$ rpki-client -vvf rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft File: grMfodzgxL8vZjl3hqbAjkfGuP4.mft (raw, json) Hash identifier: wUkjUyU+KdptdZraY2rhV4dCGy+1rryftwzgLb8Ssc4= Subject key identifier: 0B:5C:19:8B:17:49:F5:1B:4D:61:86:B5:DE:1D:A1:B3:6F:5E:F9:67 Authority key identifier: 82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE Certificate issuer: /CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft Manifest number: 0457 Signing time: Sat 27 Apr 2024 01:46:38 +0000 Manifest this update: Sat 27 Apr 2024 01:46:38 +0000 Manifest next update: Sat 04 May 2024 01:46:38 +0000 Files and hashes: 1: grMfodzgxL8vZjl3hqbAjkfGuP4.crl (hash: Z0neB0rYE+f8Fu1KC1HykQQusuBQUVUT29XjJTid8Xo=) 2: F7307C08FFCA11EB93268E6DC4F9AE02.roa (hash: 2DaLxt4n6jaukDrIHDDRGCQsR5YABrIuzgpEP5P8i8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Validity Not Before: Apr 27 01:46:38 2024 GMT Not After : May 4 01:46:38 2024 GMT Subject: CN=662c58fe-a366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:26:a7:c1:3a:49:98:e0:c9:20:0c:a0:ee: 69:e5:6b:90:13:bd:75:ce:bb:6c:99:45:f9:28:d5: 21:2f:e2:d6:14:48:4e:86:6e:fd:90:91:88:3b:07: 0a:db:7c:bd:df:8b:d6:fe:bd:91:90:38:d1:0b:fd: 2e:34:96:af:d8:ec:55:e1:b8:ca:83:8c:32:bd:85: c7:f6:9f:8c:43:d5:4c:33:9d:b2:40:82:c2:97:1b: 0d:ac:f2:4b:c3:d0:7d:75:3a:87:6c:30:29:a1:62: 41:bf:09:42:ec:66:95:99:5d:45:75:cc:a9:23:22: f2:2d:d5:4a:76:5a:0a:0c:be:b0:ed:b1:8b:26:4a: 00:a1:e4:bb:e1:27:e1:a6:89:f2:03:6d:ca:45:12: 61:14:d8:04:1d:2c:c8:e3:1d:c7:6d:45:3b:4a:3e: 2a:bf:ff:72:03:f4:3c:3b:2d:04:9a:8e:ea:d4:87: 41:84:53:53:bd:04:c8:88:ac:02:f0:50:a4:40:3f: 2a:03:b4:7c:70:ab:ca:95:15:aa:66:b2:0b:d6:d5: 59:3a:66:10:79:e3:26:2d:33:96:df:8b:42:ea:86: 22:01:33:e5:2b:55:05:fc:ac:65:99:6f:9b:55:f7: 4b:ad:1d:ac:ef:06:2e:13:ca:cf:84:74:d1:19:5b: 93:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5C:19:8B:17:49:F5:1B:4D:61:86:B5:DE:1D:A1:B3:6F:5E:F9:67 X509v3 Authority Key Identifier: keyid:82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:d1:7a:5c:2e:e5:d6:a6:ac:38:32:e4:20:ed:f4:eb:e4:15: 2d:a7:50:5c:00:67:ee:0d:1a:89:8a:88:4d:c1:7d:bc:bd:6f: e0:fa:87:dc:d7:35:64:0d:fc:a3:c7:d4:64:6e:df:fc:90:6c: 10:41:92:d9:4a:e5:d3:49:ec:48:4f:db:bf:8a:e9:5a:16:ab: 58:db:0b:a3:9f:91:75:56:b9:17:f9:22:06:7c:4a:48:b8:0c: 4f:58:86:a5:6e:d8:3e:75:7f:ba:79:ca:32:ee:4f:a7:03:8a: 10:20:b2:e0:2c:69:d7:ef:27:50:9e:99:19:6e:c2:bc:9b:77: d3:a3:00:5f:df:4d:8c:e8:d2:da:b1:44:1e:32:1a:36:27:92: ce:68:f3:6d:1d:16:7a:83:8f:22:3a:47:42:44:0a:84:c9:f1: 3d:20:86:9f:03:fe:64:0f:70:eb:cd:0e:1e:4b:df:43:8c:49: c5:24:2c:21:68:80:42:c3:10:d2:88:ee:65:32:f2:87:a0:b0: 3a:5e:da:49:77:04:0c:f8:d3:e6:5d:a9:20:39:51:88:81:10: 5b:37:7d:d9:7d:56:d4:65:78:39:62:03:ff:a8:f4:b1:fc:62: d8:f1:1d:8b:97:88:34:e8:cc:a9:70:e4:03:67:b4:73:04:9c: c8:82:60:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk0RjcxMTAvBgNVBAUTKDgyQjMxRkExRENFMEM0QkYyRjY2Mzk3Nzg2QTZDMDhF NDdDNkI4RkUwHhcNMjQwNDI3MDE0NjM4WhcNMjQwNTA0MDE0NjM4WjAYMRYwFAYD VQQDEw02NjJjNThmZS1hMzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykQmp8E6SZjgySAMoO5p5WuQE711zrtsmUX5KNUhL+LWFEhOhm79kJGIOwcK 23y934vW/r2RkDjRC/0uNJav2OxV4bjKg4wyvYXH9p+MQ9VMM52yQILClxsNrPJL w9B9dTqHbDApoWJBvwlC7GaVmV1FdcypIyLyLdVKdloKDL6w7bGLJkoAoeS74Sfh ponyA23KRRJhFNgEHSzI4x3HbUU7Sj4qv/9yA/Q8Oy0Emo7q1IdBhFNTvQTIiKwC 8FCkQD8qA7R8cKvKlRWqZrIL1tVZOmYQeeMmLTOW34tC6oYiATPlK1UF/KxlmW+b VfdLrR2s7wYuE8rPhHTRGVuTewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtcGYsX SfUbTWGGtd4dobNvXvlnMB8GA1UdIwQYMBaAFIKzH6Hc4MS/L2Y5d4amwI5Hxrj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTRGNy81OUZGMDVBQUZG QzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hMOHZaamwzaHFiQWprZkd1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyTWZvZHpneEw4dlpqbDNocWJBamtmR3VQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTRGNy81OUZGMDVBQUZGQzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hM OHZaamwzaHFiQWprZkd1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx0XpcLuXWpqw4MuQg7fTr5BUtp1BcAGfuDRqJiohNwX28vW/g+ofc 1zVkDfyjx9Rkbt/8kGwQQZLZSuXTSexIT9u/iulaFqtY2wujn5F1VrkX+SIGfEpI uAxPWIalbtg+dX+6ecoy7k+nA4oQILLgLGnX7ydQnpkZbsK8m3fTowBf302M6NLa sUQeMho2J5LOaPNtHRZ6g48iOkdCRAqEyfE9IIafA/5kD3DrzQ4eS99DjEnFJCwh aIBCwxDSiO5lMvKHoLA6XtpJdwQM+NPmXakgOVGIgRBbN33ZfVbUZXg5YgP/qPSx /GLY8R2Ll4g06MypcOQDZ7RzBJzIgmAu -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:34 2024 by rpki-client on console-ams.rpki-client.org