$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: TFA07GDcMS5+j20a2mPrFr22P/LvVJhndDooXqNmHns= Subject key identifier: B8:9B:28:D3:C0:B9:DE:19:3D:5E:0D:A5:1A:CF:D7:8F:D4:E2:04:86 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1C29 Signing time: Wed 24 Apr 2024 16:37:35 +0000 Manifest this update: Wed 24 Apr 2024 16:37:35 +0000 Manifest next update: Wed 01 May 2024 16:37:35 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: Tb6LwgMFytCbfRX6zfC/OjliCNyBphh8a4fJNeWopVM=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: +CRLrhJsItyG4k1jiQ8QBFKyQAaJTALKMwvCWSzLpEs=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: LQxi9QdmgN0KIei5VG+HIfawwM3z6gP9YFiwzL4bT7s=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: k72xXpjFgZtRFDkXu8iIG0ZStxYnbHZo3Zq2gA8vZLE=) 5: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: nrk3DaY23QVKoexK2vSoORrq05ctVuvDGn2F2Uteovc=) 6: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 8Yo8XmtHUC1h3z2u1AbgBb+SfApNI9FQPc+WFfWHlN4=) 7: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: GPelyj6LTGW9gNvuVS/lYKjmlngEjMMSF+z6F6aAJqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 16:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7264 (0x1c60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Apr 24 16:37:35 2024 GMT Not After : May 1 16:37:35 2024 GMT Subject: CN=6629354f-7a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ac:81:06:48:dd:8d:46:1c:4f:a7:38:61:3c: dc:c8:aa:9f:83:57:ec:b9:0f:fa:c5:48:15:68:cb: 9e:37:38:65:5c:02:ed:cd:e5:e7:10:15:19:3a:ed: c9:b6:2d:29:6b:bb:d0:b2:09:35:fc:a9:2b:f9:30: 86:d7:93:03:82:a2:8b:ac:4b:42:97:ff:da:65:28: fd:31:49:57:be:a0:cd:d4:c9:04:e5:db:06:55:ed: c4:ef:1b:58:c0:0d:72:e3:14:19:ce:47:c0:d5:18: a5:f7:a7:84:55:02:34:ff:45:1c:18:df:c9:48:59: 36:4a:15:8c:b6:86:f4:39:c5:ce:53:49:51:38:9f: 98:24:df:c6:0f:bc:f4:33:bf:5c:4b:3b:86:ac:a5: f0:03:11:2b:a3:5c:8d:f6:38:27:bd:0a:80:9e:d0: 98:dc:31:27:5e:26:2c:dc:62:91:f7:e2:68:08:fe: 91:eb:76:3e:ef:84:e7:b5:a9:b8:a2:94:46:58:5d: 4f:2c:7b:71:44:84:60:aa:86:d1:e7:5d:5f:78:e9: f4:eb:22:e1:5c:e4:ef:96:cc:c1:a0:48:48:73:1d: 48:6c:c9:c2:66:a0:ac:c5:93:f5:4c:64:bf:40:8c: 8f:32:30:18:e8:45:09:be:33:a0:be:5e:b2:82:f5: 7b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9B:28:D3:C0:B9:DE:19:3D:5E:0D:A5:1A:CF:D7:8F:D4:E2:04:86 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b6:6f:30:af:50:61:a2:75:8a:41:fd:f3:da:2f:68:e2:ea: 3b:14:9f:83:c2:26:c1:7e:3e:20:01:a6:7e:95:b1:03:b4:5f: 30:a0:16:1e:9d:ac:eb:9d:7a:ac:0d:8c:d7:d1:46:23:64:a1: 87:f0:81:16:bc:e9:dd:58:34:f9:f4:13:c9:69:8f:69:de:13: a6:bc:85:07:d4:cb:95:4d:36:f9:a8:ea:15:a5:ba:7d:23:b8: 75:93:5e:4b:09:18:e4:aa:53:70:94:a6:dc:22:4a:27:6f:46: d1:ab:03:1e:b6:78:44:62:7d:d4:74:fb:a8:f4:66:94:a2:e4: c6:4f:7d:ad:bb:ba:f4:a0:5b:c3:69:04:24:66:3f:2f:49:6f: bd:b7:d4:f9:54:54:41:33:2a:e9:e4:d9:5e:c6:0b:3d:6d:84: 09:0c:6f:c6:db:fe:40:34:a6:01:e3:57:ef:5e:d6:c0:4e:3a: 0b:6e:cd:0e:7f:e6:0a:7b:0c:45:bc:f7:9e:80:2b:a6:d6:a6: a8:f5:f9:39:6c:47:92:fd:a2:7f:e9:51:2a:2b:95:70:be:83: a2:ba:11:01:9f:01:23:2b:ef:d9:b5:77:16:08:9a:ea:bc:7b: d2:fb:72:88:64:53:d3:80:f3:2b:7b:a2:5b:cf:a7:47:de:f5: d7:69:20:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwNDI0MTYzNzM1WhcNMjQwNTAxMTYzNzM1WjAYMRYwFAYD VQQDEw02NjI5MzU0Zi03YTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKyBBkjdjUYcT6c4YTzcyKqfg1fsuQ/6xUgVaMueNzhlXALtzeXnEBUZOu3J ti0pa7vQsgk1/Kkr+TCG15MDgqKLrEtCl//aZSj9MUlXvqDN1MkE5dsGVe3E7xtY wA1y4xQZzkfA1Ril96eEVQI0/0UcGN/JSFk2ShWMtob0OcXOU0lROJ+YJN/GD7z0 M79cSzuGrKXwAxEro1yN9jgnvQqAntCY3DEnXiYs3GKR9+JoCP6R63Y+74Tntam4 opRGWF1PLHtxRIRgqobR511feOn06yLhXOTvlszBoEhIcx1IbMnCZqCsxZP1TGS/ QIyPMjAY6EUJvjOgvl6ygvV73wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLibKNPA ud4ZPV4NpRrP14/U4gSGMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9tm8wr1BhonWKQf3z2i9o4uo7FJ+DwibBfj4gAaZ+lbEDtF8woBYe nazrnXqsDYzX0UYjZKGH8IEWvOndWDT59BPJaY9p3hOmvIUH1MuVTTb5qOoVpbp9 I7h1k15LCRjkqlNwlKbcIkonb0bRqwMetnhEYn3UdPuo9GaUouTGT32tu7r0oFvD aQQkZj8vSW+9t9T5VFRBMyrp5Nlexgs9bYQJDG/G2/5ANKYB41fvXtbATjoLbs0O f+YKewxFvPeegCum1qao9fk5bEeS/aJ/6VEqK5VwvoOiuhEBnwEjK+/ZtXcWCJrq vHvS+3KIZFPTgPMre6Jbz6dH3vXXaSDh -----END CERTIFICATE-----Generated at Wed Apr 24 18:36:01 2024 by rpki-client on console-ams.rpki-client.org