$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: iXrm1KhMd88unuXt7/fc1ZnFoZ2ZcOMVs0Hitqb/aB0= Subject key identifier: EB:B3:A6:41:71:73:09:05:48:DB:95:6F:00:C0:A4:8C:50:40:74:35 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0750 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0745 Signing time: Thu 02 May 2024 22:32:42 +0000 Manifest this update: Thu 02 May 2024 22:32:41 +0000 Manifest next update: Thu 09 May 2024 22:32:41 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: puc7A5+wP0RmlLYp+fdZ7haIR00mIMQ/fbijQ3OlCY8=) 2: 6292F5329B4B11EB9F609750C4F9AE02.roa (hash: 7LeN35kXACeoddwBsjxyEH6oMtiwBHn9D9BXt+GebM0=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: tW+i9wBr8/8fLv6cV5Gm2ZBBX10Z9Nan/TBIigJ8+gA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: May 2 22:32:41 2024 GMT Not After : May 9 22:32:41 2024 GMT Subject: CN=6634148a-3d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:51:90:51:51:c0:37:0a:13:67:06:20:f1:37: 4c:81:36:49:2a:79:0b:69:d0:18:ca:2b:1c:78:42: bb:d3:31:76:c9:25:d9:fd:43:84:93:99:75:64:a1: 0d:24:32:85:4f:cb:24:8c:69:e9:fc:6c:7e:24:cf: ab:b2:00:e7:6e:cb:90:e8:c1:1d:d1:96:c0:dd:56: 0b:63:78:1d:fb:05:fc:6e:8a:35:fd:44:6f:c7:d5: b5:ab:c4:6c:30:44:fb:41:c0:23:a3:72:0e:8d:50: d0:48:0e:f8:b2:b2:f4:59:71:06:f4:e4:85:da:e2: 94:2b:c2:82:07:e7:bf:26:9b:4d:18:32:ba:2a:d3: 97:4f:f9:f8:4c:7c:7e:46:59:d2:d8:a6:8f:d4:15: 01:58:73:ef:d3:6b:88:36:23:5a:b4:c7:9b:b4:00: 3e:52:db:f3:85:d3:7a:69:0d:4d:95:d7:b4:54:85: 84:46:db:2a:f8:f6:e1:9b:39:c5:ae:c0:4e:74:c8: 32:cf:8d:ea:0f:24:6b:f3:db:0d:b6:af:66:6b:82: 95:14:34:5c:a0:cf:93:4c:79:e1:0d:0c:3c:06:3a: 37:e2:36:18:5b:01:04:fd:89:74:52:92:ae:5a:aa: aa:ce:d1:9f:03:89:c7:f4:c6:51:57:72:d7:82:a9: 05:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B3:A6:41:71:73:09:05:48:DB:95:6F:00:C0:A4:8C:50:40:74:35 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ee:2c:40:f3:53:d9:86:26:e8:31:73:c6:bb:7c:3a:26:5d: 6a:37:c9:f3:fb:f2:30:d5:d2:43:a2:d3:bf:ca:03:79:d0:95: dd:64:04:6b:5d:5d:c8:d7:f1:ae:36:d1:4f:8d:33:10:e2:3c: 9c:90:4c:1f:96:c9:9c:fe:27:ab:10:c5:ad:6b:12:91:62:e1: 9e:67:fa:19:66:45:b5:50:72:3b:f9:26:3e:fd:63:e3:57:1c: 0e:c6:4f:5c:66:da:c8:46:3d:e6:b8:58:e9:1a:23:7a:e2:4a: 15:00:89:4e:57:37:2b:72:1d:91:01:39:94:59:8c:86:ff:3f: 5d:ef:bc:1e:22:7e:2c:0d:0c:f3:47:7d:06:15:7f:3c:f0:5b: 9e:90:b1:2b:c6:43:96:fd:89:50:5e:f1:91:39:4b:90:59:9a: 96:a6:95:fd:1a:10:58:30:4b:a1:38:12:f1:22:0b:85:aa:c7: 6a:f2:c4:20:5b:af:a3:7b:d4:bc:c8:2c:cf:df:39:83:ac:c6: 6a:ab:ba:a8:58:e6:8b:2e:de:7b:ce:f9:7f:a0:08:33:63:77: 77:32:d1:70:41:88:62:29:21:dc:8c:c8:3f:97:9c:6d:d3:72: 0a:ea:4c:07:14:91:5f:10:5f:07:a4:44:db:e4:87:4e:f6:11: 0e:e4:e0:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjQwNTAyMjIzMjQxWhcNMjQwNTA5MjIzMjQxWjAYMRYwFAYD VQQDEw02NjM0MTQ4YS0zZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lGQUVHANwoTZwYg8TdMgTZJKnkLadAYyisceEK70zF2ySXZ/UOEk5l1ZKEN JDKFT8skjGnp/Gx+JM+rsgDnbsuQ6MEd0ZbA3VYLY3gd+wX8boo1/URvx9W1q8Rs MET7QcAjo3IOjVDQSA74srL0WXEG9OSF2uKUK8KCB+e/JptNGDK6KtOXT/n4THx+ RlnS2KaP1BUBWHPv02uINiNatMebtAA+UtvzhdN6aQ1Nlde0VIWERtsq+PbhmznF rsBOdMgyz43qDyRr89sNtq9ma4KVFDRcoM+TTHnhDQw8Bjo34jYYWwEE/Yl0UpKu WqqqztGfA4nH9MZRV3LXgqkFswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuzpkFx cwkFSNuVbwDApIxQQHQ1MB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo7ixA81PZhiboMXPGu3w6Jl1qN8nz+/Iw1dJDotO/ygN50JXdZARr XV3I1/GuNtFPjTMQ4jyckEwflsmc/ierEMWtaxKRYuGeZ/oZZkW1UHI7+SY+/WPj VxwOxk9cZtrIRj3muFjpGiN64koVAIlOVzcrch2RATmUWYyG/z9d77weIn4sDQzz R30GFX888FuekLErxkOW/YlQXvGROUuQWZqWppX9GhBYMEuhOBLxIguFqsdq8sQg W6+je9S8yCzP3zmDrMZqq7qoWOaLLt57zvl/oAgzY3d3MtFwQYhiKSHcjMg/l5xt 03IK6kwHFJFfEF8HpETb5IdO9hEO5OCv -----END CERTIFICATE-----Generated at Thu May 2 23:03:12 2024 by rpki-client on console-fra.rpki-client.org