$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: hruklKebtLpyuZTl/lbcjCVd02rbdV8PMIe+yC9fMbs= Subject key identifier: 99:8B:1D:C5:58:45:3E:2A:65:1D:D7:16:11:26:FC:34:BB:04:6E:CD Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 33BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 33BF Signing time: Thu 02 May 2024 14:38:30 +0000 Manifest this update: Thu 02 May 2024 14:38:29 +0000 Manifest next update: Thu 09 May 2024 14:38:29 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: ntwOd08At6tzXc2g40JQ1DhbWFH2UqRggGsZesYQf6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13247 (0x33bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: May 2 14:38:29 2024 GMT Not After : May 9 14:38:29 2024 GMT Subject: CN=6633a565-730e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:22:12:64:0b:b6:08:ef:a9:1a:0f:1a:5d: 5d:44:4f:60:e1:8e:2e:cd:bd:d7:8e:62:5b:1a:6f: 67:26:0f:cc:0e:35:cf:db:dc:3f:f0:ca:ba:7f:0c: 7b:49:39:ac:3a:1e:77:7f:dd:1b:2f:bb:55:d5:43: 6f:b1:08:6d:c3:10:ed:22:64:8a:bc:72:02:f0:43: 0f:33:a0:92:bd:d6:b2:60:3d:d8:b8:ad:3a:a9:9e: a1:4e:18:a8:8d:39:fd:ac:49:1b:92:b3:16:04:7c: 00:6c:1b:97:25:d2:ee:80:42:ae:7e:6c:9d:65:be: b6:7e:fb:b1:a1:9c:a4:6f:f3:c2:29:0b:04:ce:10: 1d:c5:12:26:70:9c:3f:5e:ce:91:11:78:29:55:6f: dc:78:02:b7:5b:e9:db:ab:44:70:a9:e8:a9:2c:60: 22:c6:5d:17:3e:c4:c5:69:9e:13:38:a3:42:d3:74: 8a:19:6b:32:ce:5a:43:2a:a9:33:f3:bc:c1:77:b8: bb:29:5e:e2:86:60:2c:ee:82:81:a8:0d:55:1b:d3: b8:ac:c2:8f:4d:7c:ef:44:89:09:00:6a:52:3a:f9: 0e:ac:f7:5e:23:94:d7:a8:47:23:8b:27:91:48:00: 27:51:71:0b:be:55:a7:62:05:59:7a:9a:95:ad:ad: 8c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8B:1D:C5:58:45:3E:2A:65:1D:D7:16:11:26:FC:34:BB:04:6E:CD X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:bb:ff:37:de:98:9c:89:b2:2f:4c:4b:59:2d:56:92:5b:99: c4:95:f4:0c:93:45:7a:45:fa:4b:0d:9b:53:a5:04:09:23:fc: f3:e6:8f:e4:69:9e:e6:ea:b1:e6:20:67:6a:5b:22:3f:ec:8f: b8:70:8c:1d:72:2f:f4:28:11:22:dd:98:5d:85:fd:e5:82:1f: c3:dd:cb:04:c3:f2:be:4a:33:4b:2d:67:7e:02:bb:f7:02:7c: fe:5e:16:50:8b:89:bb:68:e8:ae:a3:da:cf:b5:c6:ea:d2:64: 98:88:b7:a2:f9:e5:71:ee:99:79:20:8f:8f:6b:92:13:a3:88: 4f:52:23:ae:6c:96:1e:bc:38:44:c9:11:a1:ef:a1:5e:f1:1b: 4d:d3:36:4a:68:2d:d7:1a:d0:b7:e2:62:c5:53:74:73:1b:5f: 99:02:c1:a4:af:b5:14:df:8c:c7:9d:79:a9:1f:87:5d:1e:51: 96:3e:e9:0a:5f:95:7c:f7:a2:ce:f6:80:ab:75:d5:10:fa:14: d9:c7:d0:00:20:fb:5b:f8:77:c3:cd:0c:cf:40:8b:f7:83:84: 77:b1:e1:01:8e:5f:65:1c:d6:2d:00:22:35:f0:24:ba:8b:75: e4:c4:16:53:e9:ee:a9:4c:1c:e3:21:6f:ce:1f:6f:e3:fe:25: 91:57:17:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjQwNTAyMTQzODI5WhcNMjQwNTA5MTQzODI5WjAYMRYwFAYD VQQDEw02NjMzYTU2NS03MzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYwiEmQLtgjvqRoPGl1dRE9g4Y4uzb3XjmJbGm9nJg/MDjXP29w/8Mq6fwx7 STmsOh53f90bL7tV1UNvsQhtwxDtImSKvHIC8EMPM6CSvdayYD3YuK06qZ6hThio jTn9rEkbkrMWBHwAbBuXJdLugEKufmydZb62fvuxoZykb/PCKQsEzhAdxRImcJw/ Xs6REXgpVW/ceAK3W+nbq0RwqeipLGAixl0XPsTFaZ4TOKNC03SKGWsyzlpDKqkz 87zBd7i7KV7ihmAs7oKBqA1VG9O4rMKPTXzvRIkJAGpSOvkOrPdeI5TXqEcjiyeR SAAnUXELvlWnYgVZepqVra2MEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmLHcVY RT4qZR3XFhEm/DS7BG7NMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3u/833picibIvTEtZLVaSW5nElfQMk0V6RfpLDZtTpQQJI/zz5o/k aZ7m6rHmIGdqWyI/7I+4cIwdci/0KBEi3Zhdhf3lgh/D3csEw/K+SjNLLWd+Arv3 Anz+XhZQi4m7aOiuo9rPtcbq0mSYiLei+eVx7pl5II+Pa5ITo4hPUiOubJYevDhE yRGh76Fe8RtN0zZKaC3XGtC34mLFU3RzG1+ZAsGkr7UU34zHnXmpH4ddHlGWPukK X5V896LO9oCrddUQ+hTZx9AAIPtb+HfDzQzPQIv3g4R3seEBjl9lHNYtACI18CS6 i3XkxBZT6e6pTBzjIW/OH2/j/iWRVxfB -----END CERTIFICATE-----Generated at Thu May 2 17:43:45 2024 by rpki-client on console-fra.rpki-client.org