$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: ouUXIhbnabjcBNmowyEgQnqM4gQl63tiPxNpN9kcRH8= Subject key identifier: 05:E1:F9:57:DC:BE:DC:9D:61:AF:1D:D5:F1:4F:8D:DA:08:4B:5B:70 Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 0219 Signing time: Sun 05 May 2024 04:13:27 +0000 Manifest this update: Sun 05 May 2024 04:13:27 +0000 Manifest next update: Sun 12 May 2024 04:13:27 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: nKoBcMpzu1Rt3YmRfEJIySYtC5wDiVU6GzdWvjT6l8Q=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: MZEWQMsUFrt7PRCDHvEFHoB8qTdQmnAUwHLZ9CXSRog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: May 5 04:13:27 2024 GMT Not After : May 12 04:13:27 2024 GMT Subject: CN=66370767-494a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:47:c5:f3:76:6d:4a:17:b8:01:1a:78:5e:af: 7c:b6:83:3c:d4:a0:2b:21:dc:bf:ba:cb:5e:91:ec: a8:0c:85:21:d6:a8:54:27:08:a5:30:e3:a5:3e:c4: 5d:6c:6c:1f:5c:15:d1:be:c3:cb:e6:72:c0:dd:12: c8:c9:be:1d:ef:00:33:80:89:8b:13:1b:fa:30:39: ca:80:47:dc:e8:66:c8:bb:39:6f:b1:e5:f0:10:b2: c9:bf:9f:ee:b5:40:39:60:a7:3b:c6:d0:c6:52:d6: d0:3b:85:8e:c6:7e:3c:8d:b4:79:76:87:34:fc:6a: 25:0b:92:b9:be:38:b1:4f:a6:cf:12:be:b3:c9:27: b5:9d:f5:08:74:90:b5:b6:13:8c:9f:2b:18:5d:c6: f1:4e:0c:a8:3e:59:2e:ec:03:df:e7:c0:69:3b:18: ab:4f:82:99:97:7f:28:a3:a6:9f:12:fe:dc:31:2d: d9:eb:4c:5e:40:1c:cf:d2:84:7e:01:e7:fe:19:be: 34:27:f8:4c:02:b4:bb:21:2e:3d:ef:a3:6a:67:bf: db:fd:79:77:55:b8:69:d7:63:11:f9:98:43:cf:3a: b1:67:0c:e3:b7:e9:ae:05:1b:1d:2a:16:e8:04:4d: 38:d5:15:17:e8:a1:cc:dd:a2:1d:00:d6:9f:13:14: c1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E1:F9:57:DC:BE:DC:9D:61:AF:1D:D5:F1:4F:8D:DA:08:4B:5B:70 X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:0e:21:31:84:25:27:e4:d6:dd:ac:bf:fd:30:6f:23:e2:4a: 71:be:86:74:f6:3d:c9:d6:ca:53:7c:6d:c0:ba:08:2c:89:ab: 4f:f3:ba:91:60:1c:76:48:78:c5:57:0e:32:1e:60:20:a2:ea: 39:9d:c7:15:71:b1:66:13:5d:c6:3e:8e:82:ea:04:ec:b4:46: 4f:96:96:71:a1:78:f5:06:73:d0:9b:82:9c:de:aa:04:52:a2: 7d:05:01:94:46:0c:be:e0:65:01:65:12:4d:13:9c:47:cb:28: 34:c9:4a:fb:b2:57:7f:bc:eb:c2:0a:f0:b0:0b:81:7d:21:3d: 56:47:dd:ef:aa:29:ad:89:fa:c9:ed:c6:36:c1:ab:e6:a0:34: 1a:d8:25:5a:20:3e:c7:05:69:e0:9e:00:7b:37:6f:08:bf:0b: a3:ee:d7:73:11:2d:f0:94:2d:fa:e0:b2:e0:a7:02:ca:1f:f6: 8b:dc:8a:33:fe:4f:f8:b8:3c:96:cb:e8:f3:05:e0:43:51:62: 22:24:19:12:24:53:bd:2b:66:6b:7a:b3:4f:73:c4:6a:31:ee: 19:07:d3:03:13:53:60:23:38:f8:16:40:aa:17:46:37:1e:12: 45:7d:4e:f0:88:4f:a2:dd:d6:72:bf:4e:eb:1d:87:a9:ce:1e: 94:f2:6b:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjQwNTA1MDQxMzI3WhcNMjQwNTEyMDQxMzI3WjAYMRYwFAYD VQQDEw02NjM3MDc2Ny00OTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEfF83ZtShe4ARp4Xq98toM81KArIdy/ustekeyoDIUh1qhUJwilMOOlPsRd bGwfXBXRvsPL5nLA3RLIyb4d7wAzgImLExv6MDnKgEfc6GbIuzlvseXwELLJv5/u tUA5YKc7xtDGUtbQO4WOxn48jbR5doc0/GolC5K5vjixT6bPEr6zySe1nfUIdJC1 thOMnysYXcbxTgyoPlku7APf58BpOxirT4KZl38oo6afEv7cMS3Z60xeQBzP0oR+ Aef+Gb40J/hMArS7IS4976NqZ7/b/Xl3Vbhp12MR+ZhDzzqxZwzjt+muBRsdKhbo BE041RUX6KHM3aIdANafExTB2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXh+Vfc vtydYa8d1fFPjdoIS1twMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIDiExhCUn5NbdrL/9MG8j4kpxvoZ09j3J1spTfG3AuggsiatP87qR YBx2SHjFVw4yHmAgouo5nccVcbFmE13GPo6C6gTstEZPlpZxoXj1BnPQm4Kc3qoE UqJ9BQGURgy+4GUBZRJNE5xHyyg0yUr7sld/vOvCCvCwC4F9IT1WR93vqimtifrJ 7cY2wavmoDQa2CVaID7HBWngngB7N28Ivwuj7tdzES3wlC364LLgpwLKH/aL3Ioz /k/4uDyWy+jzBeBDUWIiJBkSJFO9K2ZrerNPc8RqMe4ZB9MDE1NgIzj4FkCqF0Y3 HhJFfU7wiE+i3dZyv07rHYepzh6U8msV -----END CERTIFICATE-----Generated at Sun May 5 05:21:57 2024 by rpki-client on console-fra.rpki-client.org