:21:ff:cf:e5:10: c1:52:92:55:e1:73:d3:a9:ec:d3:88:c4:52:de:8e: d0:df:07:c7:ac:87:48:1c:43:2a:e2:f5:ca:3e:dd: d4:e5:71:0f:19:73:f0:c8:ea:02:0b:a1:b4:52:77: 38:69:d8:50:97:3d:73:85:74:25:6a:51:f5:a8:a9: b3:d9:21:28:cf:4f:c2:a6:1c:10:7c:7e:0c:2a:05: 83:be:d4:f1:46:cd:bb:70:ff:69:7e:3a:47:c0:a9: ed:1e:79:d5:01:e7:5a:e2:ce:45:57:2c:1b:ce:60: 37:d4:09:74:60:d3:c2:71:62:9a:1f:5e:b0:c1:0c: fe:64:26:78:54:ba:ac:08:c4:9a:5d:4e:cd:d3:2d: b1:84:b9:5a:fc:9a:3b:40:1b:06:e5:b2:27:d5:0f: 97:6e:90:d1:11:ea:9e:cb:fa:6c:b0:e5:eb:1b:f3: 55:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4B:5E:1B:AC:EF:5B:0F:BE:E9:29:0F:0C:80:05:81:B6:18:4B:79 X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:20:f5:95:ee:1d:64:28:0a:fa:0d:01:71:c3:21:41:0a:b9: c4:81:54:37:1b:18:b6:e9:78:2e:d0:21:4b:6d:fc:4d:ad:04: 71:72:ac:94:79:a1:1c:d6:ab:56:80:04:69:d6:fb:a0:ac:2f: f7:14:1a:40:5c:38:1b:5f:20:16:98:54:fb:a8:68:69:1d:b7: 48:b3:b7:8f:03:ac:3f:12:55:ed:27:56:96:ce:92:75:b0:6c: d6:08:2e:a8:09:6d:93:34:f8:9f:f6:7c:65:f8:ce:87:2a:42: 85:15:74:2b:d4:90:00:44:ea:5e:be:a5:6d:1d:92:5c:69:93: 86:e3:92:df:f1:bc:2c:8f:38:af:e7:6f:16:b6:74:cb:54:60: 99:f2:37:f6:67:e6:d7:2e:b2:0c:9e:34:d9:ba:7b:8f:21:ee: 6a:d1:4e:34:a2:39:3b:8c:64:86:ff:ba:6c:47:56:5e:2f:5e: a1:37:02:5c:a6:f3:29:cf:78:91:31:55:ac:87:4a:32:61:c3: 58:9a:e7:7b:1b:05:be:41:3b:f8:d2:ad:59:d7:90:e9:1a:73: 94:e8:3e:72:d4:fc:c2:ba:77:49:fd:00:b1:8e:00:88:9a:5e: a0:b6:83:91:01:90:03:e0:89:64:79:ad:ce:d5:0c:55:d8:a9: 43:c4:d7:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjQwNTA0MjIyNzI3WhcNMjQwNTExMjIyNzI3WjAYMRYwFAYD VQQDEw02NjM2YjY0Zi1mMWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlYA4WwCEAOHhq3Zro5/K7y3ScxXE8H+3aipyjyvODULt153KpjXkd3oJt41Z FECnjomtb9/QWsswsQc4hTf7rZb8wvFo1vLteb4bp6b0eVK23swdIf/P5RDBUpJV 4XPTqezTiMRS3o7Q3wfHrIdIHEMq4vXKPt3U5XEPGXPwyOoCC6G0Unc4adhQlz1z hXQlalH1qKmz2SEoz0/CphwQfH4MKgWDvtTxRs27cP9pfjpHwKntHnnVAeda4s5F VywbzmA31Al0YNPCcWKaH16wwQz+ZCZ4VLqsCMSaXU7N0y2xhLla/Jo7QBsG5bIn 1Q+XbpDREeqey/pssOXrG/NVywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpLXhus 71sPvukpDwyABYG2GEt5MB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0Qi8yNEE2OEU5Q0QwRTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFND TDkzVnV3Vm1EUEVEanNqSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbIPWV7h1kKAr6DQFxwyFBCrnEgVQ3Gxi26Xgu0CFLbfxNrQRxcqyU eaEc1qtWgARp1vugrC/3FBpAXDgbXyAWmFT7qGhpHbdIs7ePA6w/ElXtJ1aWzpJ1 sGzWCC6oCW2TNPif9nxl+M6HKkKFFXQr1JAAROpevqVtHZJcaZOG45Lf8bwsjziv 528WtnTLVGCZ8jf2Z+bXLrIMnjTZunuPIe5q0U40ojk7jGSG/7psR1ZeL16hNwJc pvMpz3iRMVWsh0oyYcNYmud7GwW+QTv40q1Z15DpGnOU6D5y1PzCundJ/QCxjgCI ml6gtoORAZAD4Ilkea3O1QxV2KlDxNdC -----END CERTIFICATE-----Generated at Sun May 5 00:12:20 2024 by rpki-client on console-fra.rpki-client.org