$ rpki-client -vvf rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft File: gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft (raw, json) Hash identifier: f38wq3im5i1NpgCexdWgknDFA2RQMq2OzyXSOrFUq+c= Subject key identifier: A6:3B:1E:B1:6D:C5:69:A1:CF:79:D2:F2:D2:D3:95:D7:1B:9F:40:14 Authority key identifier: 81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC Certificate issuer: /CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft Manifest number: 04C1 Signing time: Sun 05 May 2024 01:33:26 +0000 Manifest this update: Sun 05 May 2024 01:33:26 +0000 Manifest next update: Sun 12 May 2024 01:33:26 +0000 Files and hashes: 1: gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl (hash: K+qpNhw+7U4Y/UDpftI6gdbO6FEgHeBqgGuljerPrXQ=) 2: 72AA1A38D7CB11EBB8307453C4F9AE02.roa (hash: 80C8kkeWhjJMm/bDl1BH7p52+xZp3ros5mN2WiCpBqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Validity Not Before: May 5 01:33:26 2024 GMT Not After : May 12 01:33:26 2024 GMT Subject: CN=6636e1e6-8d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:f3:97:44:4c:b6:b9:ed:9a:2c:96:b1:27: d7:f5:26:b5:34:b6:10:75:60:8b:80:30:d6:64:09: c6:8e:10:e2:fb:a4:14:56:c4:1f:3b:6b:0c:09:7d: fc:41:6f:19:85:a1:44:8c:08:a3:e2:32:a1:a6:52: ff:6a:49:c7:4a:71:30:6c:5e:33:c1:61:9b:ff:2e: e7:4f:bf:82:fe:f0:31:7a:7b:60:e2:05:b8:02:f0: 07:19:0a:e7:ff:57:c8:d5:21:59:3d:31:a8:0c:82: ef:1c:49:55:82:08:51:cd:00:5e:0e:6b:3a:9e:6b: de:f2:9f:b7:d5:e6:a2:a8:2f:af:2b:1f:45:f0:f4: 87:20:8c:fd:88:2e:50:1c:59:e3:02:11:fa:de:14: 5c:d8:3c:18:7b:fc:58:0a:ca:26:83:39:e0:d3:38: 5a:99:43:ec:d2:24:01:e5:65:ec:56:f1:e0:91:bc: 6c:4f:87:aa:4c:26:8b:fe:68:d3:2e:1a:75:c3:64: ff:cc:54:80:ae:c9:6a:63:31:69:4e:54:69:8d:be: 02:fe:9d:67:ea:cb:ef:78:8b:30:0d:c3:b3:ca:7f: 67:28:d6:48:1b:cd:e0:6f:83:d6:a0:1d:4c:68:00: 37:57:2f:98:4c:df:25:f4:7a:b7:1b:59:9b:4b:e2: d3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3B:1E:B1:6D:C5:69:A1:CF:79:D2:F2:D2:D3:95:D7:1B:9F:40:14 X509v3 Authority Key Identifier: keyid:81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:6b:78:b5:73:8b:52:76:69:e6:79:44:47:53:cf:03:0b:2e: f6:ca:ba:18:26:f8:94:64:2f:1f:89:42:30:65:88:90:bc:d9: ed:33:65:53:85:6b:54:43:d7:80:fb:83:7c:9b:ea:2c:91:9a: 06:a9:56:30:9b:2f:5c:83:8b:8b:25:3c:4f:09:64:37:74:46: 1f:b4:ba:a8:05:ec:2d:a7:70:c4:b9:8d:f0:35:dd:1d:48:60: c0:c8:9b:0b:54:b5:7b:4a:e5:e7:25:b0:06:05:c0:f1:6b:b0: 4c:ef:71:e6:63:44:e0:18:08:4b:1b:6a:dc:3c:0e:9a:1b:a9: 1f:dd:8a:d4:ce:39:97:be:11:c8:25:48:b5:cc:e9:8c:e7:09: 3f:09:db:29:f2:3b:07:c9:af:15:ba:ed:80:3f:30:4b:a3:65: e0:1f:f2:9b:83:ae:6b:d7:67:ae:e1:78:21:7e:a2:e9:65:b7: 96:36:76:10:91:ca:a9:1f:b2:40:fd:ac:87:a4:d1:02:7b:4d: 5a:20:a1:7e:21:ec:85:20:2b:2a:59:4f:e1:3e:80:79:0a:68: 8c:7f:49:b0:3b:6f:76:c1:d7:ac:41:9f:f8:4b:a8:37:55:59: 83:3c:cd:ed:2f:39:3a:fd:6b:b4:c0:99:e7:9c:22:f5:3a:da: 50:ca:c8:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2QTExMTAvBgNVBAUTKDgxQkZERTkxNjlENUMyQzBFQjQ1MTc2MjA3NTM3Mzc2 OTlERjE2QUMwHhcNMjQwNTA1MDEzMzI2WhcNMjQwNTEyMDEzMzI2WjAYMRYwFAYD VQQDEw02NjM2ZTFlNi04ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bvzl0RMtrntmiyWsSfX9Sa1NLYQdWCLgDDWZAnGjhDi+6QUVsQfO2sMCX38 QW8ZhaFEjAij4jKhplL/aknHSnEwbF4zwWGb/y7nT7+C/vAxentg4gW4AvAHGQrn /1fI1SFZPTGoDILvHElVgghRzQBeDms6nmve8p+31eaiqC+vKx9F8PSHIIz9iC5Q HFnjAhH63hRc2DwYe/xYCsomgzng0zhamUPs0iQB5WXsVvHgkbxsT4eqTCaL/mjT Lhp1w2T/zFSArslqYzFpTlRpjb4C/p1n6svveIswDcOzyn9nKNZIG83gb4PWoB1M aAA3Vy+YTN8l9Hq3G1mbS+LTWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKY7HrFt xWmhz3nS8tLTldcbn0AUMB8GA1UdIwQYMBaAFIG/3pFp1cLA60UXYgdTc3aZ3xas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzZBMS83MTE5QzVFQUQ3 QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndzRHJSUmRpQjFOemRwbmZG cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2diX2VrV25Wd3NEclJSZGlCMU56ZHBuZkZxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzZBMS83MTE5QzVFQUQ3QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndz RHJSUmRpQjFOemRwbmZGcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfa3i1c4tSdmnmeURHU88DCy72yroYJviUZC8fiUIwZYiQvNntM2VT hWtUQ9eA+4N8m+oskZoGqVYwmy9cg4uLJTxPCWQ3dEYftLqoBewtp3DEuY3wNd0d SGDAyJsLVLV7SuXnJbAGBcDxa7BM73HmY0TgGAhLG2rcPA6aG6kf3YrUzjmXvhHI JUi1zOmM5wk/Cdsp8jsHya8Vuu2APzBLo2XgH/Kbg65r12eu4XghfqLpZbeWNnYQ kcqpH7JA/ayHpNECe01aIKF+IeyFICsqWU/hPoB5CmiMf0mwO292wdesQZ/4S6g3 VVmDPM3tLzk6/Wu0wJnnnCL1OtpQysj7 -----END CERTIFICATE-----Generated at Sun May 5 02:33:36 2024 by rpki-client on console-fra.rpki-client.org