$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: JFKgwdtcQyaYqe7UOUhmxt9rmhBgFBeiWbGxJqUo1O0= Subject key identifier: 88:28:7C:DD:F2:42:F5:63:A6:4A:66:91:8A:A0:1B:B9:54:4B:6E:C0 Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: D7 Signing time: Wed 01 May 2024 06:20:52 +0000 Manifest this update: Wed 01 May 2024 06:20:51 +0000 Manifest next update: Wed 08 May 2024 06:20:51 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: HemCAYH3Zi4N9E1IsQF2TIeul4kz+rPu/hhD1wKSI+Q=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: /+LBjF6lBPLxhQK10OGPQmB3GU8J3/dgM8FRgJhuXxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: May 1 06:20:51 2024 GMT Not After : May 8 06:20:51 2024 GMT Subject: CN=6631df43-fe78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:d1:e1:58:40:a3:d4:f0:ad:09:b0:f4:f7: 82:df:51:95:81:9b:e0:17:30:7e:04:c2:28:18:a7: 81:4e:45:6a:0b:d7:7e:09:f1:fd:67:d0:b7:c3:a6: 53:56:c3:88:c3:9e:37:61:a2:d6:62:dd:57:b4:23: d0:90:0a:f3:56:4a:00:36:b6:1d:1c:9c:f6:cf:82: db:24:98:90:29:1e:d2:0e:b0:c3:63:db:b5:57:9a: ba:a9:b6:5d:b7:44:22:87:8a:2c:89:89:dd:0e:d1: 08:d7:44:3b:08:02:3b:2b:1f:f7:ea:c1:d0:f5:78: 22:ee:3c:3e:0d:7d:80:e8:01:0a:e4:d3:dc:34:71: 3e:d3:69:fb:92:59:5c:40:92:03:24:f0:46:30:f0: 26:a9:3a:be:a2:16:4b:a9:d9:53:b7:20:b8:dd:a5: 43:ea:d4:42:d0:9e:bf:09:33:8f:8e:88:5a:53:91: 34:c1:4e:3a:3b:09:b2:ba:cb:3b:e6:a7:9e:ef:11: 57:94:3b:5f:81:8d:6b:65:db:8e:01:0c:95:e9:dd: 44:8b:8e:9a:e0:1a:22:7c:e1:0b:11:03:e8:b4:8b: 47:48:6a:a2:5b:d3:e7:db:42:70:cc:13:df:93:e9: e5:c5:f4:9d:59:ab:df:e5:7f:55:5b:05:bf:5a:d5: 36:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:28:7C:DD:F2:42:F5:63:A6:4A:66:91:8A:A0:1B:B9:54:4B:6E:C0 X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:d4:4a:8b:39:5d:3e:3f:d6:98:f7:c3:bf:24:d9:21:27:15: 3e:dd:79:ca:4c:e7:07:25:db:54:76:e9:58:e9:82:bd:45:83: bc:e6:78:c6:36:7d:b7:00:5f:72:fe:e8:eb:b3:30:a8:d3:0a: bc:48:e1:46:25:92:9b:8c:fc:28:42:3a:6c:2e:48:f3:9e:7c: 20:d3:c2:f4:87:cb:64:a7:3d:54:b0:8e:f4:ad:d4:6f:99:6f: 8e:5c:60:92:33:84:38:3a:a4:82:17:07:8f:3f:c2:3d:11:73: 2b:d7:fd:e3:7e:54:42:3c:17:99:f3:63:22:3e:6d:a8:6a:32: f9:c6:78:a7:62:a3:d3:b2:18:29:02:6a:ad:88:40:05:35:db: b0:6a:30:da:44:42:30:c5:5d:3a:96:ec:4f:66:d3:0a:76:38: cc:e1:e1:06:3b:82:fd:1d:8d:41:04:87:7b:21:97:c3:61:dc: 10:b0:7a:3b:ba:a6:88:b8:d8:b6:e8:55:f8:ea:da:9c:ba:86: 71:ea:53:d5:a4:e6:07:f4:8f:51:cf:7a:44:80:29:c5:45:f4: 03:46:b7:2c:6c:c1:37:c9:2b:cd:a4:bb:4f:7b:c1:5c:8c:09: 60:9f:c3:30:ac:76:b4:fb:35:34:e4:29:4c:be:f7:bd:4c:7a: 33:2b:68:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjQwNTAxMDYyMDUxWhcNMjQwNTA4MDYyMDUxWjAYMRYwFAYD VQQDEw02NjMxZGY0My1mZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29nR4VhAo9TwrQmw9PeC31GVgZvgFzB+BMIoGKeBTkVqC9d+CfH9Z9C3w6ZT VsOIw543YaLWYt1XtCPQkArzVkoANrYdHJz2z4LbJJiQKR7SDrDDY9u1V5q6qbZd t0Qih4osiYndDtEI10Q7CAI7Kx/36sHQ9Xgi7jw+DX2A6AEK5NPcNHE+02n7kllc QJIDJPBGMPAmqTq+ohZLqdlTtyC43aVD6tRC0J6/CTOPjohaU5E0wU46Owmyuss7 5qee7xFXlDtfgY1rZduOAQyV6d1Ei46a4BoifOELEQPotItHSGqiW9Pn20JwzBPf k+nlxfSdWavf5X9VWwW/WtU2dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgofN3y QvVjpkpmkYqgG7lUS27AMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC51EqLOV0+P9aY98O/JNkhJxU+3XnKTOcHJdtUdulY6YK9RYO85njG Nn23AF9y/ujrszCo0wq8SOFGJZKbjPwoQjpsLkjznnwg08L0h8tkpz1UsI70rdRv mW+OXGCSM4Q4OqSCFwePP8I9EXMr1/3jflRCPBeZ82MiPm2oajL5xninYqPTshgp AmqtiEAFNduwajDaREIwxV06luxPZtMKdjjM4eEGO4L9HY1BBId7IZfDYdwQsHo7 uqaIuNi26FX46tqcuoZx6lPVpOYH9I9Rz3pEgCnFRfQDRrcsbME3ySvNpLtPe8Fc jAlgn8MwrHa0+zU05ClMvve9THozK2g9 -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org