$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: ESOCdJm6mv0HRiZr5SEisHpcAUJxG2dbhJAGOiRwVBs= Subject key identifier: 14:AE:6C:62:57:DE:80:96:30:74:28:B7:0D:EB:8D:04:62:19:97:7A Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 0415 Signing time: Sat 01 Jun 2024 03:07:12 +0000 Manifest this update: Sat 01 Jun 2024 03:07:12 +0000 Manifest next update: Sat 08 Jun 2024 03:07:12 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: JHEyW5HWyrHHOIsTBUAEgmVpU0q+ThomudL4t7tvXu0=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: zo/+qmy2jk+AEg81LNIAMqSUawhw2XH+KNnnn5Sp1YU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Jun 1 03:07:12 2024 GMT Not After : Jun 8 03:07:12 2024 GMT Subject: CN=665a9060-6447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a4:35:0e:78:82:d7:12:68:50:f4:41:ea:21: 2a:b0:aa:64:bb:9d:8f:e6:be:49:ce:99:6a:1b:fa: 0f:fa:9c:62:5b:b4:92:e3:64:fa:a0:50:dd:bd:00: 68:c1:19:3c:87:f2:6b:5e:e0:57:1d:a6:fc:b6:c7: 0c:0f:ea:29:5e:3a:b5:3f:52:45:d8:51:7c:47:59: 9e:6b:97:b9:c6:27:a4:a6:de:60:86:47:2e:40:4a: ea:d2:b0:77:7a:3a:4d:fb:ad:c4:75:f5:9d:e2:7b: e3:61:2b:dd:01:2f:17:7f:ac:d3:05:65:4c:2b:e4: fa:93:30:38:32:34:33:2f:6b:ae:f9:b8:c5:0c:c8: 72:ee:41:37:b1:b4:85:3d:37:69:aa:37:f7:02:b0: 40:7a:63:3c:f6:01:3b:78:19:40:72:ad:f7:f3:c8: 32:21:fe:ee:00:cf:47:41:7c:1a:d4:ac:a8:ee:4a: b0:9a:93:c3:06:52:93:cd:0d:02:4c:de:49:9d:b7: 06:81:12:1e:a6:44:fe:bd:37:d4:05:91:1c:c1:52: ad:68:19:bc:22:11:f7:e1:7e:07:28:83:7b:a3:e4: 28:d1:6c:42:8a:4b:80:d2:9e:ee:63:59:35:ee:e3: 0e:46:c3:e0:2d:14:ec:3b:7f:ec:32:c5:4a:07:81: 41:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AE:6C:62:57:DE:80:96:30:74:28:B7:0D:EB:8D:04:62:19:97:7A X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9e:6c:44:e2:25:2e:a0:96:d1:70:72:52:7a:a7:bd:27:80: 5b:14:83:79:0a:ad:0d:b6:92:17:89:10:25:54:69:2d:0d:3a: d0:5e:74:da:e6:a8:db:cd:20:d6:00:4a:9c:33:88:b5:e3:70: 91:a5:0e:76:11:f3:35:fc:f7:c5:c7:a1:e7:8d:2f:4d:46:a0: 78:44:20:fa:d4:dd:20:fd:8c:58:31:f2:ee:b5:55:75:53:62: 91:15:0a:ea:af:98:96:40:09:35:5e:ff:9d:b0:00:52:f8:c8: cb:a2:71:6e:50:e4:0a:f7:11:35:2c:47:0b:cf:a2:a2:52:64: 2b:49:ff:44:bc:49:1d:7f:ec:5e:cd:71:28:a1:5b:3b:87:35: 68:5d:61:be:df:7c:5a:d2:ec:bc:b0:64:03:38:f6:58:f4:24: df:c5:cd:81:02:6b:7b:c9:c9:02:5f:4a:0a:e6:99:c9:f1:9a: 4e:17:e6:22:b9:fc:88:21:4c:ab:da:28:51:67:e5:b2:77:f3: 64:ca:64:36:e5:f7:5e:6c:1a:d5:73:73:ce:5f:d0:8e:10:d2: ee:e0:40:c4:1a:75:60:08:06:34:29:df:9f:30:9a:69:10:60: 18:ae:0f:77:f4:e2:0e:87:fa:00:82:0d:7c:ee:36:76:b1:f2: fb:da:df:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjQwNjAxMDMwNzEyWhcNMjQwNjA4MDMwNzEyWjAYMRYwFAYD VQQDEw02NjVhOTA2MC02NDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66Q1DniC1xJoUPRB6iEqsKpku52P5r5JzplqG/oP+pxiW7SS42T6oFDdvQBo wRk8h/JrXuBXHab8tscMD+opXjq1P1JF2FF8R1mea5e5xiekpt5ghkcuQErq0rB3 ejpN+63EdfWd4nvjYSvdAS8Xf6zTBWVMK+T6kzA4MjQzL2uu+bjFDMhy7kE3sbSF PTdpqjf3ArBAemM89gE7eBlAcq3388gyIf7uAM9HQXwa1Kyo7kqwmpPDBlKTzQ0C TN5JnbcGgRIepkT+vTfUBZEcwVKtaBm8IhH34X4HKIN7o+Qo0WxCikuA0p7uY1k1 7uMORsPgLRTsO3/sMsVKB4FB3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSubGJX 3oCWMHQotw3rjQRiGZd6MB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABnmxE4iUuoJbRcHJSeqe9J4BbFIN5Cq0NtpIXiRAlVGktDTrQXnTa 5qjbzSDWAEqcM4i143CRpQ52EfM1/PfFx6HnjS9NRqB4RCD61N0g/YxYMfLutVV1 U2KRFQrqr5iWQAk1Xv+dsABS+MjLonFuUOQK9xE1LEcLz6KiUmQrSf9EvEkdf+xe zXEooVs7hzVoXWG+33xa0uy8sGQDOPZY9CTfxc2BAmt7yckCX0oK5pnJ8ZpOF+Yi ufyIIUyr2ihRZ+Wyd/NkymQ25fdebBrVc3POX9COENLu4EDEGnVgCAY0Kd+fMJpp EGAYrg939OIOh/oAgg187jZ2sfL72t9Z -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:29 2024 by rpki-client on console-ams.rpki-client.org