$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: DQUKT6PBHpwpU1tUOFJ4KlP39zcVaHRTerX1QwlNp0c= Subject key identifier: CD:20:E1:48:01:07:C7:D9:29:91:AB:A7:2D:7E:10:A4:5E:55:49:18 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0B8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0B80 Signing time: Tue 30 Apr 2024 19:46:46 +0000 Manifest this update: Tue 30 Apr 2024 19:46:46 +0000 Manifest next update: Tue 07 May 2024 19:46:46 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: X1OkYNWUPGcHog09IApKoxLDtyrnjfJCjUifERZQe+E=) 2: 3D19A90810AD11ED9FFCFC56C4F9AE02.roa (hash: koUJwsthnnv3MW7dV6+ngnbDpqdUelwa7cufCTHjN3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Apr 30 19:46:46 2024 GMT Not After : May 7 19:46:46 2024 GMT Subject: CN=66314aa6-4b3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:18:de:87:45:a3:54:3d:69:df:b9:b4:a3:23: 31:06:be:76:f2:16:2f:6e:65:84:60:5c:78:d8:44: a6:44:c6:b6:44:cf:92:b4:89:9e:d2:f9:4b:5b:b9: fd:bf:84:11:c1:c7:51:7c:01:c5:17:15:c2:87:d6: 78:7a:b9:17:ef:f3:e1:e6:a0:7a:79:18:80:32:48: e5:8f:db:d5:52:2e:02:1d:f0:3b:37:8b:2a:05:0d: 7e:8e:7c:14:33:70:e3:90:b9:bc:02:e4:3b:5f:6a: dd:06:56:79:0a:5d:d9:74:45:b6:b6:86:7d:6f:96: 3c:20:12:06:c1:70:0f:20:80:a0:29:db:98:57:32: c3:77:73:36:4c:72:67:4e:80:45:9e:f1:db:06:61: bd:ad:05:9e:9e:0b:da:c5:0a:c2:61:79:84:a5:fd: 44:3e:25:8f:48:c5:0c:52:ec:de:46:6d:4c:bd:33: 3a:40:99:30:1b:16:95:ba:77:e5:82:44:28:91:2e: fc:b4:99:41:21:29:ae:1d:82:a0:03:25:01:ea:69: 9d:98:a4:98:85:7e:f3:59:cf:f6:77:60:95:3c:dc: bb:6a:98:53:47:5c:73:15:4b:e8:32:13:fc:f6:54: 35:43:fd:99:5e:ce:e3:36:7b:44:e5:2a:81:0c:1d: ca:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:20:E1:48:01:07:C7:D9:29:91:AB:A7:2D:7E:10:A4:5E:55:49:18 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:4a:67:42:f9:67:f8:c2:e1:17:ed:57:d0:91:37:b3:7e:86: e1:2f:af:ed:2d:12:03:c0:a8:b2:26:37:12:55:77:ef:7f:6d: 7e:65:95:c1:0c:8d:f8:a8:80:4f:35:90:65:99:c4:91:69:60: 37:e4:2d:86:f3:27:20:02:47:1b:cd:d4:da:ac:c3:d1:37:0b: 50:a1:b8:98:cc:7a:e4:28:57:5b:fc:e7:9e:58:f1:24:5d:44: ec:2a:e6:14:d2:e2:92:8f:e2:61:04:8e:ee:1b:79:5d:63:a7: c2:4e:fc:b0:c7:62:6b:20:48:34:c3:f8:6c:55:3b:a5:06:66: a3:3f:b9:47:09:ef:90:24:a6:6d:6d:81:f1:2e:48:13:55:f3: 8e:6d:d0:04:52:80:46:9d:09:2e:b6:d3:66:e7:79:5d:3c:42: ff:eb:83:af:34:9c:b4:fd:28:3d:7e:b6:fe:e4:af:9c:1f:fc: 2b:3d:97:38:42:37:dc:21:32:75:47:89:f1:86:9d:0a:95:36: 69:cf:4e:a3:1a:38:62:8a:26:c2:80:df:09:61:0e:e2:bd:20: 0e:32:65:fd:fd:2e:ed:a0:03:0a:b9:2d:3b:74:0d:18:73:02: 44:1b:62:71:a6:87:aa:23:48:69:97:31:f1:1f:6b:1f:97:26: af:4b:21:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjQwNDMwMTk0NjQ2WhcNMjQwNTA3MTk0NjQ2WjAYMRYwFAYD VQQDEw02NjMxNGFhNi00YjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxjeh0WjVD1p37m0oyMxBr528hYvbmWEYFx42ESmRMa2RM+StIme0vlLW7n9 v4QRwcdRfAHFFxXCh9Z4erkX7/Ph5qB6eRiAMkjlj9vVUi4CHfA7N4sqBQ1+jnwU M3DjkLm8AuQ7X2rdBlZ5Cl3ZdEW2toZ9b5Y8IBIGwXAPIICgKduYVzLDd3M2THJn ToBFnvHbBmG9rQWengvaxQrCYXmEpf1EPiWPSMUMUuzeRm1MvTM6QJkwGxaVunfl gkQokS78tJlBISmuHYKgAyUB6mmdmKSYhX7zWc/2d2CVPNy7aphTR1xzFUvoMhP8 9lQ1Q/2ZXs7jNntE5SqBDB3KjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0g4UgB B8fZKZGrpy1+EKReVUkYMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBSmdC+Wf4wuEX7VfQkTezfobhL6/tLRIDwKiyJjcSVXfvf21+ZZXB DI34qIBPNZBlmcSRaWA35C2G8ycgAkcbzdTarMPRNwtQobiYzHrkKFdb/OeeWPEk XUTsKuYU0uKSj+JhBI7uG3ldY6fCTvywx2JrIEg0w/hsVTulBmajP7lHCe+QJKZt bYHxLkgTVfOObdAEUoBGnQkuttNm53ldPEL/64OvNJy0/Sg9frb+5K+cH/wrPZc4 QjfcITJ1R4nxhp0KlTZpz06jGjhiiibCgN8JYQ7ivSAOMmX9/S7toAMKuS07dA0Y cwJEG2JxpoeqI0hplzHxH2sflyavSyG5 -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:50 2024 by rpki-client on console-ams.rpki-client.org