$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: 61h22EUyra8+4E5+XUDacpWHXL733hYmeyfo0ezpkMg= Subject key identifier: 89:6A:69:3A:0A:6E:A5:E8:84:0C:0D:BE:CB:CC:A1:55:C4:51:8D:28 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 02C2 Signing time: Wed 01 May 2024 03:49:36 +0000 Manifest this update: Wed 01 May 2024 03:49:35 +0000 Manifest next update: Wed 08 May 2024 03:49:35 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: Zwd33QjxhP5aUNp/AG6rmINlb7Qg59LgRQ1AD3LpLJ4=) 2: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: 066MiC7m2yWcRm0snJWwWTgqv84DeerHg51vseK6fxg=) 3: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: hKelCQKTkm1p+eKNBmnMODuFaGiG9imTLxYzwJCOCio=) 4: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: BaABEEJUMzOwQ3XJ4WXo+v7cM/zbzd2LSNgZ3M14nRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: May 1 03:49:35 2024 GMT Not After : May 8 03:49:35 2024 GMT Subject: CN=6631bbd0-b14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:8d:4a:05:a4:9b:5d:20:13:c8:84:c3:9e: 00:9c:ca:7c:63:20:80:6d:94:b1:de:90:23:3f:a4: 39:5b:aa:30:33:31:5f:92:4f:8f:3f:c0:20:eb:d6: 57:dc:4f:52:8e:1d:1f:6b:aa:be:90:aa:60:65:57: b5:1a:1d:a8:5c:68:01:99:e0:48:54:1b:ba:8a:9d: e6:7f:9c:ad:0f:3c:5c:7c:cf:49:89:fa:23:1d:4e: cc:62:07:70:4f:c0:f6:97:1a:7c:58:7a:f3:85:fa: f5:e5:1a:4e:04:8b:bd:e9:ef:c1:e1:f2:77:f4:6c: d6:c5:23:d4:59:1c:3c:0c:00:96:7e:ee:3e:94:51: ba:d5:1a:0a:71:29:c1:78:0c:98:80:25:cc:8e:23: c0:89:1a:f7:2e:37:9e:d2:5c:03:db:43:66:1c:df: c5:90:da:dc:cc:98:77:da:5a:8c:ef:d6:24:8e:56: de:d3:c8:04:0e:25:db:39:42:33:4a:38:35:60:2e: 23:16:7d:94:e0:ca:8f:77:09:96:eb:da:cd:89:79: f2:78:f6:28:54:e5:6a:1a:d7:6e:95:e7:28:3a:02: cf:62:d0:15:03:1a:9a:c3:e7:0b:b5:97:23:71:40: f1:f3:7e:3b:a3:26:58:93:37:1a:fe:2b:ca:97:00: 18:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6A:69:3A:0A:6E:A5:E8:84:0C:0D:BE:CB:CC:A1:55:C4:51:8D:28 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:25:6f:be:e6:27:ed:0a:41:d8:f7:19:1f:ce:63:22:5e:02: 63:27:41:ef:46:21:7e:06:41:0c:d0:f0:e9:e7:19:ad:47:ee: 90:9e:3e:0f:8f:47:e5:2d:0c:ec:5a:44:68:39:c7:7d:29:6f: d9:c2:ec:e8:2f:a0:4f:95:c9:00:87:c6:66:6c:c3:98:93:85: f3:a0:cf:be:7e:a4:3a:4a:31:bf:4e:30:d0:53:49:28:9c:e2: 31:47:99:59:33:14:b7:10:38:36:d7:3d:9d:23:00:45:4c:c9: 22:76:36:66:64:66:ad:b3:a9:21:b5:6a:09:40:aa:b7:a4:33: ae:35:5c:1c:81:42:de:24:fa:27:22:1f:3d:1c:ee:53:c2:8a: 8d:aa:fd:0e:81:bc:55:71:6d:c4:27:86:86:db:9b:4a:3d:39: 83:08:37:b6:79:43:69:9b:dc:e6:85:ae:90:9b:51:47:93:b7: 2e:47:3f:eb:20:33:0d:5f:63:62:4e:9b:4c:1e:84:78:a6:13: 3f:19:92:1a:b1:d2:a5:18:40:f3:2d:1c:32:59:3c:da:94:be: 28:ad:92:72:8b:bf:f0:9e:ad:8c:13:56:7a:04:dc:76:6e:20: d6:1a:20:f2:7f:08:ad:f7:1c:28:a1:59:f4:db:3c:c7:3c:e2: 49:dd:2c:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjQwNTAxMDM0OTM1WhcNMjQwNTA4MDM0OTM1WjAYMRYwFAYD VQQDEw02NjMxYmJkMC1iMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26GNSgWkm10gE8iEw54AnMp8YyCAbZSx3pAjP6Q5W6owMzFfkk+PP8Ag69ZX 3E9Sjh0fa6q+kKpgZVe1Gh2oXGgBmeBIVBu6ip3mf5ytDzxcfM9JifojHU7MYgdw T8D2lxp8WHrzhfr15RpOBIu96e/B4fJ39GzWxSPUWRw8DACWfu4+lFG61RoKcSnB eAyYgCXMjiPAiRr3Ljee0lwD20NmHN/FkNrczJh32lqM79Ykjlbe08gEDiXbOUIz Sjg1YC4jFn2U4MqPdwmW69rNiXnyePYoVOVqGtdulecoOgLPYtAVAxqaw+cLtZcj cUDx8347oyZYkzca/ivKlwAYowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlqaToK bqXohAwNvsvMoVXEUY0oMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMJW++5iftCkHY9xkfzmMiXgJjJ0HvRiF+BkEM0PDp5xmtR+6Qnj4P j0flLQzsWkRoOcd9KW/ZwuzoL6BPlckAh8ZmbMOYk4XzoM++fqQ6SjG/TjDQU0ko nOIxR5lZMxS3EDg21z2dIwBFTMkidjZmZGats6khtWoJQKq3pDOuNVwcgULeJPon Ih89HO5TwoqNqv0OgbxVcW3EJ4aG25tKPTmDCDe2eUNpm9zmha6Qm1FHk7cuRz/r IDMNX2NiTptMHoR4phM/GZIasdKlGEDzLRwyWTzalL4orZJyi7/wnq2ME1Z6BNx2 biDWGiDyfwit9xwooVn02zzHPOJJ3SwX -----END CERTIFICATE-----Generated at Wed May 1 05:58:55 2024 by rpki-client on console-fra.rpki-client.org