$ rpki-client -vvf rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft File: GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft (raw, json) Hash identifier: eLhFATnHQ9mfl6ux/MEjgowfKuSVu7I/q6kCyDpyzyU= Subject key identifier: 3E:E3:EC:E6:0A:0E:38:4F:D9:37:93:8E:F8:7F:42:B5:C4:94:38:73 Authority key identifier: 19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 Certificate issuer: /CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Certificate serial: 054B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft Manifest number: 0541 Signing time: Tue 07 May 2024 00:56:57 +0000 Manifest this update: Tue 07 May 2024 00:56:57 +0000 Manifest next update: Tue 14 May 2024 00:56:57 +0000 Files and hashes: 1: GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl (hash: b8MRzpZA0KSMNDzAmyPgAsON8cicn4kI09HgLt0fRQU=) 2: 14513A36CB4C11ED883B0131C4F9AE02.roa (hash: jKrPcOOgHu6Z48Y8hZFXgI2wQwKu/KFpCLmVQwBvAKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Validity Not Before: May 7 00:56:57 2024 GMT Not After : May 14 00:56:57 2024 GMT Subject: CN=66397c59-5447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:a0:e3:05:eb:25:19:ce:f2:38:fb:bb:87: 4d:4f:4c:81:58:00:5a:99:13:ac:2a:67:ea:5e:4d: 40:61:04:25:01:67:8a:fe:23:2e:40:1e:b0:9e:01: 25:fc:c8:f5:73:c7:43:0d:22:98:60:12:18:48:d9: 5a:fd:5f:d0:cd:fe:31:b0:91:3c:8f:b7:45:1d:15: f1:dc:9e:cc:6c:e1:fa:4b:1a:5a:9c:b7:87:9d:0e: d5:91:b0:53:09:f6:5d:70:5b:b7:26:b9:8e:99:b2: 5f:d6:e0:d6:0f:43:2a:3a:45:d1:bd:d9:99:2e:a5: 15:3c:e8:0d:b4:53:21:0d:09:77:95:4d:58:67:63: 28:0d:2c:20:ce:07:a7:d2:e8:1d:6e:04:12:45:b7: 34:8f:5d:85:88:1b:2a:ac:46:9c:04:fc:7b:8e:c4: 7a:11:82:31:01:ce:3a:d2:08:7f:2a:fe:72:a3:bc: da:35:96:81:06:6d:45:00:54:40:db:48:5d:b6:e6: 2a:a9:1c:ec:68:46:d8:9e:ed:1f:8c:57:c4:cf:3a: 1e:6f:aa:d8:01:dd:e7:d6:97:81:a2:7c:bf:78:89: 3e:71:2b:fb:dd:df:f4:38:98:7c:5c:80:fb:7d:91: d9:56:d3:6d:8c:25:50:8d:e5:79:fd:f1:91:0f:d3: 97:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E3:EC:E6:0A:0E:38:4F:D9:37:93:8E:F8:7F:42:B5:C4:94:38:73 X509v3 Authority Key Identifier: keyid:19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f6:7f:1a:20:b1:e9:db:ae:1d:fa:52:75:38:22:6a:da:da: 6b:88:f0:11:f5:eb:fc:7a:bb:3a:0d:15:f9:e2:1c:06:2a:86: 17:ac:cb:15:40:a2:90:93:88:68:b4:54:bf:04:bc:82:e1:97: 87:60:54:57:6d:1b:45:a4:68:4b:1a:31:21:eb:2e:77:26:b2: db:ad:b2:51:b9:86:11:e2:dc:6d:bd:e9:9d:4a:00:9f:16:64: dd:0a:26:0e:9a:9e:f5:44:fd:4d:54:06:ba:06:87:cc:ee:78: 9f:b2:70:06:a4:5c:c1:d6:89:cb:5a:70:bc:d4:66:bf:66:a4: 1a:67:9b:68:70:97:bc:4a:c5:90:1a:d7:95:4c:d8:c5:e9:0c: 62:3a:18:ed:27:18:c5:89:12:5d:07:aa:fc:2b:4a:e7:03:d8: 12:a8:19:bc:66:d5:b7:70:28:10:d1:83:c5:66:19:95:c1:44: d0:86:b8:fe:44:10:70:2c:52:51:18:63:13:c8:c3:0f:96:2a: 42:d4:6f:31:be:c0:fc:eb:e4:9e:bd:5b:51:4e:7d:e3:49:af: 17:e1:26:9c:bf:a5:30:5c:75:14:e7:d0:05:0f:65:e8:00:c5: 56:eb:39:60:49:f5:6b:44:98:c2:49:da:5d:cd:68:96:ac:a0: 37:e2:51:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwMEMxMTAvBgNVBAUTKDE5NUIyNjdENkQxNTNBRjdEMDJCNkJFQjIyQ0UxNTkz RDkyNUI2MzYwHhcNMjQwNTA3MDA1NjU3WhcNMjQwNTE0MDA1NjU3WjAYMRYwFAYD VQQDEw02NjM5N2M1OS01NDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv66g4wXrJRnO8jj7u4dNT0yBWABamROsKmfqXk1AYQQlAWeK/iMuQB6wngEl /Mj1c8dDDSKYYBIYSNla/V/Qzf4xsJE8j7dFHRXx3J7MbOH6SxpanLeHnQ7VkbBT CfZdcFu3JrmOmbJf1uDWD0MqOkXRvdmZLqUVPOgNtFMhDQl3lU1YZ2MoDSwgzgen 0ugdbgQSRbc0j12FiBsqrEacBPx7jsR6EYIxAc460gh/Kv5yo7zaNZaBBm1FAFRA 20hdtuYqqRzsaEbYnu0fjFfEzzoeb6rYAd3n1peBony/eIk+cSv73d/0OJh8XID7 fZHZVtNtjCVQjeV5/fGRD9OXiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7j7OYK DjhP2TeTjvh/QrXElDhzMB8GA1UdIwQYMBaAFBlbJn1tFTr30Ctr6yLOFZPZJbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDAwQy9DM0VDRDk2OEE2 NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92ZlFLMnZySXM0Vms5a2x0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dWc21mVzBWT3ZmUUsydnJJczRWazlrbHRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDAwQy9DM0VDRDk2OEE2NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92 ZlFLMnZySXM0Vms5a2x0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI9n8aILHp264d+lJ1OCJq2tpriPAR9ev8ers6DRX54hwGKoYXrMsV QKKQk4hotFS/BLyC4ZeHYFRXbRtFpGhLGjEh6y53JrLbrbJRuYYR4txtvemdSgCf FmTdCiYOmp71RP1NVAa6BofM7nifsnAGpFzB1onLWnC81Ga/ZqQaZ5tocJe8SsWQ GteVTNjF6QxiOhjtJxjFiRJdB6r8K0rnA9gSqBm8ZtW3cCgQ0YPFZhmVwUTQhrj+ RBBwLFJRGGMTyMMPlipC1G8xvsD86+SevVtRTn3jSa8X4Sacv6UwXHUU59AFD2Xo AMVW6zlgSfVrRJjCSdpdzWiWrKA34lEX -----END CERTIFICATE-----Generated at Tue May 7 02:01:01 2024 by rpki-client on console-ams.rpki-client.org