$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft File: GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json) Hash identifier: msU0GEs/OjlnilgqA8AVJsaG/OIJw8gq+R4lb4fj9+w= Subject key identifier: 00:DC:FC:14:3B:0D:2E:3E:40:EB:3B:29:26:D3:34:1D:FE:BA:82:C2 Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft Manifest number: 0287 Signing time: Sat 27 Apr 2024 03:34:48 +0000 Manifest this update: Sat 27 Apr 2024 03:34:48 +0000 Manifest next update: Sat 04 May 2024 03:34:48 +0000 Files and hashes: 1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: 5FFsrv4bya7CV/a2mQc5Z2IUPW8MnC19IugXGE6qCTA=) 2: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: ik38AQLiv3Zthjln90fSJzGCXI0K0ZwqhaT5K0xW4CA=) 3: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: YRQwXoWlff5FmF3qZ3XEn7/uI1z3f2BtSFCupGXa0R4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Validity Not Before: Apr 27 03:34:48 2024 GMT Not After : May 4 03:34:48 2024 GMT Subject: CN=662c7258-1607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:3c:8b:8d:c6:06:27:c4:04:94:fd:a1:00: 7e:2f:93:d6:80:db:39:4b:a3:c3:8c:cb:06:af:81: 44:25:0e:a4:03:42:70:37:d9:b4:16:6b:48:7b:a6: 96:e9:89:35:25:b5:90:54:aa:58:8b:60:b3:ac:b4: ab:bd:39:c1:70:64:99:b1:33:6a:d7:fb:22:4c:d2: d5:a1:87:7a:96:1c:f1:f8:fe:6c:30:9b:8f:4a:28: 39:db:fe:be:85:c5:24:24:e1:54:c5:6d:78:3c:ff: d5:58:14:ba:45:6b:33:03:4d:08:0c:0e:4c:60:2a: 4e:73:18:53:67:73:42:7e:9b:e8:39:34:b5:f1:80: 3d:98:7a:59:f7:06:cf:1d:f6:49:6d:92:bd:e2:b5: c5:57:c3:e9:77:39:5f:9f:45:1d:11:4b:89:60:50: dd:16:66:46:5a:d2:29:c9:e0:05:00:b3:6a:04:ca: 10:f1:89:a5:c2:b8:71:ad:23:26:79:54:40:2c:10: 94:8c:42:3f:9c:fb:ee:9b:06:5f:e0:03:97:03:d9: 25:3b:15:63:31:6e:e2:f7:eb:d2:e7:56:62:fe:05: 3d:49:2a:1f:88:25:3e:12:0a:1f:e0:80:3d:3e:14: 9d:76:11:1b:39:a1:bc:d2:dc:1f:fd:7f:a1:6d:f9: 26:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DC:FC:14:3B:0D:2E:3E:40:EB:3B:29:26:D3:34:1D:FE:BA:82:C2 X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:75:6f:b9:47:74:53:5b:c6:f2:c6:cb:44:79:b3:87:cc:d7: c5:c4:00:f3:89:a3:4d:93:48:83:10:e8:5a:67:a2:48:16:b7: dc:de:e2:1a:43:96:b5:40:b3:0e:9f:83:95:49:2a:ca:94:d1: 2e:01:b7:f9:be:36:8f:84:a0:53:0f:c1:c8:42:38:fe:31:91: 5a:84:89:08:1d:c7:fa:34:ad:29:ba:97:03:74:51:cb:dd:7f: 75:30:92:74:73:40:c3:16:6e:10:84:12:81:42:08:fc:e6:ca: 0f:6d:6d:8f:23:9e:53:72:1f:6a:ba:99:cc:44:4e:3b:28:40: 65:f7:17:4d:5c:14:20:82:e0:5c:e5:7a:83:70:51:f4:05:c5: 12:66:52:c9:d0:62:d6:fe:42:2f:75:1d:16:67:08:a2:d0:a2: 60:3e:31:c5:96:38:01:64:f3:99:8c:18:18:af:1a:1f:36:10: 1e:de:59:a1:4a:2e:46:a0:73:ab:74:fb:db:22:b9:31:cd:31: b0:b4:4d:64:93:07:f0:ad:61:fa:7e:23:81:55:52:df:0f:61: 90:06:4e:56:3c:71:85:c0:d6:6f:bb:84:b2:27:a3:14:21:ae: 2d:47:03:c7:44:e2:5c:f3:92:48:62:2d:68:65:ab:00:25:26: bf:89:3c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjQwNDI3MDMzNDQ4WhcNMjQwNTA0MDMzNDQ4WjAYMRYwFAYD VQQDEw02NjJjNzI1OC0xNjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lA8i43GBifEBJT9oQB+L5PWgNs5S6PDjMsGr4FEJQ6kA0JwN9m0FmtIe6aW 6Yk1JbWQVKpYi2CzrLSrvTnBcGSZsTNq1/siTNLVoYd6lhzx+P5sMJuPSig52/6+ hcUkJOFUxW14PP/VWBS6RWszA00IDA5MYCpOcxhTZ3NCfpvoOTS18YA9mHpZ9wbP HfZJbZK94rXFV8Ppdzlfn0UdEUuJYFDdFmZGWtIpyeAFALNqBMoQ8YmlwrhxrSMm eVRALBCUjEI/nPvumwZf4AOXA9klOxVjMW7i9+vS51Zi/gU9SSofiCU+Egof4IA9 PhSddhEbOaG80twf/X+hbfkmQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADc/BQ7 DS4+QOs7KSbTNB3+uoLCMB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjU1RC80MEU0M0I4MEI3QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hm X0lBUGdQOHBhNnNhMDNGT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRdW+5R3RTW8byxstEebOHzNfFxADziaNNk0iDEOhaZ6JIFrfc3uIa Q5a1QLMOn4OVSSrKlNEuAbf5vjaPhKBTD8HIQjj+MZFahIkIHcf6NK0pupcDdFHL 3X91MJJ0c0DDFm4QhBKBQgj85soPbW2PI55Tch9qupnMRE47KEBl9xdNXBQgguBc 5XqDcFH0BcUSZlLJ0GLW/kIvdR0WZwii0KJgPjHFljgBZPOZjBgYrxofNhAe3lmh Si5GoHOrdPvbIrkxzTGwtE1kkwfwrWH6fiOBVVLfD2GQBk5WPHGFwNZvu4SyJ6MU Ia4tRwPHROJc85JIYi1oZasAJSa/iTxm -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:29 2024 by rpki-client on console-ams.rpki-client.org