$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft File: GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft (raw, json) Hash identifier: ExIGdXFSVJLZqQrutvwzBkTl7UKH9qleBT8LGUCGsxg= Subject key identifier: 6C:97:69:82:C1:F1:B1:8F:13:F5:54:9D:03:DA:90:F3:22:25:27:84 Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft Manifest number: 06C6 Signing time: Tue 30 Apr 2024 23:18:17 +0000 Manifest this update: Tue 30 Apr 2024 23:18:16 +0000 Manifest next update: Tue 07 May 2024 23:18:16 +0000 Files and hashes: 1: GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl (hash: f+qhJj7bERaEL3/lthlvp1AKcZJZQoX9Eh2YcDXypHs=) 2: 1994E0780B5B11EB80C8B15FC4F9AE02.roa (hash: +giITiM/YdqmbzO/BW3K/sDxzMMEjUhYcrvpZd/m8Ys=) 3: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (hash: K2ToGux1LmW9HMWWJmE8hrP/U43KU+VL5yeKLunBOlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Apr 30 23:18:16 2024 GMT Not After : May 7 23:18:16 2024 GMT Subject: CN=66317c39-41a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:3e:6a:37:a6:fc:ca:26:e2:57:c9:2d:62: 9a:e6:60:ba:e4:8a:a7:b4:77:3a:aa:bf:b2:92:ee: e3:e5:d8:83:70:79:f9:8a:d7:5b:93:db:08:d7:0c: d5:31:9b:91:d6:30:da:e3:9c:ec:ca:28:74:4b:28: 5c:d4:bc:70:f1:7b:b8:ae:5b:11:24:14:7d:f0:fd: a1:a0:c4:88:86:22:17:f3:76:dc:0d:bc:3d:f4:ac: 59:aa:33:c0:68:ae:f4:ae:ce:16:73:e1:97:b5:23: 3d:a2:bf:8a:89:bd:95:f8:5e:10:3d:1a:46:c2:f2: 3f:5b:f6:f8:02:9a:cc:c3:f1:1f:f9:2e:a4:a2:00: a1:d3:6a:a9:ef:98:77:03:eb:80:db:9b:66:7a:b9: 79:9d:f4:2b:41:f3:ae:45:84:0e:33:24:15:38:69: 3a:d4:57:19:d0:0d:a7:f7:81:74:8b:68:17:af:65: be:10:5c:e0:cc:60:32:46:80:cb:ea:2a:a5:c8:db: 34:1a:23:0e:18:f6:6c:ef:87:70:5a:8e:aa:c3:a6: 23:e9:93:a5:39:d5:fa:12:e3:b8:94:15:f5:75:67: 2c:03:92:3c:4d:f0:bc:82:a1:97:0e:a7:79:9e:f3: d3:46:03:9d:11:b5:08:63:c7:6d:46:a2:be:4d:64: a0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:97:69:82:C1:F1:B1:8F:13:F5:54:9D:03:DA:90:F3:22:25:27:84 X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:95:aa:1a:b8:ae:9c:ce:00:2d:e0:24:61:45:51:08:00:ee: 99:37:99:9a:6e:cf:6b:d3:f7:09:c7:83:cc:0f:eb:23:80:ae: 4f:06:cf:42:13:83:79:63:a5:83:51:71:4e:0d:53:17:d8:0d: 71:4c:c5:cc:0f:83:bb:46:da:9f:09:f6:3d:e9:39:15:8a:e1: fe:e8:f5:8b:e0:99:d4:01:9c:ad:74:25:6d:32:6c:29:b0:2a: 0e:83:52:06:44:a0:2e:f2:4d:b0:b2:67:5c:fe:2b:f7:22:37: 3d:88:7f:d0:45:7f:f5:dc:22:82:7d:bd:e9:5d:41:ce:56:62: 4c:e3:0f:a9:4e:c9:94:06:cf:dc:cf:d3:f9:dd:9f:74:6d:85: dd:7f:cf:49:83:90:73:8d:bd:c8:34:20:bb:e6:c1:8d:68:01: 0d:d8:7e:fc:45:f2:6d:0d:b5:05:98:2a:ec:2d:4f:2d:08:92: 1b:8c:ea:c0:4d:2b:20:80:92:3e:a6:fd:96:35:ba:7a:f9:5d: 7f:36:ca:88:b3:13:fd:8d:fc:82:de:56:42:7b:e0:0e:54:08: 1e:76:25:51:8c:14:72:d4:0e:18:05:55:c4:80:19:79:ca:25: d3:e4:48:95:d6:0b:8c:94:2d:3d:89:fa:97:7d:f7:44:14:be: 61:f4:35:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjQwNDMwMjMxODE2WhcNMjQwNTA3MjMxODE2WjAYMRYwFAYD VQQDEw02NjMxN2MzOS00MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RE+ajem/Mom4lfJLWKa5mC65IqntHc6qr+yku7j5diDcHn5itdbk9sI1wzV MZuR1jDa45zsyih0Syhc1Lxw8Xu4rlsRJBR98P2hoMSIhiIX83bcDbw99KxZqjPA aK70rs4Wc+GXtSM9or+Kib2V+F4QPRpGwvI/W/b4AprMw/Ef+S6kogCh02qp75h3 A+uA25tmerl5nfQrQfOuRYQOMyQVOGk61FcZ0A2n94F0i2gXr2W+EFzgzGAyRoDL 6iqlyNs0GiMOGPZs74dwWo6qw6Yj6ZOlOdX6EuO4lBX1dWcsA5I8TfC8gqGXDqd5 nvPTRgOdEbUIY8dtRqK+TWSgOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyXaYLB 8bGPE/VUnQPakPMiJSeEMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUE3Ri9FOTY0QUY0QzBCNTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VC dnNqSW4wVUJsNHdKSURhN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBslaoauK6czgAt4CRhRVEIAO6ZN5mabs9r0/cJx4PMD+sjgK5PBs9C E4N5Y6WDUXFODVMX2A1xTMXMD4O7RtqfCfY96TkViuH+6PWL4JnUAZytdCVtMmwp sCoOg1IGRKAu8k2wsmdc/iv3Ijc9iH/QRX/13CKCfb3pXUHOVmJM4w+pTsmUBs/c z9P53Z90bYXdf89Jg5Bzjb3INCC75sGNaAEN2H78RfJtDbUFmCrsLU8tCJIbjOrA TSsggJI+pv2WNbp6+V1/NsqIsxP9jfyC3lZCe+AOVAgediVRjBRy1A4YBVXEgBl5 yiXT5EiV1guMlC09ifqXffdEFL5h9DWa -----END CERTIFICATE-----Generated at Wed May 1 00:24:01 2024 by rpki-client on console-fra.rpki-client.org