$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: kLp1g3LYToPWu6atEsDSww6CNPQ4ojMuKxvVv1+QHS8= Subject key identifier: 2D:29:2A:E8:6D:6C:3B:DC:D5:44:B8:9A:5E:95:89:CA:D3:B6:8F:06 Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 01B3 Signing time: Sat 01 Jun 2024 05:46:54 +0000 Manifest this update: Sat 01 Jun 2024 05:46:54 +0000 Manifest next update: Sat 08 Jun 2024 05:46:54 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: LUsj+KdthjMeDbyMRhk4vhGildYDmgpmWcBGOqPRkow=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: ET5LTKzqc2BM32oELN/6tYyeidfqadR/lTO694gxZxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Jun 1 05:46:54 2024 GMT Not After : Jun 8 05:46:54 2024 GMT Subject: CN=665ab5ce-3544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:15:46:1b:81:fd:ac:c5:b8:8f:7a:2e:27:b2: 41:e1:db:b2:a8:f8:45:d6:9f:fa:2c:64:57:81:bd: 8a:62:10:d7:0c:10:82:8c:24:ff:ff:ca:b8:96:c8: 24:2f:dc:e6:e0:4f:44:e9:e2:a0:79:e8:11:01:e6: cb:e2:1d:81:80:21:42:13:26:b0:f1:ad:97:2f:43: 39:0d:e4:3e:75:0b:90:45:21:01:b5:9e:fd:1f:96: 0b:b4:6a:f1:11:10:98:13:57:b5:76:d6:b8:bb:06: 4b:88:0b:b0:77:2f:b6:bc:f1:f7:07:da:87:5f:eb: 25:0b:04:3b:cb:c6:5a:02:ae:0d:c1:a5:d7:d7:89: c1:82:01:27:e8:87:8e:f7:a6:0c:a8:c0:cc:a9:21: a3:2d:3b:28:a9:80:17:0a:9e:38:9e:83:40:8d:8e: 61:b9:07:3c:99:c4:b6:28:a8:42:57:4d:27:77:55: 38:ba:4b:c0:f5:a3:27:91:fb:0e:c9:e8:64:7e:39: 54:d2:66:e3:15:46:22:19:99:f1:f0:07:9c:60:a3: 69:30:5d:b4:48:02:0c:76:0e:f3:08:ee:90:03:13: ee:b5:11:d7:55:6e:39:a7:ae:6f:6c:1f:82:21:64: 3a:03:c1:07:75:1d:95:91:78:17:50:a9:f2:a4:97: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:29:2A:E8:6D:6C:3B:DC:D5:44:B8:9A:5E:95:89:CA:D3:B6:8F:06 X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:50:27:ef:bf:d2:e1:f9:f3:6c:d4:99:ee:0f:9f:2d:b2:82: 54:48:c1:d0:6e:00:04:22:27:8b:6f:5d:d8:1d:a8:de:1c:34: 3d:4c:c4:59:e8:48:61:03:e0:be:e7:1d:ae:17:d8:61:ea:11: c6:01:68:d2:e4:cb:a5:97:fa:51:6b:d3:ad:56:a7:05:e8:40: 3e:f3:73:52:40:8e:c4:f3:6f:84:2e:a4:d7:c6:a5:1c:d6:49: b8:a2:c2:8b:b1:fe:12:f9:06:4a:82:d5:02:eb:e4:0c:e0:f5: b0:5d:50:f0:72:3f:ce:30:3d:17:18:ca:ac:6d:0e:10:28:9e: 26:a5:79:18:a0:1b:e5:5f:4c:2d:6b:66:42:da:1c:8d:96:51: 67:a0:f1:64:d5:d5:2e:12:24:c0:2b:ca:e9:09:8b:74:07:39: c0:13:56:21:61:de:fe:21:7a:c7:41:bd:32:04:15:6f:33:20: d4:14:ab:bb:95:76:fb:17:63:1c:7a:02:b3:5d:af:4b:33:fa: 62:a7:6b:17:48:5a:ef:15:4c:05:61:14:3f:2f:99:20:da:56: 0c:dd:a2:8e:21:fe:8f:f0:18:90:be:f8:98:87:5c:d1:d7:c8: 0a:ec:9f:b6:76:5e:7d:2e:b7:64:f5:2b:6d:0b:ee:4b:4c:f4: 24:89:86:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjQwNjAxMDU0NjU0WhcNMjQwNjA4MDU0NjU0WjAYMRYwFAYD VQQDEw02NjVhYjVjZS0zNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RVGG4H9rMW4j3ouJ7JB4duyqPhF1p/6LGRXgb2KYhDXDBCCjCT//8q4lsgk L9zm4E9E6eKgeegRAebL4h2BgCFCEyaw8a2XL0M5DeQ+dQuQRSEBtZ79H5YLtGrx ERCYE1e1dta4uwZLiAuwdy+2vPH3B9qHX+slCwQ7y8ZaAq4NwaXX14nBggEn6IeO 96YMqMDMqSGjLTsoqYAXCp44noNAjY5huQc8mcS2KKhCV00nd1U4ukvA9aMnkfsO yehkfjlU0mbjFUYiGZnx8AecYKNpMF20SAIMdg7zCO6QAxPutRHXVW45p65vbB+C IWQ6A8EHdR2VkXgXUKnypJcynQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0pKuht bDvc1US4ml6VicrTto8GMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeUCfvv9Lh+fNs1JnuD58tsoJUSMHQbgAEIieLb13YHajeHDQ9TMRZ 6EhhA+C+5x2uF9hh6hHGAWjS5Mull/pRa9OtVqcF6EA+83NSQI7E82+ELqTXxqUc 1km4osKLsf4S+QZKgtUC6+QM4PWwXVDwcj/OMD0XGMqsbQ4QKJ4mpXkYoBvlX0wt a2ZC2hyNllFnoPFk1dUuEiTAK8rpCYt0BznAE1YhYd7+IXrHQb0yBBVvMyDUFKu7 lXb7F2McegKzXa9LM/pip2sXSFrvFUwFYRQ/L5kg2lYM3aKOIf6P8BiQvviYh1zR 18gK7J+2dl59Lrdk9SttC+5LTPQkiYaI -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:16 2024 by rpki-client on console-ams.rpki-client.org