$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: kquFhrCr8iPzCcet7iIoY7GdEU/2bAiDBf/vxGSRVGk= Subject key identifier: 9A:87:B4:67:B8:AB:8B:6B:85:E0:A9:E5:34:2F:D8:C7:8A:40:FA:ED Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 140F Signing time: Sun 28 Apr 2024 17:25:37 +0000 Manifest this update: Sun 28 Apr 2024 17:25:36 +0000 Manifest next update: Sun 05 May 2024 17:25:36 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: URVNv5jRRrBvk+gfsI4HIvNnw6eNHKQv9xNhDkoiHks=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: buurxI1h6Fr4d4JUIhu/ZCJ7rztPfsYg3AAKPhpuU8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 16:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5144 (0x1418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Apr 28 17:25:36 2024 GMT Not After : May 5 17:25:36 2024 GMT Subject: CN=662e8690-82f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:9e:2e:02:49:81:ec:87:33:b4:05:94:e1: bd:eb:72:55:e1:3d:09:e1:96:9e:2f:cf:52:06:25: 8a:1b:75:c2:0a:de:d7:d6:9a:6c:bb:36:cd:94:88: ac:56:90:e0:7d:91:91:20:7c:af:88:69:f5:40:db: 1b:b8:1f:dd:d7:33:15:51:14:b0:8f:07:28:e9:87: 13:53:65:91:89:ea:9c:56:e1:62:87:4e:ae:11:48: 18:18:74:90:87:4a:fd:67:7f:0e:b6:8d:73:ba:11: ca:38:5b:93:d5:94:43:75:58:69:cb:b1:a8:26:f0: 6e:55:19:ef:15:0e:ee:d3:7c:43:1a:ee:f8:25:d2: 30:f9:2c:50:a0:c4:3a:d8:39:46:d5:b1:9c:77:e8: 41:3d:0c:94:ca:ef:cb:67:02:e3:00:3e:34:3d:cb: 5d:1e:20:98:73:36:2d:72:2d:d3:f1:f6:03:d6:9f: 4a:01:79:a4:4a:1b:f3:ae:5d:79:b2:7c:99:fc:28: 12:17:b5:66:39:f9:08:cc:28:37:4a:57:56:49:c7: 3a:8e:d6:fd:25:58:93:6f:f4:e3:49:25:5a:22:ab: b4:bb:4c:81:c6:d8:51:1e:6d:e4:8c:8a:53:b7:fd: 1c:ba:21:95:6d:c3:e0:22:61:a6:cd:f7:03:e6:87: 12:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:87:B4:67:B8:AB:8B:6B:85:E0:A9:E5:34:2F:D8:C7:8A:40:FA:ED X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:15:f6:cf:84:db:4b:10:43:2a:c2:7b:80:09:96:24:d2:78: ad:43:89:3c:fb:75:bf:f2:24:d8:b7:48:65:24:ba:8a:a6:7c: 9e:c8:82:b6:e1:84:3a:f4:61:d4:9c:bf:f9:16:a3:d6:e3:1a: 7b:b7:1a:b2:bf:b3:89:0c:69:17:ff:c4:58:7b:5c:53:28:0d: a6:05:8f:aa:53:c7:be:05:b3:70:74:02:8d:cf:d4:ae:94:c3: 3f:0d:e3:ce:82:db:44:2f:8d:75:ff:49:dd:9e:67:4b:96:6a: 18:57:d6:3e:54:14:c5:57:ac:a2:ac:90:77:c6:fb:4d:12:40: c9:7b:ba:08:37:ac:3e:ea:df:15:39:c3:2d:89:fd:72:74:ca: 81:7f:d6:43:ec:31:e9:06:fd:3f:fe:63:8a:d6:b8:a9:a1:c1: 35:b5:45:eb:86:f3:af:bd:c9:15:1e:96:9e:7d:d5:9f:a8:82: 60:12:03:64:aa:b1:80:14:fe:b3:30:14:3f:c1:b0:11:1d:f5: 0c:2b:77:d3:f4:a0:00:55:fa:db:de:3d:cd:a0:04:50:1e:09: e5:dd:1a:3c:c2:9c:2e:ce:91:d0:c2:43:ac:e0:bd:bb:ad:f4: 55:78:b5:ec:93:98:b0:a0:e2:84:da:a7:24:80:5b:7f:69:4b: b4:e4:9a:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjQwNDI4MTcyNTM2WhcNMjQwNTA1MTcyNTM2WjAYMRYwFAYD VQQDEw02NjJlODY5MC04MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZqeLgJJgeyHM7QFlOG963JV4T0J4ZaeL89SBiWKG3XCCt7X1ppsuzbNlIis VpDgfZGRIHyviGn1QNsbuB/d1zMVURSwjwco6YcTU2WRieqcVuFih06uEUgYGHSQ h0r9Z38Oto1zuhHKOFuT1ZRDdVhpy7GoJvBuVRnvFQ7u03xDGu74JdIw+SxQoMQ6 2DlG1bGcd+hBPQyUyu/LZwLjAD40PctdHiCYczYtci3T8fYD1p9KAXmkShvzrl15 snyZ/CgSF7VmOfkIzCg3SldWScc6jtb9JViTb/TjSSVaIqu0u0yBxthRHm3kjIpT t/0cuiGVbcPgImGmzfcD5ocS7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqHtGe4 q4trheCp5TQv2MeKQPrtMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHFfbPhNtLEEMqwnuACZYk0nitQ4k8+3W/8iTYt0hlJLqKpnyeyIK2 4YQ69GHUnL/5FqPW4xp7txqyv7OJDGkX/8RYe1xTKA2mBY+qU8e+BbNwdAKNz9Su lMM/DePOgttEL411/0ndnmdLlmoYV9Y+VBTFV6yirJB3xvtNEkDJe7oIN6w+6t8V OcMtif1ydMqBf9ZD7DHpBv0//mOK1ripocE1tUXrhvOvvckVHpaefdWfqIJgEgNk qrGAFP6zMBQ/wbARHfUMK3fT9KAAVfrb3j3NoARQHgnl3Ro8wpwuzpHQwkOs4L27 rfRVeLXsk5iwoOKE2qckgFt/aUu05Jqs -----END CERTIFICATE-----Generated at Sun Apr 28 19:00:57 2024 by rpki-client on console-fra.rpki-client.org