$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: qbOeR1porG+9pkAwtwfd0va34RAM3dTR528kqWTdCrw= Subject key identifier: 5D:50:92:1E:E6:F7:E9:FD:32:57:67:14:14:7F:D2:14:F0:11:0B:FC Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: DD Signing time: Sat 04 May 2024 18:34:36 +0000 Manifest this update: Sat 04 May 2024 18:34:35 +0000 Manifest next update: Sat 11 May 2024 18:34:35 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: bTxixAbEXUK6yaWuQM/D+l/rQNGFYWSzS00B2nG6CPI=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: /rJqGMqLZ7nBs/V2rvnW5bXjWT03Hch1ZVPihuVLC9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: May 4 18:34:35 2024 GMT Not After : May 11 18:34:35 2024 GMT Subject: CN=66367fbc-531e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:a2:cb:0d:b8:52:9e:53:bd:38:73:21:6f: ed:31:90:3a:2f:b5:f4:4c:ab:99:37:bc:63:ba:e1: 67:23:98:a2:ea:f3:56:83:1d:37:b6:27:fb:e2:07: 7c:31:6d:7c:22:c0:f7:e1:43:70:f0:7c:2b:0e:37: 7a:89:55:7e:52:a4:c4:0b:26:c6:5c:99:94:bc:ae: 21:6e:1f:bb:b9:67:4f:06:23:f2:63:6b:59:a6:a2: 37:23:0a:74:26:2c:cf:4d:9b:b6:15:61:6e:a6:a1: 95:7c:6c:9a:41:9e:29:64:a2:a7:30:19:cd:75:7c: 59:a4:25:41:b2:72:92:84:a4:64:ef:2c:36:ed:24: 93:bb:ad:ea:6c:e9:45:ea:63:fe:e1:16:e7:c6:22: 50:f0:9e:fe:f3:43:e6:69:a5:c6:71:ec:8b:b5:30: 5f:3b:43:da:54:78:ab:70:ae:3e:31:88:e3:c7:53: 4d:9a:5b:32:7c:de:68:d6:7d:3d:66:ba:52:64:eb: d3:21:b3:7b:5d:da:5c:47:ec:32:29:c3:47:f9:7f: 47:ab:62:e8:c6:1b:7e:f6:94:6b:d2:50:df:f9:da: 5f:42:0b:5e:9b:5b:37:d5:18:d3:40:ec:80:6f:5e: ed:7f:e3:8e:b1:f4:a6:ce:7a:d8:ea:c2:07:51:5c: ae:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:50:92:1E:E6:F7:E9:FD:32:57:67:14:14:7F:D2:14:F0:11:0B:FC X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d6:a9:2d:40:71:f2:f2:2e:d2:28:1f:8c:79:ed:4e:5e:08: c8:ab:26:4c:7b:a4:13:a5:16:f9:e2:96:b7:61:bf:c5:ef:95: 32:39:4b:b6:9b:68:bb:28:db:af:3e:46:e6:ad:60:1e:54:c7: 03:15:c2:e8:a7:ba:86:c2:5c:df:16:0c:55:fb:71:f1:b8:13: 34:88:4e:46:3b:da:b4:38:b6:8f:87:6d:e4:85:43:37:2d:60: 33:91:dd:e7:c2:ee:4c:1b:37:8e:cf:1f:32:0d:f4:d4:56:39: df:27:c8:29:00:f2:cf:57:16:35:a5:01:68:61:b9:34:3e:0d: 7a:a2:53:2e:b2:45:87:1d:c8:75:42:b7:7f:7d:36:e7:07:2f: e6:03:b9:d4:74:ee:f6:ea:b2:9d:7f:a2:10:44:3f:17:d0:0b: f6:6c:e8:46:04:73:f4:66:d1:fb:f9:70:37:84:4c:49:4e:0b: 9c:0f:39:e2:86:c7:17:d2:86:9a:98:50:ee:50:98:dd:e1:32: 9a:4d:09:d8:41:10:26:ed:cf:90:33:cc:7c:52:e1:0b:a6:11: 28:09:99:2e:d2:80:a0:15:69:48:c6:87:d2:3a:a6:d3:13:b2: 46:56:37:8d:73:ab:fd:fd:39:c7:e1:91:69:c4:c4:3b:ec:ca: e1:f1:ac:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjQwNTA0MTgzNDM1WhcNMjQwNTExMTgzNDM1WjAYMRYwFAYD VQQDEw02NjM2N2ZiYy01MzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Giyw24Up5TvThzIW/tMZA6L7X0TKuZN7xjuuFnI5ii6vNWgx03tif74gd8 MW18IsD34UNw8HwrDjd6iVV+UqTECybGXJmUvK4hbh+7uWdPBiPyY2tZpqI3Iwp0 JizPTZu2FWFupqGVfGyaQZ4pZKKnMBnNdXxZpCVBsnKShKRk7yw27SSTu63qbOlF 6mP+4RbnxiJQ8J7+80PmaaXGceyLtTBfO0PaVHircK4+MYjjx1NNmlsyfN5o1n09 ZrpSZOvTIbN7XdpcR+wyKcNH+X9Hq2Loxht+9pRr0lDf+dpfQgtem1s31RjTQOyA b17tf+OOsfSmznrY6sIHUVyuTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1Qkh7m 9+n9MldnFBR/0hTwEQv8MB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG1qktQHHy8i7SKB+Mee1OXgjIqyZMe6QTpRb54pa3Yb/F75UyOUu2 m2i7KNuvPkbmrWAeVMcDFcLop7qGwlzfFgxV+3HxuBM0iE5GO9q0OLaPh23khUM3 LWAzkd3nwu5MGzeOzx8yDfTUVjnfJ8gpAPLPVxY1pQFoYbk0Pg16olMuskWHHch1 Qrd/fTbnBy/mA7nUdO726rKdf6IQRD8X0Av2bOhGBHP0ZtH7+XA3hExJTgucDzni hscX0oaamFDuUJjd4TKaTQnYQRAm7c+QM8x8UuELphEoCZku0oCgFWlIxofSOqbT E7JGVjeNc6v9/TnH4ZFpxMQ77Mrh8aze -----END CERTIFICATE-----Generated at Sat May 4 20:37:15 2024 by rpki-client on console-fra.rpki-client.org