$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft File: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json) Hash identifier: /fkjcPcm2UQHhctzGq7zsN1TyzHXo0c4xw+mHMHOypk= Subject key identifier: BA:CE:AB:0D:F0:C7:C3:42:CC:B6:A9:89:D7:FE:5D:71:7E:F6:C5:2F Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft Manifest number: 060E Signing time: Mon 06 May 2024 23:56:44 +0000 Manifest this update: Mon 06 May 2024 23:56:43 +0000 Manifest next update: Mon 13 May 2024 23:56:43 +0000 Files and hashes: 1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: WFG1LDDhIuBkWARBv5WkxeCc/6IlsC1Rmm/BvskKuVM=) 2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: t1CpQ4L3GyTj4BVSlvWpp+W4Kme3xXKFI0Eh6kMBBD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: May 6 23:56:43 2024 GMT Not After : May 13 23:56:43 2024 GMT Subject: CN=66396e3b-a0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5a:5b:1a:09:95:f4:27:4c:62:9e:d9:39:db: 68:ba:85:6a:32:d0:e4:c4:8e:22:f3:f4:af:a8:a5: f6:8c:c2:cd:0a:18:61:92:a6:e6:90:4e:a0:43:8b: 38:ed:8a:ed:5f:98:a0:96:e5:19:be:d7:7b:be:f3: 62:9f:9c:6e:de:71:50:b4:bf:e1:13:4b:e3:79:45: 3d:71:ce:d4:11:05:4c:93:6b:c3:f2:0c:15:a4:ef: 88:ff:c7:ee:d6:b9:eb:f5:f3:de:01:66:90:c2:3c: 93:9d:be:f3:4e:f9:3f:71:90:3d:f1:0a:d3:45:6c: e0:25:75:e4:b0:0a:64:9c:04:2c:09:a8:0e:d0:bb: 43:13:65:5e:91:ff:7b:3e:14:fb:19:44:ad:ee:14: f0:39:d2:c2:fc:b3:68:26:55:a0:08:04:ad:b9:e5: cf:bf:d5:66:cd:08:df:d8:fe:07:33:32:48:33:87: 7a:1f:77:cf:77:4f:83:30:24:28:ea:41:61:36:20: 74:5c:4d:e4:30:e8:f8:77:6d:09:df:d3:7d:3c:46: 5e:fa:a2:79:a3:2f:d8:aa:b3:46:d9:c7:f8:80:b9: 35:e9:08:3e:72:11:db:6d:fd:5a:80:c6:db:ef:12: 36:2a:1d:79:99:ab:a2:89:5c:d7:d3:29:7e:dd:bb: fa:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CE:AB:0D:F0:C7:C3:42:CC:B6:A9:89:D7:FE:5D:71:7E:F6:C5:2F X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:46:9f:a6:e3:e3:7b:25:75:0d:b1:88:cf:f5:06:c1:23:ce: d8:d1:b2:d5:09:89:56:86:f8:83:14:a4:b7:21:b8:fe:6a:1f: dd:b9:55:06:ca:60:ef:85:c7:ad:4c:b3:1a:74:57:6b:7c:45: 7f:f6:63:cf:c0:d7:3b:f8:11:3c:00:a6:e5:99:fe:f7:6e:f7: 8e:a9:e6:d7:61:94:c3:e8:19:74:79:25:ad:f8:37:36:02:03: 6f:49:9d:94:fe:2d:53:ee:59:61:22:ad:69:6a:08:98:3e:8c: e9:3e:02:6e:54:44:a8:c5:c7:72:e8:5e:3d:52:dd:6e:fd:57: 36:05:96:0f:27:e0:e9:df:a4:fe:65:7a:e7:c5:6d:e7:72:0c: ef:1a:e6:b7:40:1f:53:10:f8:88:18:b5:91:88:de:19:19:8c: 03:e6:5f:51:92:51:1f:af:82:ac:c5:3d:8f:07:dd:39:01:a4: 99:43:6c:cb:5d:bf:a7:40:63:11:bc:7f:d3:85:04:50:c1:77: 65:ef:5e:8a:ef:f8:f1:04:aa:a0:69:77:23:4e:72:23:a3:b3: 42:a6:9c:93:35:e4:3d:3c:38:8f:4a:ab:39:c4:44:d4:1c:28: 7c:be:e0:f0:1a:38:8f:52:5f:aa:eb:4a:67:81:36:8a:62:a5: b7:a0:1a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjQwNTA2MjM1NjQzWhcNMjQwNTEzMjM1NjQzWjAYMRYwFAYD VQQDEw02NjM5NmUzYi1hMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlpbGgmV9CdMYp7ZOdtouoVqMtDkxI4i8/SvqKX2jMLNChhhkqbmkE6gQ4s4 7YrtX5igluUZvtd7vvNin5xu3nFQtL/hE0vjeUU9cc7UEQVMk2vD8gwVpO+I/8fu 1rnr9fPeAWaQwjyTnb7zTvk/cZA98QrTRWzgJXXksApknAQsCagO0LtDE2Vekf97 PhT7GUSt7hTwOdLC/LNoJlWgCAStueXPv9VmzQjf2P4HMzJIM4d6H3fPd0+DMCQo 6kFhNiB0XE3kMOj4d20J39N9PEZe+qJ5oy/YqrNG2cf4gLk16Qg+chHbbf1agMbb 7xI2Kh15mauiiVzX0yl+3bv6NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrOqw3w x8NCzLapidf+XXF+9sUvMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MThBRi9ENzkyRjQ3NDU2QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZ dERfVlExaVRqZEh6R2hhUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrRp+m4+N7JXUNsYjP9QbBI87Y0bLVCYlWhviDFKS3Ibj+ah/duVUG ymDvhcetTLMadFdrfEV/9mPPwNc7+BE8AKblmf73bveOqebXYZTD6Bl0eSWt+Dc2 AgNvSZ2U/i1T7llhIq1pagiYPozpPgJuVESoxcdy6F49Ut1u/Vc2BZYPJ+Dp36T+ ZXrnxW3ncgzvGua3QB9TEPiIGLWRiN4ZGYwD5l9RklEfr4KsxT2PB905AaSZQ2zL Xb+nQGMRvH/ThQRQwXdl716K7/jxBKqgaXcjTnIjo7NCppyTNeQ9PDiPSqs5xETU HCh8vuDwGjiPUl+q60pngTaKYqW3oBqv -----END CERTIFICATE-----Generated at Tue May 7 01:58:17 2024 by rpki-client on console-fra.rpki-client.org